Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json)
Hash identifier: Y2Hla+fbTkqufIhNJ1SAkthEZHfSSEyKgsSFRN5ppKw=
Subject key identifier: 78:F8:4E:20:3E:E1:E1:C1:EF:B8:D4:F7:E3:C9:08:03:EE:98:9D:DC
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: 019A71B84CD528B0C722C8D884BB4B4F8ACC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
Manifest number: 109D
Signing time: Tue 11 Nov 2025 07:01:34 +0000
Manifest this update: Tue 11 Nov 2025 07:01:34 +0000
Manifest next update: Wed 12 Nov 2025 07:01:34 +0000
Files and hashes: 1: 1r-YWbxqyiaEeQQe7XhCESQq4-A.roa (hash: whgT3ej9YeVcd8f315sOoiAQXSfv+O+qM97fjItvC5w=)
2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: s05dUKKHehtVIiVP9T63qBI9VaQ0omWntoYXbr64aBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:4c:d5:28:b0:c7:22:c8:d8:84:bb:4b:4f:8a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Nov 11 07:01:34 2025 GMT
Not After : Nov 12 07:01:34 2025 GMT
Subject: CN=78f84e203ee1e1c1efb8d4f7e3c90803ee989ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:06:21:51:68:25:7e:64:79:35:de:2b:f4:79:
e6:bd:62:bd:f3:82:d0:db:2a:3f:1c:e6:c1:89:23:
79:8a:10:db:db:cb:dc:b5:7c:7b:d0:3c:d2:57:5e:
0a:4c:62:9b:ed:7e:3d:2b:ac:fb:03:c7:8e:0f:af:
ee:7f:be:43:86:6b:f8:97:6c:27:35:4b:67:7c:ae:
e5:95:6c:47:61:16:f6:be:84:2b:cb:8e:95:e2:bb:
48:6c:2f:29:b7:72:e5:8e:65:2e:85:85:1b:63:cd:
34:29:6f:67:7e:87:85:29:bd:14:b8:8e:12:16:86:
68:5f:c0:0e:68:c2:e7:76:e1:55:59:0e:fd:51:47:
20:88:5f:7d:08:e2:32:c0:27:a4:9a:32:e5:e2:9b:
68:09:09:93:4d:20:ef:e6:c1:7e:2b:da:d8:20:3d:
cc:b2:18:d8:bc:33:fb:ff:2d:8c:de:79:fc:77:7c:
15:ca:9b:a5:fb:80:04:6d:a4:f8:4a:84:ae:cd:e3:
2a:4d:09:cb:34:2d:bd:fc:e5:3d:c8:96:8d:e2:db:
d6:aa:b4:2c:38:bc:79:31:12:79:dd:bb:29:41:21:
2c:83:73:dd:6b:bf:f5:5f:24:b7:65:8c:f5:bb:f8:
d5:94:b3:07:72:45:b8:95:4f:50:3e:6f:b0:dc:6d:
f6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F8:4E:20:3E:E1:E1:C1:EF:B8:D4:F7:E3:C9:08:03:EE:98:9D:DC
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:70:d7:97:ec:0c:06:1f:ef:8b:90:7f:e3:c1:ca:63:a6:ce:
6d:49:c1:d6:76:9f:7a:99:f9:d3:a2:cb:8a:9b:a1:df:7e:66:
36:5e:1f:9c:d6:21:69:94:46:20:46:2b:1f:68:b2:44:a1:d3:
a5:42:21:fe:4b:51:db:32:d1:81:55:81:e0:f9:cd:1a:90:6a:
f9:ad:98:71:e4:2f:94:a1:91:62:0c:55:3d:2f:b5:e7:a5:03:
a0:3e:e8:74:aa:ea:00:40:0a:85:1c:7f:bd:12:a5:0a:e0:c4:
8b:08:ea:4f:84:17:95:33:48:55:fc:68:a6:8b:ed:75:36:6a:
3b:f1:76:88:54:9d:c1:f7:7c:a1:44:c0:bf:6d:83:ca:1e:d7:
31:0e:dc:09:92:fe:0b:eb:ba:2e:5a:a7:17:25:0c:37:86:a4:
3e:1a:e7:d7:da:79:5a:61:cd:ef:cc:0a:13:5d:24:08:1d:41:
c6:dd:e8:f7:cc:9d:c5:c3:68:ad:d0:f6:da:d9:d6:80:5b:37:
aa:a8:0c:e4:56:64:4b:39:cd:c6:c0:ba:a6:71:f8:3d:eb:70:
e3:c3:88:26:ae:66:be:5e:a3:cf:a7:f5:c5:43:3b:8f:26:c9:
d6:7a:f7:04:cb:e2:bc:e6:8b:24:6a:2d:74:e7:f2:81:37:39:
a7:a3:f0:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuEzVKLDHIsjYhLtLT4rMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMzA4N2NjNzAyYzhkOTM1M2ZlNzhmNzkzMjQ0MGI3ZTg0
MmZjNmUwHhcNMjUxMTExMDcwMTM0WhcNMjUxMTEyMDcwMTM0WjAzMTEwLwYDVQQD
Eyg3OGY4NGUyMDNlZTFlMWMxZWZiOGQ0ZjdlM2M5MDgwM2VlOTg5ZGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQYhUWglfmR5Nd4r9HnmvWK984LQ
2yo/HObBiSN5ihDb28vctXx70DzSV14KTGKb7X49K6z7A8eOD6/uf75Dhmv4l2wn
NUtnfK7llWxHYRb2voQry46V4rtIbC8pt3LljmUuhYUbY800KW9nfoeFKb0UuI4S
FoZoX8AOaMLnduFVWQ79UUcgiF99COIywCekmjLl4ptoCQmTTSDv5sF+K9rYID3M
shjYvDP7/y2M3nn8d3wVypul+4AEbaT4SoSuzeMqTQnLNC29/OU9yJaN4tvWqrQs
OLx5MRJ53bspQSEsg3Pda7/1XyS3ZYz1u/jVlLMHckW4lU9QPm+w3G32oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHj4TiA+4eHB77jU9+PJCAPumJ3cMB8GA1UdIwQY
MBaAFM0wh8xwLI2TU/5495MkQLfoQvxuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8wNThhYTUtNjQ5NC00NTk1LTgxOWIt
ZjA4ZDcxYzRmM2RiLzEvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8wNThhYTUtNjQ5NC00NTk1LTgxOWItZjA4ZDcxYzRmM2Ri
LzEvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXDXl+wM
Bh/vi5B/48HKY6bObUnB1nafepn506LLipuh335mNl4fnNYhaZRGIEYrH2iyRKHT
pUIh/ktR2zLRgVWB4PnNGpBq+a2YceQvlKGRYgxVPS+156UDoD7odKrqAEAKhRx/
vRKlCuDEiwjqT4QXlTNIVfxopovtdTZqO/F2iFSdwfd8oUTAv22Dyh7XMQ7cCZL+
C+u6LlqnFyUMN4akPhrn19p5WmHN78wKE10kCB1Bxt3o98ydxcNordD22tnWgFs3
qqgM5FZkSznNxsC6pnH4Petw48OIJq5mvl6jz6f1xUM7jybJ1nr3BMvivOaLJGot
dOfygTc5p6PwQg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:47 2025 by rpki-client