Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
File: zWj3o5G3sWSe1JA0gtPpMe0049g.mft (raw, json)
Hash identifier: kTjvFrYNAkIG7QbsgbLJapRq8pZ7OR+5+sfoQbSisAs=
Subject key identifier: 31:2D:AC:2F:04:F0:CD:F0:C6:0C:55:B5:D5:06:62:30:7D:DF:DF:74
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 019A725CDF52E4D1018C3A5BEA51CD6B907B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
Manifest number: 101B
Signing time: Tue 11 Nov 2025 10:01:20 +0000
Manifest this update: Tue 11 Nov 2025 10:01:20 +0000
Manifest next update: Wed 12 Nov 2025 10:01:20 +0000
Files and hashes: 1: O1GYVhxFS0M7H20Hoh1Atb3eLaE.roa (hash: tCVke6K7TW9gUgASV8dTundK+jeF3bulXbwfPaxFtHY=)
2: SWAth1mKD6FwJVqaJWtV6D-F51Y.roa (hash: REJDhZOwFyr4wdpkCheBE0DhoqN625ViwDnudBYPico=)
3: Sc-FyfdVDPaQqHGz-GI3fsuN6cM.roa (hash: zSZi5viNxy6Qez2EVg97kMrTwqojW2kb2exfumMpwjg=)
4: hkuhpnMVVYRgPxAr-LQ10OakoTI.roa (hash: oAtibnQ6KN2VeS7D1IHVgfHz1J3VS/wtW0fPG2i0OP0=)
5: zWj3o5G3sWSe1JA0gtPpMe0049g.crl (hash: xe2nK6k6AFDTzNkOJqSLbe+1kSgRS1SyNny4odkwwN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:df:52:e4:d1:01:8c:3a:5b:ea:51:cd:6b:90:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Nov 11 10:01:20 2025 GMT
Not After : Nov 12 10:01:20 2025 GMT
Subject: CN=312dac2f04f0cdf0c60c55b5d50662307ddfdf74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:2f:68:53:cd:40:ab:1b:a4:f3:09:5e:31:
5e:b0:6f:a7:76:d6:66:ba:65:10:69:4b:04:40:97:
1e:b2:af:c9:3c:5d:3a:ea:d2:40:4d:8a:5e:c6:58:
60:06:90:9a:39:8b:6c:79:21:b5:ac:e3:02:41:86:
29:d8:e4:67:3f:c2:a2:9d:68:ab:c5:67:67:25:51:
ce:b4:de:a1:3a:41:ab:9e:f9:e7:41:22:77:b2:b1:
49:3f:47:e3:d8:7e:0c:e6:98:02:b1:cb:38:35:6f:
13:cf:85:eb:12:17:ca:54:29:8c:b3:14:9d:31:f2:
ac:f4:f5:5a:b7:92:32:ff:62:72:2f:68:41:f4:6d:
fa:ef:44:7c:c9:10:51:28:1d:a9:d1:01:d2:89:16:
5c:a6:47:2b:bc:a7:4c:97:70:36:ba:ee:13:68:51:
74:0e:3b:26:95:ff:32:c7:e8:63:c2:a5:0a:c1:c5:
20:c7:16:e9:c4:bd:d1:7e:b4:25:88:d3:f2:ce:39:
e6:a1:6b:35:99:2a:9f:0a:6a:ec:3b:74:63:29:a7:
1c:a9:e2:55:69:aa:18:c8:b6:0d:0c:f2:4f:6e:7c:
e7:c7:08:b9:07:b1:9a:cf:d4:3b:8f:bd:d1:75:46:
89:75:51:99:9e:5f:29:e7:20:db:0d:05:60:7a:c1:
84:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2D:AC:2F:04:F0:CD:F0:C6:0C:55:B5:D5:06:62:30:7D:DF:DF:74
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:f8:06:cd:c4:3d:84:1b:2a:ee:a1:2b:56:fb:31:08:1f:d7:
36:66:e6:8c:c8:69:01:e5:e8:f4:fe:4f:d3:0a:e1:b4:e0:f1:
f0:df:32:73:2e:ce:b3:06:fe:7c:80:ea:38:31:67:50:72:2f:
87:d5:9f:a3:3a:f3:4b:d8:de:76:88:63:62:6c:7e:a1:34:d4:
bd:9a:51:44:d0:15:ad:f6:9c:28:18:75:79:09:a4:a2:ef:78:
f5:2c:09:eb:95:42:21:13:bd:83:46:51:d2:58:7d:6e:23:38:
78:d8:5a:8a:05:b3:25:51:39:2c:28:f4:7d:ea:a2:73:f5:28:
a2:01:9a:be:63:f5:11:a3:d2:6e:cc:f7:c0:0e:30:6a:d1:5a:
de:62:2f:af:34:2d:7d:d0:0a:ce:76:88:33:17:b8:b9:f5:db:
39:3b:4e:91:97:66:a1:b1:21:d3:5e:49:04:a6:69:c5:0f:5e:
72:7d:ab:ec:9c:87:a5:b6:c7:d4:1c:67:fc:42:1e:de:82:cb:
2b:b5:8e:1d:bb:08:e7:6b:75:dd:cf:95:db:8b:44:e2:9c:93:
c7:e1:bb:49:ae:f5:f2:b2:ff:5c:d2:ca:03:f6:c4:e6:f4:fb:
3d:2f:a3:6b:24:4c:0f:5f:63:3e:0d:b4:40:c4:1a:b5:32:97:
68:1e:4b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:11:00 2025 by rpki-client