Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json)
Hash identifier: Z6aDJ3UVo0wq9WVCQyCH4vAQCjejeU6hviFUN1P1Fr8=
Subject key identifier: 8C:61:1A:4B:C1:FC:CA:4B:34:FD:B3:B9:E0:0F:A2:D6:AA:D7:7F:A6
Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f
Certificate serial: 019A4E18E198D38E15704644F155EABEBB1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
Manifest number: 0668
Signing time: Tue 04 Nov 2025 09:00:44 +0000
Manifest this update: Tue 04 Nov 2025 09:00:44 +0000
Manifest next update: Wed 05 Nov 2025 09:00:44 +0000
Files and hashes: 1: r9Ux985jnVmfKHLZzNH9_T06wzU.roa (hash: SP4ahRSwbqs6nOlIBz3rDf0O3m+DJabQsDxWQ8oLOwM=)
2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: A+wF0gw8+LhOMzScn7itKnEJ5POKpbamPlKVrw74KaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:e1:98:d3:8e:15:70:46:44:f1:55:ea:be:bb:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f
Validity
Not Before: Nov 4 09:00:44 2025 GMT
Not After : Nov 5 09:00:44 2025 GMT
Subject: CN=8c611a4bc1fcca4b34fdb3b9e00fa2d6aad77fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:dc:cb:c3:8a:3c:8c:fa:68:6d:77:99:cc:
18:ef:4c:90:66:49:83:e3:f9:a7:9e:8f:63:85:a5:
7f:32:b6:47:37:30:5d:ee:78:66:b8:73:4d:20:59:
9a:cd:dc:2a:7a:16:16:1e:3d:24:3a:61:4e:57:b6:
8d:ad:97:12:bd:6d:85:ed:45:79:e2:5b:70:0f:eb:
7e:4c:53:d3:c8:94:31:fa:c3:08:a2:65:99:ce:21:
6a:e6:c1:4c:f1:5f:6b:30:2e:72:c9:a6:1a:27:67:
d3:e6:1e:d0:be:8e:84:13:7d:bf:62:12:b7:68:f9:
c1:88:f0:6a:91:27:36:43:e9:81:ba:b3:cd:14:9c:
9b:31:bb:8d:8b:ee:a4:b2:a1:73:cf:dc:86:43:33:
52:8d:f4:0a:00:b6:0e:8d:75:cb:dc:41:5d:99:a5:
4f:6b:1d:2b:27:f7:34:42:26:00:0d:3f:10:eb:94:
5a:4d:56:40:49:30:5f:cf:7f:a7:bf:8c:57:c3:4a:
df:af:56:5c:28:57:13:d6:6a:00:bc:e6:a9:70:e1:
38:da:93:37:92:ad:7e:f0:13:da:11:aa:00:08:45:
27:b1:e0:45:6a:a5:0e:08:e0:af:41:58:f1:07:49:
c9:70:69:6c:7e:d2:4d:fc:3b:ae:8f:86:5e:6d:18:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:61:1A:4B:C1:FC:CA:4B:34:FD:B3:B9:E0:0F:A2:D6:AA:D7:7F:A6
X509v3 Authority Key Identifier:
keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:e7:c0:4f:da:db:ab:81:36:e3:8f:f3:38:c3:58:33:02:74:
a7:29:33:08:73:36:a0:79:49:b2:57:9f:b9:dd:c3:a5:71:cc:
4e:d8:06:79:ea:e6:87:0b:54:51:34:2d:b9:c0:9b:32:de:9b:
82:fb:d1:a6:d2:6c:6a:88:10:1f:a4:c1:b5:20:30:4e:7d:91:
c2:3a:8e:45:32:e5:bb:c9:90:fd:ea:a9:53:57:29:77:29:f9:
92:ff:82:84:f0:9a:e9:9f:fc:7b:f7:57:f0:69:4b:cc:e9:b6:
62:81:96:d5:0f:fd:42:c6:a6:ed:aa:2a:cb:33:d0:08:32:f6:
da:ad:ee:a6:cc:bd:f7:c6:d3:ae:6d:e0:94:1d:7e:2f:ce:5c:
3f:e4:e7:7e:c0:d9:61:a2:ed:a7:ec:d6:7a:29:d2:1e:59:30:
1c:84:4d:5b:74:11:75:91:59:2b:b6:d7:bf:bf:8c:57:92:68:
15:b4:97:ae:ec:d0:e5:14:84:ae:d7:cf:14:d5:23:39:d7:6c:
b3:0a:fd:bb:7d:9d:c3:b4:8c:d7:e2:a3:70:aa:ed:a1:18:7f:
ca:bd:5c:4c:b5:0e:c2:3f:e8:6b:c8:b8:20:00:a2:16:7d:a3:
6e:9b:e2:5c:48:90:a3:96:cb:d0:a1:1a:eb:a6:1b:d4:f4:6c:
01:d5:b5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:19:02 2025 by rpki-client