Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
File: mzYg1nmOfrGGY5xFSKBpavbjBYk.mft (raw, json)
Hash identifier: uzE35jQVPbhbNKeNhQbPZ0AQDzZsGJVaSmsbQ9AU2CE=
Subject key identifier: 4D:04:1F:76:04:CA:56:4A:8F:56:68:17:F9:77:21:29:B3:89:16:5C
Authority key identifier: 9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
Certificate issuer: /CN=9b3620d6798e7eb186639c4548a0696af6e30589
Certificate serial: 019A4E4FFE54CC04B165F505B9A29A7C50EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
Manifest number: 06B2
Signing time: Tue 04 Nov 2025 10:00:56 +0000
Manifest this update: Tue 04 Nov 2025 10:00:56 +0000
Manifest next update: Wed 05 Nov 2025 10:00:56 +0000
Files and hashes: 1: Q41X_j-X6MEBsrlAhkOF1wVzhbk.roa (hash: YBskpCx6COz+43ChHeDsLz5PAi6tPK0b2nqeQTQNIwI=)
2: mzYg1nmOfrGGY5xFSKBpavbjBYk.crl (hash: z8nHMRdiHafG7bW9x3B+uy06UB2NZddoewqglbqlJsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:fe:54:cc:04:b1:65:f5:05:b9:a2:9a:7c:50:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b3620d6798e7eb186639c4548a0696af6e30589
Validity
Not Before: Nov 4 10:00:56 2025 GMT
Not After : Nov 5 10:00:56 2025 GMT
Subject: CN=4d041f7604ca564a8f566817f9772129b389165c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:44:db:ec:3e:c3:74:c2:46:da:b5:ea:ab:
e4:e7:f9:cf:7b:8c:9c:30:a5:47:82:ac:d5:50:c0:
de:ca:ed:7c:fd:94:15:f5:04:9d:c1:9d:21:d1:43:
aa:a3:d2:12:ac:24:39:93:62:bb:8f:b3:d8:c2:7f:
30:df:e3:9a:77:43:47:69:84:70:97:73:cd:9b:7b:
09:05:7a:6a:4b:f8:e8:99:55:13:f0:8b:f6:e9:6c:
86:78:d2:81:1e:da:cb:e7:f7:99:76:a0:6b:6c:fa:
3b:67:c9:24:de:ae:1f:b1:54:d7:35:10:83:da:e5:
9e:ad:1e:5c:3f:51:d2:c1:bb:50:ee:8e:1a:52:20:
5e:0b:6a:69:57:da:11:78:74:89:cf:f3:a3:c5:c8:
0f:8b:e0:20:e6:cc:f6:d2:3d:7b:d8:30:9b:34:7d:
36:63:91:47:38:6d:09:4c:25:c1:1e:6e:92:3d:d8:
cf:f3:7b:34:e3:01:4c:c6:77:32:ce:14:e0:d2:53:
fb:0a:a8:45:7b:e4:a3:6b:ee:14:56:1b:5f:36:cf:
ff:4a:29:8d:51:54:b9:21:5a:34:08:76:ad:4c:df:
09:16:98:b3:c0:02:00:e7:69:fd:6c:bb:f9:39:ad:
e8:00:6b:85:9b:fb:52:5a:ca:68:3f:fc:3e:80:c7:
8d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:04:1F:76:04:CA:56:4A:8F:56:68:17:F9:77:21:29:B3:89:16:5C
X509v3 Authority Key Identifier:
keyid:9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3a:55:27:30:e9:bf:61:a1:1f:dc:88:1a:c9:cd:ea:3c:c6:
3d:6b:73:54:a1:1d:72:45:2c:ea:6e:26:67:60:84:f8:e9:96:
56:9b:59:8e:01:c0:4b:ab:61:ef:d5:49:bb:2e:5b:80:f0:3d:
ba:cb:66:44:f3:68:41:2e:8a:06:6a:35:42:97:33:b0:87:15:
bc:f7:81:60:31:d9:83:c1:e6:46:36:2b:a9:f6:a1:41:9c:f7:
a6:e5:01:fb:63:4a:e9:be:b1:8c:c9:2b:6a:50:e7:39:c9:36:
4a:3d:b6:90:70:69:89:31:9b:8b:80:f0:69:1c:cc:f4:20:17:
64:76:a0:7b:f9:20:bd:ce:9c:29:7d:81:ac:b7:6f:2a:14:e7:
75:4b:66:94:91:58:50:17:90:b7:1e:43:1b:ec:af:6d:98:52:
91:41:6a:b5:4f:be:bf:4d:1f:40:58:b3:f2:b8:9f:04:97:28:
b9:0f:43:28:34:8b:93:b3:86:e1:17:2a:76:79:e6:be:b5:2c:
70:f9:b3:96:ea:72:16:14:8e:6a:2c:9d:27:41:31:00:68:f2:
46:f5:c3:97:dc:e2:37:d9:60:63:ed:14:8f:d8:49:5e:4a:5e:
ce:c3:c0:cb:d7:84:c8:08:1d:d7:55:f0:93:43:5a:e9:38:09:
9b:f6:a7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:46 2025 by rpki-client