Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
File: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft (raw, json)
Hash identifier: 61gYCSNnrORgWdovoJV5cgpGezYs1DIAr9Aterw1L1c=
Subject key identifier: DB:C3:11:35:50:96:A3:84:12:D1:51:47:CB:7A:C5:2E:BD:C8:B3:C9
Authority key identifier: D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
Certificate issuer: /CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Certificate serial: 019A239C4AE3BC9F5D03B34B3DA343BFB1D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
Manifest number: 16F6
Signing time: Mon 27 Oct 2025 03:00:36 +0000
Manifest this update: Mon 27 Oct 2025 03:00:36 +0000
Manifest next update: Tue 28 Oct 2025 03:00:36 +0000
Files and hashes: 1: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl (hash: lH4X0DJZ8PuDbaJ9lSBhWrleGwamOQ1yVhDcCuHyD+c=)
2: qflKZTF3zhSp7clCgQY6deaVcuQ.roa (hash: YrrT0H2VFpPiuVpFBvUMkkYVOwRQGbWJWicWDvr4Ns0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9c:4a:e3:bc:9f:5d:03:b3:4b:3d:a3:43:bf:b1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Validity
Not Before: Oct 27 03:00:36 2025 GMT
Not After : Oct 28 03:00:36 2025 GMT
Subject: CN=dbc311355096a38412d15147cb7ac52ebdc8b3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:08:ab:ed:25:e2:ee:3e:0a:13:dd:fc:63:
32:86:ed:44:85:e3:a5:3a:b6:49:5a:84:39:f0:8f:
e6:45:7f:73:00:79:a5:98:7b:c5:51:6d:63:43:01:
dd:12:ec:1e:13:53:79:e6:a0:44:da:b5:30:6d:ad:
ce:d1:68:fe:2a:ba:b7:9d:15:36:24:a0:bb:1a:54:
f8:2e:11:ff:8a:62:fd:2f:54:f4:0b:29:61:05:f2:
e0:7c:99:49:16:19:32:79:06:16:ca:86:0e:ad:fd:
e1:8a:38:74:20:97:6f:7e:03:b8:ef:ef:f3:29:ba:
fa:89:99:31:16:84:01:86:32:f1:6e:1e:6a:a4:2f:
c1:80:ff:85:dd:c6:da:cf:c6:65:f4:de:36:b3:a0:
1d:2b:38:e3:f1:1f:08:1e:73:ec:4f:70:76:d6:7a:
d0:a0:65:ad:70:74:20:6e:bb:e5:bf:00:6d:13:b8:
c0:4b:38:f6:70:3b:4c:9f:3a:ce:2d:43:a7:59:92:
10:bd:96:0a:68:86:77:af:16:08:df:26:74:7e:06:
ae:eb:0e:78:6c:cf:a5:98:0b:b1:bb:5c:47:11:9c:
9a:1c:e1:4f:b2:00:1a:3e:91:68:3f:27:e7:64:87:
f0:62:6a:4e:3e:5f:67:61:96:a5:a2:96:71:cf:ee:
ca:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C3:11:35:50:96:A3:84:12:D1:51:47:CB:7A:C5:2E:BD:C8:B3:C9
X509v3 Authority Key Identifier:
keyid:D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:c7:de:bb:08:88:2a:22:13:fc:d5:de:49:2c:0a:5d:6c:29:
bc:23:0c:0c:9d:09:84:7e:0d:64:6e:11:91:af:78:ab:15:9d:
1c:eb:11:d8:6b:67:9c:d8:60:5a:3e:d0:28:fc:7a:17:1b:d3:
03:27:76:17:7e:31:a9:a7:7c:4a:2c:2b:c8:51:5d:34:4c:19:
5a:c7:32:c7:57:12:ad:f6:19:70:68:15:6a:af:f7:54:2a:be:
4b:3a:b6:ac:4e:a4:84:60:fb:ac:3b:40:bc:19:60:ce:89:9f:
28:23:31:e9:97:25:7e:17:27:ef:6e:0f:8c:24:a8:5c:f1:46:
0e:0d:56:7b:61:63:ba:c6:d2:1d:8e:90:19:49:8e:50:ff:08:
f0:2b:f3:88:38:06:6a:31:75:59:19:f4:69:0d:61:c3:b0:a5:
72:12:29:43:d7:fc:de:8e:96:62:34:54:26:df:ec:1d:3d:be:
69:e7:76:7d:bc:d2:0f:b0:bc:72:27:19:b0:4c:89:b8:fc:2c:
92:ee:14:cd:3a:1e:7d:b0:61:0b:5e:ff:a6:bf:25:32:3e:a5:
df:b3:34:cf:19:e4:07:a3:dd:d0:f4:21:79:74:8c:21:1d:99:
ba:60:f1:de:50:04:eb:ea:2e:f4:ee:0c:89:2e:be:79:a7:d1:
76:b8:e6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 06:29:40 2025 by rpki-client