Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: dzSviXlLeVgXj9yrX29HCGpVk7ov59QZWlvL7B3RqNs=
Subject key identifier: 59:6B:DC:45:19:48:3A:20:44:DF:67:F5:56:A1:76:EA:44:DC:BB:C4
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019A5451BB1CB4D090FE50775F528B46A971
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0DB6
Signing time: Wed 05 Nov 2025 14:00:33 +0000
Manifest this update: Wed 05 Nov 2025 14:00:33 +0000
Manifest next update: Thu 06 Nov 2025 14:00:33 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: 49vbfan9j5yOuYLWDmmzqgmjFwUsmKoyD+pMrlDc/m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:51:bb:1c:b4:d0:90:fe:50:77:5f:52:8b:46:a9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Nov 5 14:00:33 2025 GMT
Not After : Nov 6 14:00:33 2025 GMT
Subject: CN=596bdc4519483a2044df67f556a176ea44dcbbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e5:3b:60:6e:a9:3c:1c:3c:44:87:d1:bc:8c:
f1:b0:b9:54:8c:78:cb:fe:bd:88:a5:1c:36:04:ef:
0b:3c:34:7c:36:eb:fb:36:03:f7:90:b6:53:40:68:
ad:55:5e:fa:1b:ca:fe:f9:25:2d:24:a0:41:44:3c:
a2:12:10:8d:83:c5:9f:a1:11:7c:18:0b:e6:de:d7:
5c:83:2a:e2:9c:32:6b:0f:3b:c0:ad:0f:1c:ad:1a:
79:1e:9d:cb:59:da:a2:97:cf:23:26:55:e5:f9:4e:
88:00:b1:d7:bf:6a:3e:a0:db:26:c9:77:ec:7c:9d:
1a:85:34:92:84:a6:9c:5c:ff:c4:08:61:1b:6b:58:
3a:27:40:7a:ec:3b:cc:92:62:0a:0e:b2:23:07:3a:
27:fb:de:61:ae:64:99:1e:57:28:fe:a9:e3:67:51:
d1:35:a1:2b:85:05:73:06:91:24:5a:d4:84:40:e1:
cb:88:a5:04:bb:48:a8:d3:4c:02:10:85:99:b4:f8:
a6:28:c1:78:76:62:a7:d6:14:3d:6c:a9:b4:51:e4:
6f:68:c1:c7:35:74:11:68:61:ef:d2:3c:7d:2b:94:
36:ce:2b:30:f1:43:89:5b:b1:39:79:82:68:5a:97:
88:5d:ee:9e:0c:36:d4:ab:dc:d9:95:d0:be:55:0a:
34:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6B:DC:45:19:48:3A:20:44:DF:67:F5:56:A1:76:EA:44:DC:BB:C4
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:21:2b:5b:7b:bd:b6:d7:bb:ed:82:d8:0f:c1:4d:00:5f:f0:
d6:f1:a4:54:85:e4:97:a9:fa:2f:f3:a1:0e:9a:15:4f:3e:46:
33:96:23:05:5b:7f:04:8b:b6:c3:7a:cd:fe:5e:9b:0f:7a:aa:
b9:3b:a8:59:13:ef:d1:18:c7:b0:34:1a:71:75:93:54:fb:a1:
a7:25:ae:86:67:f1:dc:0a:80:9c:02:ec:41:92:7d:c3:57:78:
2d:f9:0c:56:e0:6d:e7:1b:40:2c:d4:f6:fe:1f:35:17:09:38:
37:ae:47:d4:08:da:c9:40:e4:37:8b:f5:aa:99:2f:ee:8c:1f:
6f:87:dc:d6:e1:10:44:92:ce:31:b5:2c:37:3b:1b:bc:f3:5e:
0a:fb:4a:5c:45:20:c7:6d:2d:9d:3d:38:ba:d5:dc:e0:19:bd:
e2:e6:54:2c:10:33:ff:8d:f8:09:c9:12:34:c5:f6:38:1c:19:
cd:43:c9:e3:0b:8e:08:09:46:02:92:86:9b:91:35:dc:51:d5:
4d:d9:55:21:78:2d:c3:03:83:6e:51:ca:98:be:0b:be:b1:cc:
7e:97:c2:2b:07:84:83:2f:6f:9d:c4:06:00:82:4a:93:3f:fc:
36:20:9a:a7:9a:71:30:83:01:f1:60:c3:c6:36:f9:ab:e3:37:
ad:d0:6d:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUUbsctNCQ/lB3X1KLRqlxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYmE2ZDU3MDRmZDI5MGQwZTA3MzM3NmVkYTY4ODcxNzU2
NGQxOTYwHhcNMjUxMTA1MTQwMDMzWhcNMjUxMTA2MTQwMDMzWjAzMTEwLwYDVQQD
Eyg1OTZiZGM0NTE5NDgzYTIwNDRkZjY3ZjU1NmExNzZlYTQ0ZGNiYmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeU7YG6pPBw8RIfRvIzxsLlUjHjL
/r2IpRw2BO8LPDR8Nuv7NgP3kLZTQGitVV76G8r++SUtJKBBRDyiEhCNg8WfoRF8
GAvm3tdcgyrinDJrDzvArQ8crRp5Hp3LWdqil88jJlXl+U6IALHXv2o+oNsmyXfs
fJ0ahTSShKacXP/ECGEba1g6J0B67DvMkmIKDrIjBzon+95hrmSZHlco/qnjZ1HR
NaErhQVzBpEkWtSEQOHLiKUEu0io00wCEIWZtPimKMF4dmKn1hQ9bKm0UeRvaMHH
NXQRaGHv0jx9K5Q2zisw8UOJW7E5eYJoWpeIXe6eDDbUq9zZldC+VQo0bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFlr3EUZSDogRN9n9VahdupE3LvEMB8GA1UdIwQY
MBaAFM26bVcE/SkNDgczdu2miHF1ZNGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTkt
YTQ2MTE2OWYxZGMyLzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTktYTQ2MTE2OWYxZGMy
LzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfyErW3u9
tte77YLYD8FNAF/w1vGkVIXkl6n6L/OhDpoVTz5GM5YjBVt/BIu2w3rN/l6bD3qq
uTuoWRPv0RjHsDQacXWTVPuhpyWuhmfx3AqAnALsQZJ9w1d4LfkMVuBt5xtALNT2
/h81Fwk4N65H1AjayUDkN4v1qpkv7owfb4fc1uEQRJLOMbUsNzsbvPNeCvtKXEUg
x20tnT04utXc4Bm94uZULBAz/434CckSNMX2OBwZzUPJ4wuOCAlGApKGm5E13FHV
TdlVIXgtwwODblHKmL4LvrHMfpfCKweEgy9vncQGAIJKkz/8NiCap5pxMIMB8WDD
xjb5q+M3rdBt/w==
-----END CERTIFICATE-----
Generated at Wed Nov 5 22:16:06 2025 by rpki-client