Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: 9r5oouKuv0d51dLNHhq+g91EeMDWt/LiNdOxUJojyLQ=
Subject key identifier: 42:96:2A:E4:96:83:C9:5D:A6:75:5E:68:68:71:0D:5F:3E:64:5D:49
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 019A26D47A196ACA9D0A450582982BCFEC6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 07AD
Signing time: Mon 27 Oct 2025 18:00:50 +0000
Manifest this update: Mon 27 Oct 2025 18:00:50 +0000
Manifest next update: Tue 28 Oct 2025 18:00:50 +0000
Files and hashes: 1: 20Dw3EtRjT0VsUf9XJsc0R3Ci-Y.roa (hash: eYk/5sRuyCDN9GA+BHkMTQtHbaoi0rArz9DpKNEObWk=)
2: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: wAR9lPWelI8pQOtrHsL5sWTLk09KgNbsQZhtO9wY910=)
3: 4syStsiJ4_nkcJBvU4Ns9Pjm0oQ.roa (hash: 2p6GX7iVYhsRkTJt8jEU86F9xE4rex2UzZbhNm8D8D0=)
4: N_GpQaNWWGxkbuDZ3ulfH-r64tk.roa (hash: IM2SiURjMxHWXsFqFI4woiJ2ADSr+qZUIrRaSOqm3m0=)
5: oHg8th2m-6lkqpucCywGnTPw2Y8.roa (hash: fBPsGM2/mDx5oeAlhLVhusnxHUP4XIwFmPZfB6dTzC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:d4:7a:19:6a:ca:9d:0a:45:05:82:98:2b:cf:ec:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: Oct 27 18:00:50 2025 GMT
Not After : Oct 28 18:00:50 2025 GMT
Subject: CN=42962ae49683c95da6755e6868710d5f3e645d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:34:85:76:bb:d6:b6:e4:ff:00:4c:3d:50:e1:
43:fd:72:ec:60:26:28:d4:d5:f3:5e:10:5e:09:af:
b1:6c:54:7c:24:49:3c:2b:02:ae:e9:fa:b7:18:c7:
8d:17:a3:a4:35:a5:36:2a:62:b0:87:e0:49:27:5d:
17:d9:f2:1e:2e:7a:6a:d3:6a:5e:8d:40:d7:22:da:
98:10:7b:8f:6f:ba:18:e2:cd:86:9f:52:89:3a:27:
a5:11:8e:38:7a:f8:d8:50:99:6e:0c:d1:1b:0f:2c:
7a:d5:5d:a8:32:1e:00:92:2c:6f:87:46:2d:50:3f:
f4:b9:1b:87:b9:52:9a:ca:64:4b:a2:f0:61:7a:b8:
44:a4:e4:5b:ad:bc:10:22:3a:08:c3:71:20:0f:4f:
3d:27:1b:1f:60:f0:f7:66:75:6a:cc:87:d1:3f:49:
d1:3a:f7:d5:4e:60:14:d7:b4:96:b0:51:f2:d0:4b:
d1:00:89:cb:57:12:41:f5:92:2f:d2:1d:57:8f:13:
55:0f:67:07:cc:98:32:80:7b:bf:ed:06:39:7b:0c:
6a:8f:54:2d:9e:0d:ad:c1:d0:4f:63:f3:04:50:49:
a5:c1:05:f7:0e:a1:b7:c9:dd:a7:7c:b7:23:4d:a8:
53:50:e8:db:7e:4c:8d:6a:22:ce:e6:f6:02:a0:62:
b7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:96:2A:E4:96:83:C9:5D:A6:75:5E:68:68:71:0D:5F:3E:64:5D:49
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:05:9f:01:af:70:b6:bf:b8:6f:9e:3f:60:3f:70:59:aa:20:
40:1d:4a:29:96:00:a5:b1:35:0f:9e:1b:c3:ba:2e:76:7f:5c:
48:d5:cd:f5:58:4e:55:a4:57:63:6d:15:e2:0d:5d:79:d3:26:
c5:9b:01:74:a6:1c:71:ba:5e:2c:21:25:ae:18:93:ea:b2:f6:
ce:99:c8:3e:f6:4b:c8:39:41:3e:0e:f8:89:69:91:2d:36:45:
b6:20:3e:07:3e:84:5c:dd:66:75:a3:58:cb:d6:74:cd:f9:8b:
42:d7:27:76:72:2d:e9:c0:e1:df:38:cb:ae:ec:b7:6f:3e:98:
61:53:90:cf:d9:18:86:fa:14:52:4a:41:b0:b3:43:1e:12:33:
0a:7e:6b:1d:2c:80:87:8b:28:5a:bb:fd:3e:06:a5:f1:ba:bd:
05:b9:b0:46:50:f7:09:3b:2d:79:1b:cb:70:33:9f:f8:30:af:
39:bc:8f:56:16:d1:0e:59:d3:56:92:ec:c8:87:b5:d0:2b:e9:
3e:d5:7b:02:4b:31:64:32:37:51:93:1b:d6:9c:c8:43:64:51:
51:eb:7c:33:d1:0c:01:c8:ea:1e:72:49:66:4c:b3:c1:77:f8:
33:a0:98:dd:4c:ca:78:2e:01:c2:33:7b:8d:3b:1f:2d:1c:04:
11:9a:db:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 22:46:07 2025 by rpki-client