Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
File: zWj3o5G3sWSe1JA0gtPpMe0049g.mft (raw, json)
Hash identifier: eDPqvosOru/cE+rDkcElfcJXQ2NhfVgHMzDIT3RNGp0=
Subject key identifier: F2:31:70:60:93:F8:4F:9E:0B:A5:E0:67:8F:C3:CB:E0:51:D9:25:78
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 01992443BBA9FBD5A2982F0A6A59DB4498F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
Manifest number: 0F6E
Signing time: Sun 07 Sep 2025 13:00:42 +0000
Manifest this update: Sun 07 Sep 2025 13:00:42 +0000
Manifest next update: Mon 08 Sep 2025 13:00:42 +0000
Files and hashes: 1: O1GYVhxFS0M7H20Hoh1Atb3eLaE.roa (hash: tCVke6K7TW9gUgASV8dTundK+jeF3bulXbwfPaxFtHY=)
2: SWAth1mKD6FwJVqaJWtV6D-F51Y.roa (hash: REJDhZOwFyr4wdpkCheBE0DhoqN625ViwDnudBYPico=)
3: Sc-FyfdVDPaQqHGz-GI3fsuN6cM.roa (hash: zSZi5viNxy6Qez2EVg97kMrTwqojW2kb2exfumMpwjg=)
4: hkuhpnMVVYRgPxAr-LQ10OakoTI.roa (hash: oAtibnQ6KN2VeS7D1IHVgfHz1J3VS/wtW0fPG2i0OP0=)
5: zWj3o5G3sWSe1JA0gtPpMe0049g.crl (hash: FptZYtVBzXnt9BoE11Vxmv0Dh87ss4JCzCL7c+mZ1lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:43:bb:a9:fb:d5:a2:98:2f:0a:6a:59:db:44:98:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Sep 7 13:00:42 2025 GMT
Not After : Sep 8 13:00:42 2025 GMT
Subject: CN=f231706093f84f9e0ba5e0678fc3cbe051d92578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c5:c7:51:63:5f:be:45:62:96:7f:c0:15:3d:
bf:60:f2:86:f7:5b:64:60:46:a7:ec:0c:0e:39:1f:
c1:97:38:a2:8e:fc:d1:0a:53:73:be:23:c0:d0:92:
bc:49:51:21:2a:6e:07:b0:b0:ba:c7:c1:22:2c:11:
66:1b:99:74:75:a7:f0:98:59:da:f6:b2:8a:62:ed:
5c:51:b2:cb:72:50:37:3a:b8:26:8e:5b:54:55:ee:
b7:de:dd:02:33:30:4a:89:b1:ec:21:04:ee:6c:1a:
50:6c:56:2f:04:a3:63:54:e2:68:18:c6:d7:9d:91:
9d:80:71:84:f0:78:46:f0:04:56:13:c1:b3:32:65:
4d:f3:17:3b:a9:60:30:87:3e:80:69:1b:05:d8:2a:
6d:5f:78:28:04:5e:33:21:2f:ee:26:e8:dc:d1:c5:
5f:62:68:a2:ae:88:e4:c8:91:a8:1b:02:b4:c1:6d:
cb:22:2e:56:d1:00:c0:9e:3d:c5:7a:ba:1a:a9:1b:
a0:59:f1:25:6a:c0:3f:fe:81:49:a2:3c:69:87:77:
1c:bb:99:fb:e5:e1:02:5b:de:16:df:f6:9b:3a:34:
b7:1e:a6:73:58:9b:4c:9f:84:0d:c7:22:19:4d:d7:
4b:b9:30:78:c4:da:f4:35:0f:9f:76:f5:ca:1e:ec:
e6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:31:70:60:93:F8:4F:9E:0B:A5:E0:67:8F:C3:CB:E0:51:D9:25:78
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:e1:df:73:62:53:98:9d:51:a6:35:32:b8:7c:37:7d:7b:c5:
d9:b9:a7:ae:fe:2b:3c:5d:50:50:d2:6e:a9:71:40:4d:de:c6:
54:d9:71:c7:db:1f:46:bc:a2:62:78:70:c8:91:fb:45:c1:47:
7c:06:4b:b6:8d:37:c2:af:6a:fe:3e:72:73:7f:f3:b7:44:8f:
f1:cd:61:f0:eb:0e:d5:42:b7:56:71:3d:84:13:a6:d0:d6:20:
c7:c5:45:d2:21:a0:d5:e2:14:0c:61:5a:cd:24:75:f8:e1:db:
fc:d2:9b:09:2e:77:4d:c4:df:44:f6:d2:32:81:e1:11:9c:c7:
30:50:70:8e:be:0f:63:24:85:80:4c:4e:48:11:79:8e:30:34:
9d:7e:8e:69:a1:08:34:eb:17:07:35:8b:5c:f0:88:86:ed:c1:
78:b5:40:49:04:0b:b7:24:a5:e3:03:75:39:e0:c8:5f:ea:60:
d5:92:a3:0e:1e:ec:2e:23:e9:84:64:f9:ad:2f:57:f0:c8:1a:
94:72:99:0c:5a:72:b0:8e:a0:a6:f7:73:df:85:8b:5d:35:32:
2b:a8:80:47:c6:a6:65:48:21:f5:96:6f:26:07:8c:dd:7f:ac:
ad:ac:25:a0:e0:48:af:b2:40:86:ce:0e:54:3e:6a:fa:7c:4c:
03:d7:34:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:43:34 2025 by rpki-client