Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
File: Z2JE3gGQpt1aiZorN7ACua5jLIY.mft (raw, json)
Hash identifier: bME/ur0waaUBX+/03dlNSwrj4RnV/ZJveDyHKbcpX6g=
Subject key identifier: B3:D3:D0:2F:0C:87:03:DA:6F:E3:F3:90:3B:0B:43:1F:32:68:AF:27
Authority key identifier: 67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
Certificate issuer: /CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Certificate serial: 019A2A445271153FC6468047AF54C70358D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
Manifest number: 16F9
Signing time: Tue 28 Oct 2025 10:01:51 +0000
Manifest this update: Tue 28 Oct 2025 10:01:51 +0000
Manifest next update: Wed 29 Oct 2025 10:01:51 +0000
Files and hashes: 1: 21cAYiN5jMpqkJRdEkHSMeQVgkY.roa (hash: KwzUXQv1pIgCUyqyYd3vxndo9n20A9iWRxEC49c1pqI=)
2: Z2JE3gGQpt1aiZorN7ACua5jLIY.crl (hash: bOvj3XXViBCV1AZ5+IyhAHLtbHunuMwXSDcn/nwjVCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 10:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:44:52:71:15:3f:c6:46:80:47:af:54:c7:03:58:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Validity
Not Before: Oct 28 10:01:51 2025 GMT
Not After : Oct 29 10:01:51 2025 GMT
Subject: CN=b3d3d02f0c8703da6fe3f3903b0b431f3268af27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:3e:15:c4:d9:85:14:3c:f8:80:8f:72:dd:
61:77:35:20:a3:a1:5e:12:6b:c7:fb:73:ce:2c:7f:
e7:a6:b2:b6:ac:6c:d5:72:47:07:e9:74:6a:d0:35:
ee:aa:73:77:82:c5:2e:8e:63:2e:7d:07:39:89:6b:
39:4c:9f:9f:40:85:2f:33:75:fe:32:1b:a3:8d:4b:
36:b3:0a:84:ef:ab:60:69:e6:cd:02:a7:94:a5:9f:
ff:0a:b7:c8:9d:29:5c:27:70:e2:b1:20:c8:c4:01:
a9:25:4c:f1:dd:f2:01:b2:f4:36:a6:b9:43:e0:cb:
e3:e5:cd:95:df:06:16:3f:27:b4:11:b3:f7:8a:43:
6f:61:5e:2e:b6:6a:71:08:16:38:f8:05:3a:8d:a1:
0d:c9:29:e3:54:37:1b:ca:7d:98:7b:7d:4f:d4:da:
7c:68:82:55:8a:03:2a:20:78:48:70:90:cb:34:34:
08:b7:ba:3b:d5:41:2b:88:b4:51:ce:30:f1:dd:b9:
b5:2d:57:5b:02:b1:05:53:56:1b:a9:88:c3:8c:d8:
5c:0f:0f:fb:f9:3a:89:d7:5b:e8:f3:7a:0f:f0:2b:
56:b9:c8:3a:ed:54:a9:1f:17:1a:f2:a7:b0:9d:af:
e0:60:86:36:c0:4e:d9:35:76:a9:72:2a:a3:9c:46:
1a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D3:D0:2F:0C:87:03:DA:6F:E3:F3:90:3B:0B:43:1F:32:68:AF:27
X509v3 Authority Key Identifier:
keyid:67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:29:a9:76:f6:7d:7a:85:4e:c9:ca:b9:d5:fc:bb:19:a5:5b:
ca:6a:04:cb:00:c6:b2:21:8c:5b:d7:f2:a0:1c:7e:d4:cf:14:
7d:70:57:2f:c7:46:e0:c2:51:3b:d5:73:c0:f9:30:88:5e:04:
e9:d9:31:34:f6:be:65:89:ba:3e:28:98:47:a2:b2:92:cf:68:
75:cb:4b:16:4d:57:0a:0e:4f:d8:ee:d8:a4:51:c0:21:98:78:
ce:cf:b0:28:c1:57:a9:07:a2:41:64:05:f7:29:3b:29:c1:a7:
52:d6:a1:15:eb:b2:20:48:c2:f6:2b:04:f1:1f:00:ed:0c:24:
f2:c3:1c:e0:f4:45:3d:86:9f:57:9f:16:b9:97:08:f6:9a:f5:
08:12:6e:b3:02:a0:dd:3c:fb:50:c4:1f:4d:ed:8b:70:d6:e2:
f5:84:0a:1c:01:89:29:a1:8a:95:70:33:b9:17:3d:ca:01:c0:
c9:c0:59:16:4c:02:1e:2e:52:11:7e:59:86:cc:f0:e6:39:f6:
da:19:2b:42:37:a1:6c:6b:1b:d7:de:81:77:16:88:d2:b0:2a:
53:90:51:2d:44:79:0a:9a:6a:ad:cb:61:3e:dd:14:e0:ae:38:
12:a4:04:1f:0f:48:c5:fa:2c:ee:b8:d5:24:07:a0:83:08:72:
4b:f8:09:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 18:10:55 2025 by rpki-client