Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
File: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft (raw, json)
Hash identifier: U18oBbEB77XJXcwQd1OM0MbbmgwAi5vLH4tpdSsq8So=
Subject key identifier: B2:85:6C:1F:87:F5:9C:9E:D4:11:E6:CA:31:AF:94:EF:C3:CC:20:A8
Authority key identifier: 77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
Certificate issuer: /CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Certificate serial: 019A7225959DFF04ED52C97532E1D0832FFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
Manifest number: 13EE
Signing time: Tue 11 Nov 2025 09:00:57 +0000
Manifest this update: Tue 11 Nov 2025 09:00:57 +0000
Manifest next update: Wed 12 Nov 2025 09:00:57 +0000
Files and hashes: 1: Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa (hash: C4rOq98XQlQBOJoaFTi64wzA4+qXQilqH0FLuH6cokY=)
2: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl (hash: zZ33FcIkWBPvMArT2I30ymlr9Y7uUs6QtRGssexhttk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:95:9d:ff:04:ed:52:c9:75:32:e1:d0:83:2f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Validity
Not Before: Nov 11 09:00:57 2025 GMT
Not After : Nov 12 09:00:57 2025 GMT
Subject: CN=b2856c1f87f59c9ed411e6ca31af94efc3cc20a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:5e:f2:93:2d:de:a8:4a:37:01:78:5b:6d:
45:49:94:74:3a:7c:c0:79:91:b5:4b:e2:4b:7d:81:
0e:30:f5:40:3a:52:10:d6:3d:cd:ca:f6:a4:62:f9:
d7:69:3a:a6:bb:20:67:0d:f8:fc:d8:63:b3:bb:cb:
28:96:b7:d6:65:99:ca:6d:2a:57:d7:0a:bc:7b:18:
30:b6:1a:b3:88:12:3e:f0:64:b7:28:9b:ce:8a:71:
8b:31:7c:77:89:a1:4c:f2:83:19:41:56:e5:79:50:
98:9f:7e:f5:2b:42:72:50:c4:cc:af:3d:a0:69:24:
e9:9f:47:03:45:22:81:75:86:31:b0:82:a8:4d:99:
d6:16:40:c5:1c:f3:60:f1:1e:0f:e6:eb:d2:27:75:
be:fc:55:91:4f:1b:6e:b2:df:bc:ff:f9:74:59:86:
08:f7:c1:84:50:b6:16:88:9c:03:03:c1:ae:6e:7b:
e1:c5:59:5f:b0:71:a2:be:36:39:8f:1d:c6:fb:3d:
cc:6c:de:e9:e2:26:86:05:9d:62:a6:69:30:fb:14:
41:39:33:92:5a:b8:39:02:50:f2:11:c5:fa:9c:f1:
54:72:69:c9:98:34:a7:3e:dc:3c:da:22:46:ee:e4:
ab:d4:8d:69:77:cf:d6:af:56:25:4d:15:f5:02:d7:
6a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:85:6C:1F:87:F5:9C:9E:D4:11:E6:CA:31:AF:94:EF:C3:CC:20:A8
X509v3 Authority Key Identifier:
keyid:77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:8f:db:0a:8f:fd:fe:17:9d:b8:1c:a8:18:7d:6d:df:82:04:
1e:28:e8:86:94:0c:ff:00:c7:10:a9:ff:45:93:c7:f6:a4:30:
9c:f6:89:fc:cb:37:5b:66:f4:f4:8d:c3:1d:83:3d:86:a8:36:
39:68:6f:bd:ca:39:9e:9c:1d:8f:3f:55:32:8f:16:6f:74:35:
11:11:73:02:c2:96:fc:7d:7f:95:11:76:ba:b6:34:0f:a6:18:
6b:fa:94:e9:fd:ac:82:b8:7d:68:49:5b:74:e1:36:c2:d1:9c:
bd:fc:ce:31:32:6a:09:74:4b:1f:94:fa:eb:f0:b9:fb:0b:34:
f4:1d:d9:34:59:c2:ce:57:9e:c0:2c:36:31:c5:80:f4:eb:b7:
c3:0e:c4:6f:e4:02:69:62:65:0e:8e:f5:8f:05:83:e0:8f:91:
5d:35:36:85:e7:cb:f1:24:6f:9f:cd:71:ad:ee:25:b0:54:0d:
cc:ea:59:4f:aa:97:6b:db:04:2d:38:40:3e:55:48:d5:30:68:
9e:cd:71:55:67:f0:1f:88:57:e6:0c:d6:d9:a6:b4:4e:84:75:
ad:b8:ca:03:dc:22:dc:b1:a2:63:91:9b:67:28:c5:7c:97:09:
91:e8:fc:f5:04:6b:2a:48:c3:6c:aa:b6:46:74:35:55:21:04:
83:e2:86:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJZWd/wTtUsl1MuHQgy/7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MzFiNjJiMGUxNTliYTZjY2Q4N2Y3MzI3NWE4NjhlYmNj
NDFhYjgwHhcNMjUxMTExMDkwMDU3WhcNMjUxMTEyMDkwMDU3WjAzMTEwLwYDVQQD
EyhiMjg1NmMxZjg3ZjU5YzllZDQxMWU2Y2EzMWFmOTRlZmMzY2MyMGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLhe8pMt3qhKNwF4W21FSZR0OnzA
eZG1S+JLfYEOMPVAOlIQ1j3NyvakYvnXaTqmuyBnDfj82GOzu8solrfWZZnKbSpX
1wq8exgwthqziBI+8GS3KJvOinGLMXx3iaFM8oMZQVbleVCYn371K0JyUMTMrz2g
aSTpn0cDRSKBdYYxsIKoTZnWFkDFHPNg8R4P5uvSJ3W+/FWRTxtust+8//l0WYYI
98GEULYWiJwDA8GubnvhxVlfsHGivjY5jx3G+z3MbN7p4iaGBZ1ipmkw+xRBOTOS
Wrg5AlDyEcX6nPFUcmnJmDSnPtw82iJG7uSr1I1pd8/Wr1YlTRX1AtdqJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLKFbB+H9Zye1BHmyjGvlO/DzCCoMB8GA1UdIwQY
MBaAFHcxtisOFZumzNh/cydaho68xBq4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHpHMkt3NFZtNmJNMkg5ekoxcUdqcnpFR3JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yZWZjZTAtODJlZS00M2NlLThmMjgt
NmJmYzMzNTAxNDc5LzEvZHpHMkt3NFZtNmJNMkg5ekoxcUdqcnpFR3JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8yZWZjZTAtODJlZS00M2NlLThmMjgtNmJmYzMzNTAxNDc5
LzEvZHpHMkt3NFZtNmJNMkg5ekoxcUdqcnpFR3JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT4/bCo/9
/heduByoGH1t34IEHijohpQM/wDHEKn/RZPH9qQwnPaJ/Ms3W2b09I3DHYM9hqg2
OWhvvco5npwdjz9VMo8Wb3Q1ERFzAsKW/H1/lRF2urY0D6YYa/qU6f2sgrh9aElb
dOE2wtGcvfzOMTJqCXRLH5T66/C5+ws09B3ZNFnCzleewCw2McWA9Ou3ww7Eb+QC
aWJlDo71jwWD4I+RXTU2hefL8SRvn81xre4lsFQNzOpZT6qXa9sELThAPlVI1TBo
ns1xVWfwH4hX5gzW2aa0ToR1rbjKA9wi3LGiY5GbZyjFfJcJkej89QRrKkjDbKq2
RnQ1VSEEg+KGyg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:36 2025 by rpki-client