Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json)
Hash identifier: wZyUkj9Cz8JyXoCJ4yiJfcKOTuKfTR4HN6cKsiIvbVk=
Subject key identifier: 6E:36:4B:93:20:1C:A4:7B:EB:52:F2:A8:74:BF:44:2F:0F:AE:C0:91
Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f
Certificate serial: 019A70DBF97D65566460BC562493C716B4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
Manifest number: 067A
Signing time: Tue 11 Nov 2025 03:00:55 +0000
Manifest this update: Tue 11 Nov 2025 03:00:55 +0000
Manifest next update: Wed 12 Nov 2025 03:00:55 +0000
Files and hashes: 1: r9Ux985jnVmfKHLZzNH9_T06wzU.roa (hash: SP4ahRSwbqs6nOlIBz3rDf0O3m+DJabQsDxWQ8oLOwM=)
2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: B2PKUJ34z8oFIW13OffkQbqUTsa2vH3+volnX2t5/FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:f9:7d:65:56:64:60:bc:56:24:93:c7:16:b4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f
Validity
Not Before: Nov 11 03:00:55 2025 GMT
Not After : Nov 12 03:00:55 2025 GMT
Subject: CN=6e364b93201ca47beb52f2a874bf442f0faec091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:66:73:22:0e:8c:a1:b5:73:4b:02:fe:09:cf:
5e:66:b3:2d:ea:7c:d6:e9:4b:55:da:c9:35:04:e7:
d2:d7:dd:f2:46:30:e5:e5:36:65:ab:cf:06:3a:e1:
d2:ff:62:05:4d:b8:59:95:f4:61:31:9d:16:cf:9c:
f1:80:49:64:56:ac:37:8d:0a:b9:c0:72:8a:78:6d:
93:ba:c0:ea:9b:0b:7d:cf:b9:74:c2:e9:60:6d:c6:
49:32:06:33:c1:c8:8e:3d:45:99:11:6e:45:d0:f8:
2a:fe:5d:93:02:b5:97:39:dc:2b:69:b6:8c:30:9a:
41:2e:13:4e:bd:6b:b6:c0:e2:88:05:0f:43:51:e1:
e9:d8:b0:31:d9:ae:9e:51:b6:f5:26:42:97:60:ff:
e6:e5:ce:7e:ca:71:32:c0:1b:ac:b9:01:c7:6b:15:
c0:a2:29:9f:87:59:74:da:be:4f:fc:4e:75:0c:9b:
68:20:c8:d2:6d:c9:4d:83:87:f4:bd:ec:86:59:e3:
52:3a:1c:f1:a9:91:df:c6:51:6b:a3:9a:89:08:c4:
9d:58:84:56:79:01:f3:6f:b2:cb:cf:41:59:46:58:
6a:eb:e0:c5:75:3d:2f:00:e6:d7:76:5a:9c:b5:3a:
0d:25:1b:37:d2:f8:fd:e1:45:9c:10:39:8a:60:09:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:36:4B:93:20:1C:A4:7B:EB:52:F2:A8:74:BF:44:2F:0F:AE:C0:91
X509v3 Authority Key Identifier:
keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:50:db:e0:a4:2c:b6:d6:12:c9:c9:f7:0a:14:52:57:53:82:
cf:fb:73:66:b6:eb:94:6c:89:4f:b3:c1:b4:67:2a:49:a8:dc:
a8:53:b2:e0:26:07:75:d3:41:27:5c:df:6c:f0:0e:94:0d:81:
64:ae:87:d9:17:d6:f1:10:c8:30:7d:55:5c:99:2a:9e:c4:9b:
6d:48:b6:94:7a:c2:ed:43:c4:9b:f7:ab:75:a5:d6:1c:1f:c4:
31:be:3f:37:a5:19:28:1e:66:a5:7a:22:19:be:f3:66:83:41:
65:c9:96:bc:46:f1:ac:15:d7:8c:5a:e8:66:31:e3:29:b6:fe:
e7:14:15:62:da:ab:8f:e6:91:27:ad:b4:40:f5:58:df:3b:75:
6e:76:b2:2e:0d:fd:db:65:f8:a1:f6:4e:94:4c:ea:d5:6c:19:
e8:19:bc:c0:31:8a:11:bd:e7:4d:bc:77:58:f0:f6:22:71:6c:
8f:6b:77:73:05:ad:95:68:8b:41:ff:a3:bd:31:06:27:4d:5b:
be:6c:d7:cb:11:a8:fd:71:7d:2a:4f:d0:1d:4d:dd:ed:dd:39:
49:85:ac:c4:00:8d:4e:49:f7:c8:a8:40:18:e7:85:a2:17:0f:
3c:98:df:e6:26:2d:e4:1d:c5:f1:fe:9a:5e:6c:05:bf:61:3d:
e7:15:9f:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpw2/l9ZVZkYLxWJJPHFrTkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNGQ0ODcwOGRhNTA1NDk1OWU2MThhNTgyZTI4YzE1NWZl
ZjExM2YwHhcNMjUxMTExMDMwMDU1WhcNMjUxMTEyMDMwMDU1WjAzMTEwLwYDVQQD
Eyg2ZTM2NGI5MzIwMWNhNDdiZWI1MmYyYTg3NGJmNDQyZjBmYWVjMDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7GZzIg6MobVzSwL+Cc9eZrMt6nzW
6UtV2sk1BOfS193yRjDl5TZlq88GOuHS/2IFTbhZlfRhMZ0Wz5zxgElkVqw3jQq5
wHKKeG2TusDqmwt9z7l0wulgbcZJMgYzwciOPUWZEW5F0Pgq/l2TArWXOdwrabaM
MJpBLhNOvWu2wOKIBQ9DUeHp2LAx2a6eUbb1JkKXYP/m5c5+ynEywBusuQHHaxXA
oimfh1l02r5P/E51DJtoIMjSbclNg4f0veyGWeNSOhzxqZHfxlFro5qJCMSdWIRW
eQHzb7LLz0FZRlhq6+DFdT0vAObXdlqctToNJRs30vj94UWcEDmKYAl3RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG42S5MgHKR761LyqHS/RC8PrsCRMB8GA1UdIwQY
MBaAFMxNSHCNpQVJWeYYpYLijBVf7xE/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgt
YTljMzEyMjk4NGM1LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgtYTljMzEyMjk4NGM1
LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1Db4KQs
ttYSycn3ChRSV1OCz/tzZrbrlGyJT7PBtGcqSajcqFOy4CYHddNBJ1zfbPAOlA2B
ZK6H2RfW8RDIMH1VXJkqnsSbbUi2lHrC7UPEm/erdaXWHB/EMb4/N6UZKB5mpXoi
Gb7zZoNBZcmWvEbxrBXXjFroZjHjKbb+5xQVYtqrj+aRJ620QPVY3zt1bnayLg39
22X4ofZOlEzq1WwZ6Bm8wDGKEb3nTbx3WPD2InFsj2t3cwWtlWiLQf+jvTEGJ01b
vmzXyxGo/XF9Kk/QHU3d7d05SYWsxACNTkn3yKhAGOeFohcPPJjf5iYt5B3F8f6a
XmwFv2E95xWf6w==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:17:32 2025 by rpki-client