Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: Yoxba0TAwvovFlgz5Wp5x+Zsw02RGiN2ZN6iKtiOSxU=
Subject key identifier: 3D:A6:7C:35:3B:3A:D1:F5:95:23:59:58:20:FD:3B:2C:26:10:A3:42
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 019A4D06A52CD8339F02926C6D97D9F9D6E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 0518
Signing time: Tue 04 Nov 2025 04:01:12 +0000
Manifest this update: Tue 04 Nov 2025 04:01:12 +0000
Manifest next update: Wed 05 Nov 2025 04:01:12 +0000
Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: KxnCSwkUlKWi5zMSrUXo7nGKtvd2/cI4UpLwvcpBKD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:a5:2c:d8:33:9f:02:92:6c:6d:97:d9:f9:d6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Nov 4 04:01:12 2025 GMT
Not After : Nov 5 04:01:12 2025 GMT
Subject: CN=3da67c353b3ad1f59523595820fd3b2c2610a342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:ba:c5:bf:fa:79:b3:8a:63:64:37:fa:a2:
7e:95:1f:f4:09:cd:b9:dc:cd:31:e3:4a:1b:19:dd:
16:5a:ec:30:d6:d5:bf:03:a4:11:42:fe:24:cd:38:
14:2a:d1:1d:ad:fd:6e:26:b5:f6:7e:4b:ea:7f:81:
cf:dd:ee:89:ef:85:f3:2c:49:e0:56:22:8d:cc:fe:
be:28:fa:81:61:08:3d:ea:31:15:34:49:db:d0:68:
fc:f7:7d:c3:f4:dc:a2:f5:ce:e7:44:4a:17:cb:c2:
81:5d:c2:84:1e:fa:da:c2:f8:bd:2a:e8:17:9e:e8:
7f:b4:3d:67:40:c1:89:94:d2:a4:7c:c3:75:d8:dc:
5b:e5:1c:89:9d:8f:f7:a7:cf:ed:29:2e:79:fc:33:
ca:96:e1:bf:1f:19:6c:d0:1d:05:b1:2f:97:43:ac:
4a:31:07:a3:39:e5:fd:97:51:de:da:19:e0:4d:02:
d3:54:ea:02:06:cf:c5:d9:0f:4b:46:10:b8:49:11:
11:a6:0d:81:a4:d7:de:ef:ac:99:c5:91:8f:4a:7c:
07:ee:cf:e5:12:12:6c:1b:8c:4a:c5:97:1a:77:76:
98:be:f4:18:03:bc:96:f5:7e:82:9a:60:74:9d:4f:
c0:d5:23:8b:8f:1e:43:cf:d8:89:46:f2:46:f7:c1:
79:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A6:7C:35:3B:3A:D1:F5:95:23:59:58:20:FD:3B:2C:26:10:A3:42
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:7d:ea:23:66:07:a2:fb:2c:fb:54:47:f4:17:97:0a:b3:7f:
e4:38:aa:de:aa:28:db:73:c2:0d:f6:51:6f:74:e7:98:59:c7:
4f:3e:7b:3d:87:91:5f:0b:6b:36:7f:9e:4a:52:7d:7e:e7:0d:
ce:96:96:91:7e:ef:ec:3d:27:92:5d:68:15:44:7e:40:05:36:
5a:b8:a1:df:bd:5f:62:73:8a:85:d6:e5:b5:a0:75:9b:cf:e4:
ee:7f:fe:8e:6f:1e:e6:bc:01:b9:d3:da:15:e6:a1:cc:fb:ad:
87:14:0c:3b:4e:b2:0b:e1:c0:d8:27:b8:7f:2d:aa:51:e2:70:
d6:2e:0f:80:be:5c:03:aa:9d:9f:79:6b:4f:9f:40:5c:b9:dd:
64:72:d7:0b:93:64:3f:2c:a8:6f:32:9d:6b:38:d3:80:65:23:
0f:f0:79:67:97:08:e4:ca:a7:c5:1b:92:38:96:fa:f7:0b:b1:
5c:c5:78:73:65:b6:5e:f2:cb:61:5f:ed:16:11:5e:fd:d1:2d:
db:ba:f5:a4:68:95:79:14:99:86:24:eb:a7:62:cc:28:79:db:
fe:d5:3e:f8:95:2f:7e:a0:b9:13:8d:27:60:b6:c9:4d:14:c3:
0d:7f:39:02:32:60:69:f2:6f:f1:68:93:4b:24:cd:4c:e4:c6:
1f:d2:30:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:19:00 2025 by rpki-client