Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
File: Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft (raw, json)
Hash identifier: PnrmhzMke4jzxOt8vH6JB1v6pXh09Vp6hPy7gbDy6Dk=
Subject key identifier: 03:0C:9D:B1:51:B2:20:DE:4B:33:C3:86:1B:07:22:8C:CA:7A:DC:E6
Authority key identifier: 67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
Certificate issuer: /CN=6765a21b561ba8665cf79fbf44c31959de28f216
Certificate serial: 019A4F2B7B5A3272E2300CA2476B1C9CF06C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
Manifest number: 0856
Signing time: Tue 04 Nov 2025 14:00:40 +0000
Manifest this update: Tue 04 Nov 2025 14:00:40 +0000
Manifest next update: Wed 05 Nov 2025 14:00:40 +0000
Files and hashes: 1: 0v4Q3A_w9M1p1YcV4-7Pe389fdU.roa (hash: WhKTFW0tZdeh1NFz5izqlimm3sG/vP+EpF9M2Z10RmY=)
2: Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl (hash: 7TV8w6Yap9tdF2/HRITMiadn2aR1vIrC03nt+fA77Cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:7b:5a:32:72:e2:30:0c:a2:47:6b:1c:9c:f0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6765a21b561ba8665cf79fbf44c31959de28f216
Validity
Not Before: Nov 4 14:00:40 2025 GMT
Not After : Nov 5 14:00:40 2025 GMT
Subject: CN=030c9db151b220de4b33c3861b07228cca7adce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:dd:51:e7:ab:27:d7:1c:d9:1e:f9:25:a1:
5b:06:b5:93:c1:c5:62:9f:a1:56:27:d3:2c:4e:63:
dd:9c:ae:df:da:c8:81:67:9d:42:81:08:ba:f1:e1:
08:1e:07:da:d2:06:7d:c3:7c:70:93:4f:9e:3d:f2:
8a:6b:56:16:06:cb:cd:d3:c0:ba:76:2e:dd:bf:85:
5b:f5:5c:a0:4d:c5:56:5f:66:12:82:d8:6c:95:05:
42:de:28:c1:4e:11:f7:1e:6b:63:da:96:89:6c:62:
74:fc:e3:f8:03:e2:ec:c0:46:6f:4a:ef:20:9d:d8:
c2:25:5d:08:5e:58:b0:ec:1e:3c:11:0c:13:69:a0:
42:84:d6:3e:26:d3:8f:c9:a7:39:71:ea:ed:2a:c2:
16:2e:6b:7d:7c:5f:b5:92:1d:06:e6:79:dc:28:cb:
48:92:02:00:10:36:2b:ba:25:96:7e:6d:af:b1:f7:
05:10:49:54:bc:6f:2a:b3:df:ef:57:0d:4c:7e:f2:
18:d1:ee:df:a1:a6:bd:7b:0e:05:9e:d6:28:f1:f4:
3f:33:22:21:00:79:84:e7:11:96:a4:9e:dc:ce:50:
ec:f0:87:25:44:30:c3:c6:d3:e8:a4:10:2f:d3:4a:
6c:ed:11:89:aa:21:ee:41:df:90:07:0f:2d:c9:be:
d3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0C:9D:B1:51:B2:20:DE:4B:33:C3:86:1B:07:22:8C:CA:7A:DC:E6
X509v3 Authority Key Identifier:
keyid:67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:73:e3:68:c9:98:eb:e6:de:82:4f:af:35:20:94:b0:f9:82:
a4:b0:b3:0e:47:63:e1:1e:83:6b:82:aa:ae:45:7d:c0:4e:b4:
12:45:52:cd:a7:a6:53:bb:e1:f9:3d:24:05:d2:5d:54:86:f9:
15:de:c1:74:43:c4:22:02:4b:9e:48:47:c3:b8:57:bf:01:bf:
2c:05:16:00:52:00:d2:2d:15:24:07:55:a4:bd:ab:44:bc:57:
ce:52:2f:c4:40:0b:2a:c3:35:0c:96:17:1a:48:fd:e2:be:91:
94:f1:7d:84:5a:4d:4c:04:1f:76:fc:74:2f:c3:45:ce:d5:5a:
ca:91:f4:db:83:d7:d2:21:57:e2:bc:58:db:9e:17:aa:1c:5e:
7d:65:1b:0a:dd:e3:1f:ef:b0:56:2f:13:29:89:c0:8c:7a:54:
af:00:da:d1:2c:1b:5f:78:fe:9b:b0:6d:c0:a7:84:63:1f:ff:
bd:c0:18:a3:70:b7:ca:30:92:2a:82:2e:08:78:48:f1:d9:ea:
6f:42:69:52:d3:e3:5a:c2:c9:31:68:d0:aa:5b:0d:55:24:18:
1e:8a:6c:da:0d:b6:1d:d3:34:00:8f:15:ef:d8:9b:b1:d0:b1:
76:08:bc:8a:17:cb:e9:c6:29:66:ba:03:21:df:b8:e8:8a:0b:
0d:f0:fc:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:15:56 2025 by rpki-client