Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json)
Hash identifier: 31Mjz1la+wDmvktR212JG+sVOTjqSUg6an/voUXrT0Y=
Subject key identifier: 17:71:05:85:10:10:E9:E1:85:80:62:05:B9:20:D1:C1:B8:A5:C5:B6
Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Certificate serial: 019A7112CCC8674401620898BE50D98198A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
Manifest number: 0C27
Signing time: Tue 11 Nov 2025 04:00:48 +0000
Manifest this update: Tue 11 Nov 2025 04:00:48 +0000
Manifest next update: Wed 12 Nov 2025 04:00:48 +0000
Files and hashes: 1: oDVjxYPm7vPq-9FQVAv-wdPcmhE.roa (hash: SVNTWU/SFE8BeAZ7Bb0M+S0ysWhdx0WLLM1QECYtWDg=)
2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: OH2l+/CmqMFv7dEdUHyoS5Umbu2W0QPLsRwjyF/KPJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:cc:c8:67:44:01:62:08:98:be:50:d9:81:98:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Validity
Not Before: Nov 11 04:00:48 2025 GMT
Not After : Nov 12 04:00:48 2025 GMT
Subject: CN=177105851010e9e185806205b920d1c1b8a5c5b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:75:35:39:f4:af:2e:1a:2c:54:a9:16:dd:5f:
c5:6a:30:3c:bc:a4:96:85:5d:44:da:7c:1c:45:1e:
1d:ed:cf:90:3d:08:00:a1:49:bb:a3:80:65:62:22:
49:15:5f:ed:0f:40:98:a8:7c:6e:6b:7e:7e:a2:9d:
6b:9b:9e:1c:85:30:00:56:2c:fb:07:1e:61:20:fe:
5f:c3:a0:6a:f6:ec:46:ca:82:78:d5:ae:96:3f:53:
7a:de:f9:af:8a:3b:be:31:5b:ba:5d:78:02:aa:08:
13:3c:f9:0b:e9:0d:95:82:fc:c4:0d:95:33:90:5c:
b6:38:08:2c:ef:b0:4d:16:a5:86:07:4e:a2:09:1f:
2f:ef:84:56:0c:72:ad:67:d6:6f:d1:47:7d:db:d5:
83:83:ce:9e:ea:83:2d:a2:5c:f4:8f:31:71:0d:8c:
f4:a7:7c:8b:8b:6c:59:ab:53:3f:06:48:e8:49:4e:
02:52:bb:aa:59:09:90:00:21:86:eb:fb:ff:11:40:
72:f8:29:32:b5:14:dc:f8:0a:d1:aa:f9:88:64:17:
08:50:15:f7:7c:fd:a4:5a:c7:7d:a3:64:c4:3d:37:
68:c1:a7:09:61:68:c7:ab:1c:16:d0:b9:8f:9c:51:
06:cd:b7:5b:75:86:be:c2:77:e5:d8:6d:e7:d2:08:
57:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:71:05:85:10:10:E9:E1:85:80:62:05:B9:20:D1:C1:B8:A5:C5:B6
X509v3 Authority Key Identifier:
keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e0:1d:63:ba:f0:16:19:39:23:00:4f:fe:f2:fe:22:1a:63:
90:2a:0e:22:91:b5:d7:76:4d:49:88:05:8c:e3:db:45:ae:f8:
e2:7a:86:4f:6a:e1:2b:25:a0:2a:00:9f:75:40:6b:d9:35:92:
17:94:73:51:05:56:cb:24:9a:62:df:a0:1e:f0:40:0e:9e:bc:
0f:79:a9:bc:6d:13:b5:f4:43:63:54:6d:15:5a:85:90:5e:31:
bc:fc:ea:9e:7d:bd:ae:63:c0:d8:e9:da:3d:9c:e3:40:e8:eb:
62:48:90:c6:2e:19:74:54:7c:12:47:93:29:ee:23:cb:1a:f6:
26:40:18:21:7f:85:2f:92:a2:23:f3:03:df:17:0e:2d:01:4b:
f2:76:b2:67:c1:29:52:8a:14:ed:23:51:f5:a9:ed:ed:1b:43:
8a:8d:bb:f4:b1:a7:7e:88:b5:24:c4:d4:cc:a7:f1:89:b9:a3:
d5:3e:bf:ce:c7:4d:c5:1e:60:83:c3:0e:5a:f8:13:bf:79:41:
8a:0d:78:e5:a9:2d:e9:2b:af:8d:0d:bf:ea:9b:dd:e2:cf:b0:
7f:63:09:63:ea:4c:fc:e3:91:70:01:e8:9a:07:69:c1:ab:ca:
c4:6e:80:69:d0:94:5e:cc:b3:31:6d:7d:39:2c:51:e3:72:8e:
a4:f1:0a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:12:35 2025 by rpki-client