Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json)
Hash identifier: H9nktWHcW+ub6Sc3GobbXdYe7AcEjxyQKalGM37dOf4=
Subject key identifier: 14:0C:6E:EF:11:24:A9:6D:41:35:87:69:CC:F1:EA:0A:5C:E7:57:18
Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf
Certificate serial: 019948502C8E4908143BBA7B662EF4617751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
Manifest number: 0F89
Signing time: Sun 14 Sep 2025 13:00:37 +0000
Manifest this update: Sun 14 Sep 2025 13:00:37 +0000
Manifest next update: Mon 15 Sep 2025 13:00:37 +0000
Files and hashes: 1: DoG2UFHCOj7zOTIUPjjt5XZyaMI.roa (hash: o5jRgA59QPQWDTQLvIg+41ICmEKRDLb8Qb3vB5Fkcs4=)
2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: wj14I/SghWc6ydDON9WLW8AHC6h85ZjzXEL0zh5eV9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Sep 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:48:50:2c:8e:49:08:14:3b:ba:7b:66:2e:f4:61:77:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf
Validity
Not Before: Sep 14 13:00:37 2025 GMT
Not After : Sep 15 13:00:37 2025 GMT
Subject: CN=140c6eef1124a96d41358769ccf1ea0a5ce75718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bc:e3:f6:e1:d0:0e:de:d4:cd:c1:0b:85:60:
bf:85:fb:ba:c3:94:0a:cc:7f:67:56:4e:14:06:a5:
c7:f3:a6:6b:f7:a8:21:7a:76:31:c6:79:a8:78:18:
df:37:c7:ed:e6:5a:e5:10:a4:fa:c4:cc:51:39:0e:
4d:b3:79:5e:9b:3c:88:d9:b2:96:fb:8a:4e:4f:31:
30:c9:fd:c0:98:bd:a0:9f:60:0e:8a:c0:54:13:99:
5d:71:09:97:70:b4:05:a4:83:92:7b:6d:74:a5:f7:
2c:7b:99:3c:97:7c:c7:d5:29:dc:ad:4f:ab:60:9e:
83:31:70:c7:c7:aa:3f:f0:5c:cc:c7:61:60:05:b9:
29:32:b0:33:90:be:09:93:cf:e2:c2:84:38:09:b9:
ff:39:0d:d7:79:87:df:b8:6e:23:5a:0a:83:7d:45:
bd:a7:d1:72:3c:e3:17:97:8a:d7:db:83:f0:b3:81:
7e:26:a9:ba:35:20:3b:f8:c6:8a:f1:75:a4:a8:03:
fc:88:0e:af:5e:e4:a0:57:7b:47:57:5d:f8:da:7f:
f8:c0:88:e9:74:e3:dd:c8:2a:e3:90:17:be:a9:f2:
8b:9a:84:e1:92:9f:b8:e5:9d:fb:f5:e7:19:2d:64:
06:09:f3:24:25:59:dd:11:8a:71:cc:e6:d3:9b:76:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0C:6E:EF:11:24:A9:6D:41:35:87:69:CC:F1:EA:0A:5C:E7:57:18
X509v3 Authority Key Identifier:
keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:e2:74:f7:25:a4:1b:7d:ea:de:02:29:54:c7:4c:a5:db:26:
f2:74:c2:d7:57:59:8a:6d:1b:09:92:a0:d3:60:34:91:a5:6d:
98:4a:06:2c:77:7c:0c:b7:ed:e8:92:32:d3:98:4c:fb:41:32:
a4:1a:7b:f7:b7:93:ec:94:89:bc:04:25:95:04:a4:f2:15:c7:
d1:86:db:eb:41:91:56:94:ea:e8:54:87:b7:a3:c2:22:3f:e0:
85:1f:43:f2:15:07:d1:7f:4f:2b:55:6f:e8:32:71:88:8a:70:
46:d9:88:12:a8:cf:b5:23:43:01:44:d7:56:7c:ee:fb:30:b0:
ef:2d:5b:2e:a6:28:35:61:8e:8c:5c:1e:a7:55:e3:9f:37:c2:
68:f7:8d:6f:fe:76:a4:77:77:bc:b7:e4:03:ae:07:ff:2c:14:
58:8b:99:dc:5f:ad:ad:94:a9:da:01:dc:55:59:6e:51:e8:c6:
05:2e:fa:86:c1:81:db:70:ec:3d:88:1e:7e:8b:14:20:11:80:
ee:e4:49:96:a3:6b:45:67:32:fe:6b:f8:9a:78:d1:2e:07:b3:
e8:4a:d2:cc:ff:66:4f:8f:67:d5:a7:ed:a9:59:fb:e5:50:12:
ff:78:f1:9a:e0:ba:b0:34:13:12:85:8a:b6:f7:e2:a8:cd:20:
79:0e:3c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 14 17:39:56 2025 by rpki-client