Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
File: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft (raw, json)
Hash identifier: uWU8ecQatEz/Uz4RO8bFv1s93zM/JlBrgz5B49chNkw=
Subject key identifier: 0A:3A:8F:A9:B8:EB:97:26:57:34:71:2E:41:D2:A1:80:2E:87:20:7D
Authority key identifier: 66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04
Certificate issuer: /CN=6694f5b0fab5fed2df9535e2a9c029f187d55404
Certificate serial: 019A1E07C49E45EFA37D9E2E95FA8DE52ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
Manifest number: 0813
Signing time: Sun 26 Oct 2025 01:00:16 +0000
Manifest this update: Sun 26 Oct 2025 01:00:16 +0000
Manifest next update: Mon 27 Oct 2025 01:00:16 +0000
Files and hashes: 1: 1s99Tw3afz1xnVyZeR8lNzEPEk8.roa (hash: b6Tn8In4pLbU3Aif4BcpGyzCXnOKH3eVjkyvFPcCx0s=)
2: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl (hash: J41c3gFQbKXQb4Ly/k2Zb0FBXLwttky7gzljDXhLyeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 01:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:07:c4:9e:45:ef:a3:7d:9e:2e:95:fa:8d:e5:2e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6694f5b0fab5fed2df9535e2a9c029f187d55404
Validity
Not Before: Oct 26 01:00:16 2025 GMT
Not After : Oct 27 01:00:16 2025 GMT
Subject: CN=0a3a8fa9b8eb97265734712e41d2a1802e87207d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:16:45:5b:72:69:d2:6a:e3:a6:ed:e2:a1:d0:
a5:fd:a8:4e:5b:f2:18:35:5e:42:63:70:64:8a:f9:
fc:9d:72:0b:55:b7:7a:0d:23:fe:76:b6:88:be:b2:
e8:97:3e:32:b7:b3:cb:f4:15:58:c6:44:ae:e5:eb:
e3:a5:06:39:18:d6:09:f9:d3:99:5f:bc:cd:92:18:
15:c7:3a:c9:2b:4f:a2:48:b4:16:8b:71:6e:69:18:
46:7c:85:a2:99:83:7a:03:9a:c1:c2:e2:bd:82:65:
9c:ae:76:5e:72:35:84:de:1d:c1:29:f3:ef:4c:23:
fa:93:11:10:2d:8f:e5:ca:ab:9d:59:54:c7:66:82:
7e:d9:fa:0e:38:c8:27:1f:4d:aa:21:59:df:2e:f7:
47:47:00:c6:36:d7:15:07:bf:2c:27:0d:30:16:8f:
b8:c7:15:1b:2d:a1:a6:ad:72:ca:d6:eb:68:46:36:
cb:9c:03:07:24:9d:0a:8b:c5:f9:9f:31:9e:4d:16:
7e:9a:6b:c7:7c:84:13:51:55:72:93:59:9a:1e:52:
8d:9e:30:af:30:2b:e3:c7:93:2c:49:2b:79:69:16:
65:19:a4:e3:36:b7:3a:90:c1:c8:c2:96:50:63:0a:
eb:19:1c:38:91:d9:dd:41:ac:1d:ca:37:20:0d:b5:
99:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3A:8F:A9:B8:EB:97:26:57:34:71:2E:41:D2:A1:80:2E:87:20:7D
X509v3 Authority Key Identifier:
keyid:66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ef:76:0a:32:fb:fd:cd:54:db:bd:d7:d7:27:85:c5:1b:73:
af:f6:4f:7f:86:be:86:31:61:27:2f:30:87:9b:f5:3b:87:ad:
c9:28:80:48:0a:81:e8:18:a2:0b:58:f2:44:20:14:1c:12:29:
d3:85:82:b0:63:2f:32:23:73:df:61:0e:6f:5f:8c:ad:ef:df:
15:2b:0f:a8:c8:b1:7f:e1:b7:5d:d1:61:e5:8f:c8:1b:ae:79:
b2:4e:55:a3:26:df:2e:fb:f4:e3:2b:87:a3:b5:3d:1f:61:e7:
bd:ee:8b:fe:ee:9c:e9:d8:20:f9:f6:35:54:fa:dd:91:43:9e:
88:3c:65:0d:26:a6:36:1f:51:d8:8b:1f:ea:20:c0:c7:04:85:
2b:7b:5b:92:c1:55:ce:16:45:72:47:42:62:0d:9b:c6:bc:3f:
6a:78:26:1c:8d:6e:04:8e:07:a0:b7:b0:0d:9d:10:26:b4:f3:
b0:fe:32:be:1f:cb:b3:d1:c5:07:14:5a:38:6f:90:6a:1d:ab:
71:0c:fa:b3:b9:e1:19:e9:63:9f:74:3d:9a:96:e7:46:df:69:
35:ad:0b:e3:fa:3c:c7:ed:0a:32:2b:68:9e:11:f3:f2:65:5b:
d3:8e:59:9f:25:56:66:d4:c9:b8:d6:35:e6:0e:cd:a2:f9:ae:
a6:53:52:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoeB8SeRe+jfZ4ulfqN5S7SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2OTRmNWIwZmFiNWZlZDJkZjk1MzVlMmE5YzAyOWYxODdk
NTU0MDQwHhcNMjUxMDI2MDEwMDE2WhcNMjUxMDI3MDEwMDE2WjAzMTEwLwYDVQQD
EygwYTNhOGZhOWI4ZWI5NzI2NTczNDcxMmU0MWQyYTE4MDJlODcyMDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRZFW3Jp0mrjpu3iodCl/ahOW/IY
NV5CY3Bkivn8nXILVbd6DSP+draIvrLolz4yt7PL9BVYxkSu5evjpQY5GNYJ+dOZ
X7zNkhgVxzrJK0+iSLQWi3FuaRhGfIWimYN6A5rBwuK9gmWcrnZecjWE3h3BKfPv
TCP6kxEQLY/lyqudWVTHZoJ+2foOOMgnH02qIVnfLvdHRwDGNtcVB78sJw0wFo+4
xxUbLaGmrXLK1utoRjbLnAMHJJ0Ki8X5nzGeTRZ+mmvHfIQTUVVyk1maHlKNnjCv
MCvjx5MsSSt5aRZlGaTjNrc6kMHIwpZQYwrrGRw4kdndQawdyjcgDbWZNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAo6j6m465cmVzRxLkHSoYAuhyB9MB8GA1UdIwQY
MBaAFGaU9bD6tf7S35U14qnAKfGH1VQEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQt
MjFiOWYxMmQyMmYzLzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQtMjFiOWYxMmQyMmYz
LzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD+92CjL7
/c1U273X1yeFxRtzr/ZPf4a+hjFhJy8wh5v1O4etySiASAqB6BiiC1jyRCAUHBIp
04WCsGMvMiNz32EOb1+Mre/fFSsPqMixf+G3XdFh5Y/IG655sk5VoybfLvv04yuH
o7U9H2Hnve6L/u6c6dgg+fY1VPrdkUOeiDxlDSamNh9R2Isf6iDAxwSFK3tbksFV
zhZFckdCYg2bxrw/angmHI1uBI4HoLewDZ0QJrTzsP4yvh/Ls9HFBxRaOG+Qah2r
cQz6s7nhGeljn3Q9mpbnRt9pNa0L4/o8x+0KMitonhHz8mVb045ZnyVWZtTJuNY1
5g7NovmuplNSFw==
-----END CERTIFICATE-----
Generated at Sun Oct 26 11:12:46 2025 by rpki-client