Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
File: zSC8r3ISPi2fXieIazg5t0JEELc.mft (raw, json)
Hash identifier: jC34KwZhXdqqEUU9IcpFY0gXy0uQcmeEvy9dHhN3Ko8=
Subject key identifier: CF:5D:F3:27:E9:3E:6C:5F:93:A2:5E:2D:34:5A:F6:CD:8C:92:07:B6
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 019A518787C74FDDAEA08B281C9A241C3DA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
Manifest number: 0CFC
Signing time: Wed 05 Nov 2025 01:00:27 +0000
Manifest this update: Wed 05 Nov 2025 01:00:27 +0000
Manifest next update: Thu 06 Nov 2025 01:00:27 +0000
Files and hashes: 1: YvvxlYUE1Sa5OVkc6cN_zQjcrsc.roa (hash: 755pvpPS6YdCIfa/QNyMrmXmYNI2VVu3cPA+IlhoyYY=)
2: zSC8r3ISPi2fXieIazg5t0JEELc.crl (hash: UMGUZJ6qnMhneaFdayYIh3p+TwCDp30UGEm+X0e6/ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:87:c7:4f:dd:ae:a0:8b:28:1c:9a:24:1c:3d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Nov 5 01:00:27 2025 GMT
Not After : Nov 6 01:00:27 2025 GMT
Subject: CN=cf5df327e93e6c5f93a25e2d345af6cd8c9207b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3e:8f:9c:be:b8:99:eb:53:f4:c8:26:46:62:
95:72:bc:e0:1c:7a:0d:92:24:30:84:64:b2:d9:ee:
16:8c:e1:e9:f5:6c:1b:11:db:4f:4e:73:8f:51:53:
35:6a:f6:78:8b:52:c6:aa:a4:bf:2b:78:b7:78:02:
f6:4a:39:1d:04:45:79:79:eb:1a:32:2b:03:d8:96:
0a:d1:42:00:22:f3:70:92:15:ce:01:0e:2f:c5:ba:
23:42:98:d8:43:66:06:bf:e0:9d:aa:0f:6e:3f:2a:
65:ca:e3:3b:be:c0:7b:27:66:c5:73:31:ae:d9:be:
6e:ad:f8:23:9c:14:85:3f:44:20:07:4e:d8:06:a3:
54:38:31:a0:b8:ee:51:5b:7c:97:8a:f8:a4:15:e4:
b6:ca:5d:8d:5b:e4:06:06:d7:29:ad:78:50:38:fd:
f1:3a:b9:bd:da:98:6c:4c:32:1a:8f:71:e9:d0:3f:
8b:f0:5f:55:22:7f:3b:54:a4:8f:6d:fa:77:4f:60:
f6:13:3e:76:cf:4d:64:30:b7:63:f3:4b:71:89:6c:
c2:b0:00:1c:77:e3:fb:e3:35:e8:ad:3f:9a:98:a6:
34:96:42:21:4a:c5:81:0a:19:37:10:66:86:f9:71:
1e:e5:67:b7:f8:38:70:2f:93:fa:d6:39:67:a1:0e:
95:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5D:F3:27:E9:3E:6C:5F:93:A2:5E:2D:34:5A:F6:CD:8C:92:07:B6
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:6c:6e:98:16:75:fc:c5:33:ca:15:01:ba:78:08:b4:1f:8f:
ed:c3:03:06:e5:af:80:67:9c:9e:99:b9:ea:83:2e:47:7c:cb:
df:54:74:9f:c4:a8:48:70:96:bd:9a:57:89:4a:db:38:72:ca:
85:19:65:bf:21:53:c0:dc:9d:06:8a:e1:1c:62:28:38:d7:b1:
37:89:a9:96:07:a5:a8:8c:e1:98:31:0e:72:08:fb:eb:cd:8d:
78:be:ca:c4:d5:0c:e6:ea:fd:af:29:69:ef:f9:50:1e:b4:df:
20:5e:9d:48:76:fa:ab:f2:64:aa:2c:15:09:be:1d:84:6f:08:
c6:75:b6:03:0e:82:f6:fa:7e:77:ae:d3:c3:36:de:68:bc:e3:
27:40:e1:ea:e8:aa:cc:ea:23:c7:d3:aa:d0:2f:11:8c:31:15:
05:63:cd:8e:c8:05:3e:eb:57:a8:45:e0:7a:2b:a2:f1:2a:e6:
8e:0b:6b:8c:25:d9:0f:a9:59:88:bb:71:0a:96:0a:50:1b:a2:
eb:9d:be:1f:04:8a:7f:62:e1:09:43:8d:df:df:02:6c:ab:4e:
b3:26:3b:35:31:3e:bb:f1:ac:a7:b8:af:1e:36:c4:48:57:ea:
d1:dd:11:08:a4:06:88:ca:65:11:e0:4d:e5:e9:e8:41:cb:08:
68:39:b0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:56:11 2025 by rpki-client