Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json)
Hash identifier: s5yE7QDBwM5KFsZE7iH/e2C/IiKLVN1zxI1MworpRAU=
Subject key identifier: D6:73:E1:DB:F5:24:9C:D7:CF:C0:A0:C1:42:C8:51:D3:C6:5F:4A:4C
Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Certificate serial: 019A5006E1DCC13D1C61829BF1C80749F012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
Manifest number: 0262
Signing time: Tue 04 Nov 2025 18:00:19 +0000
Manifest this update: Tue 04 Nov 2025 18:00:19 +0000
Manifest next update: Wed 05 Nov 2025 18:00:19 +0000
Files and hashes: 1: 0-WwVD2zFPGNgQhhntKyco3wY3I.roa (hash: bPryhs2CIXqAzaBTX4TIyszyma7cGcWiYG+PS79estE=)
2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: RZS10odVl836GvtWs0nSnCEkUjwijb2RD6yuU3XHVUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:06:e1:dc:c1:3d:1c:61:82:9b:f1:c8:07:49:f0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Validity
Not Before: Nov 4 18:00:19 2025 GMT
Not After : Nov 5 18:00:19 2025 GMT
Subject: CN=d673e1dbf5249cd7cfc0a0c142c851d3c65f4a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9a:72:44:76:99:d2:07:69:8c:38:a7:93:4e:
bd:c6:45:5c:42:52:65:f0:f7:1f:fe:26:2d:b1:3e:
b8:17:83:87:a4:a0:f0:31:14:71:2e:00:6f:10:68:
a1:d8:31:7a:00:1b:7e:b1:12:f6:4c:2c:09:23:46:
a2:b7:86:58:6e:23:c1:9e:b8:a4:0c:89:c4:79:d3:
1a:99:92:9e:e1:e7:e1:0b:f0:a4:8d:ed:44:76:21:
b0:f5:c2:95:51:f5:33:93:da:6b:b8:aa:ee:c1:36:
60:1d:43:c0:06:cf:76:14:2e:15:a3:ff:ab:ff:5d:
14:27:77:36:06:0c:f6:04:ab:c4:ca:61:3f:f8:ad:
40:5a:2f:0f:e5:bb:b5:c8:af:02:e8:b7:f5:d3:b9:
57:63:55:8a:fb:cd:8f:62:2c:71:d9:01:a0:88:79:
92:c3:f2:9a:db:dc:ac:73:f3:6e:0f:17:e4:aa:11:
34:be:29:c0:0e:19:b8:04:d8:58:73:bb:18:8d:c9:
e5:02:fc:ad:0f:41:14:2a:a5:6f:34:6b:71:42:d4:
46:57:03:d4:b0:44:64:6b:02:13:ba:f3:d8:ee:7a:
b9:2e:81:2f:c3:11:ee:50:9b:a9:65:f4:db:fa:26:
b0:a9:f2:72:8e:e3:92:44:c3:05:fa:16:1e:47:45:
43:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:73:E1:DB:F5:24:9C:D7:CF:C0:A0:C1:42:C8:51:D3:C6:5F:4A:4C
X509v3 Authority Key Identifier:
keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:5d:3d:58:0d:f4:2c:8e:1c:a3:57:77:40:8f:c5:96:91:f5:
f8:4f:f4:08:cd:c6:05:58:ae:7c:5a:80:74:bc:3f:78:1b:37:
41:3a:7d:df:0d:df:fc:b4:19:b5:85:a5:71:c8:e2:bc:24:88:
2c:ff:25:fb:16:f5:b8:dd:2c:00:c9:ac:66:f2:9e:35:a4:13:
01:35:f9:bb:3a:dd:71:9f:39:8f:5c:3b:5f:31:6f:12:a4:09:
58:29:5f:33:cb:85:74:35:bd:13:ef:1f:6e:44:ad:1e:40:da:
74:95:62:74:4a:89:fc:3c:39:a4:34:29:5e:f1:7a:d2:3c:64:
e7:54:93:b7:d5:fc:21:d7:aa:48:ad:29:c0:f3:b3:35:19:ac:
28:c3:73:90:1d:dc:ff:54:87:9c:e4:97:92:a9:90:01:3a:32:
37:8c:02:9a:3e:dc:4d:31:b3:c6:c1:ec:32:df:ec:40:cc:32:
cb:e9:2d:6f:b3:bc:4a:b9:7c:f5:b7:37:1a:0f:5d:d4:c0:da:
3b:fd:c9:4d:62:de:c5:bd:1d:6a:12:28:0f:6f:10:a5:78:22:
6b:a3:32:8c:b1:4c:35:55:fc:5b:36:ff:15:d4:71:e5:21:ae:
9e:b1:5d:69:24:6d:c0:4c:87:de:c3:92:3c:8d:4e:32:2d:87:
90:14:bf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:55:23 2025 by rpki-client