Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
File: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft (raw, json)
Hash identifier: G0VVyZsJYvFEt7HYO3aimnPwp3L0MFLO1FCUOL2PaN0=
Subject key identifier: B6:A7:21:F8:9D:69:C6:03:C7:8C:68:17:D9:77:0A:CB:0B:09:3D:DB
Authority key identifier: CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
Certificate issuer: /CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Certificate serial: 019A2A4318F3D6692A713C8FE2502F59300F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
Manifest number: 11CF
Signing time: Tue 28 Oct 2025 10:00:31 +0000
Manifest this update: Tue 28 Oct 2025 10:00:31 +0000
Manifest next update: Wed 29 Oct 2025 10:00:31 +0000
Files and hashes: 1: cTuB-ABZUf0AWR__0VF3CDRNo30.roa (hash: YL1vZUc95MXZVuCPTTh8OWx5ow2ebJPHUlFFR9eeynk=)
2: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl (hash: 4zfrdWljre7KboBFrtVQNDNFN5+IcTh9VBk7EjImkkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:43:18:f3:d6:69:2a:71:3c:8f:e2:50:2f:59:30:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Validity
Not Before: Oct 28 10:00:31 2025 GMT
Not After : Oct 29 10:00:31 2025 GMT
Subject: CN=b6a721f89d69c603c78c6817d9770acb0b093ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:74:ad:6f:b6:05:f3:81:e0:ed:d2:8a:3b:
37:7f:20:bb:81:bb:1f:fe:7f:e6:bd:b3:a1:b2:3a:
f2:35:af:26:0a:6f:bd:79:f1:b4:80:61:e2:10:46:
39:36:1b:a2:5c:d7:b5:94:9f:72:f6:ca:37:ac:00:
39:64:f3:ee:e3:9e:de:2b:69:40:6d:6c:6f:55:ec:
3b:88:5c:f1:d6:a6:9d:02:8a:c8:7e:e6:1f:fd:c3:
07:8b:47:fa:cd:c2:d9:eb:9a:8d:96:a0:6a:98:8a:
c8:cf:77:13:3a:f1:72:c3:23:2f:0c:35:36:79:be:
0e:76:0f:3b:86:43:c8:75:10:49:2d:f7:a4:3c:6e:
6c:07:d5:b5:0b:c1:a8:bb:48:a3:e9:0c:b7:98:61:
6d:e3:6d:69:42:58:a3:25:d3:37:0e:78:83:e2:0d:
40:c2:f4:0c:7f:6d:f2:ed:88:0f:9d:f9:fd:9b:13:
8e:d6:22:fb:d4:76:e3:b5:55:ae:46:22:a7:ac:09:
46:ce:f4:fe:b8:27:ee:ab:f2:7e:55:18:61:e5:54:
f4:42:e8:23:08:8c:81:2c:41:b9:e7:7f:81:99:bc:
4d:1a:40:1f:3a:01:4b:e5:32:c6:f9:31:1d:4b:b2:
14:a4:9e:be:40:3b:98:5e:19:d4:bc:83:4e:05:de:
b0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A7:21:F8:9D:69:C6:03:C7:8C:68:17:D9:77:0A:CB:0B:09:3D:DB
X509v3 Authority Key Identifier:
keyid:CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f4:0d:28:74:5d:a7:a8:79:f9:ae:6a:c4:e9:eb:5a:5c:ac:
02:41:0a:eb:6a:96:b1:9f:77:42:34:5f:ce:3e:c9:1f:e1:25:
f4:5a:2d:95:75:69:a6:4a:b0:56:3f:f2:8a:da:c1:65:95:06:
be:ad:d6:45:6e:ef:76:a1:ff:4e:42:c4:53:2c:6a:36:c5:af:
05:5a:ce:fe:f4:28:89:82:55:65:e3:b7:39:8e:7a:8d:e5:79:
eb:e2:4b:f4:32:b9:83:ba:ec:dd:67:59:1d:8c:d0:78:7b:c9:
0e:e1:a9:f7:ad:52:40:74:8b:6c:a0:60:6b:f6:e4:a9:1d:f8:
98:6f:c6:90:19:f8:fc:ad:e4:7f:b9:72:e1:36:b1:86:6a:b7:
64:8d:1d:34:fd:8b:75:fd:59:fc:ec:3d:5d:7c:bf:4d:7e:12:
b5:ab:8e:da:4d:e6:3b:36:df:3e:20:d5:1c:f3:52:ac:83:d7:
02:b4:f0:9f:76:f8:12:2a:26:22:2b:a7:6f:7d:3e:d3:d2:f9:
ee:c1:e9:a3:5c:67:d8:34:46:90:8b:62:77:7d:40:90:2d:42:
30:3a:df:30:16:64:b6:c9:91:db:37:42:26:4c:9b:ea:69:10:
5f:91:61:f2:23:9f:e2:e7:90:3d:85:9a:2b:a4:9d:55:3d:f9:
55:e9:7a:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoqQxjz1mkqcTyP4lAvWTAPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmYmEwNDNlMWM0YjUyNDQ3YThlMzY3YmJjMTMwNzUxOWZh
NWZhZTAwHhcNMjUxMDI4MTAwMDMxWhcNMjUxMDI5MTAwMDMxWjAzMTEwLwYDVQQD
EyhiNmE3MjFmODlkNjljNjAzYzc4YzY4MTdkOTc3MGFjYjBiMDkzZGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhp0rW+2BfOB4O3Sijs3fyC7gbsf
/n/mvbOhsjryNa8mCm+9efG0gGHiEEY5NhuiXNe1lJ9y9so3rAA5ZPPu457eK2lA
bWxvVew7iFzx1qadAorIfuYf/cMHi0f6zcLZ65qNlqBqmIrIz3cTOvFywyMvDDU2
eb4Odg87hkPIdRBJLfekPG5sB9W1C8Gou0ij6Qy3mGFt421pQlijJdM3DniD4g1A
wvQMf23y7YgPnfn9mxOO1iL71HbjtVWuRiKnrAlGzvT+uCfuq/J+VRhh5VT0Qugj
CIyBLEG553+BmbxNGkAfOgFL5TLG+TEdS7IUpJ6+QDuYXhnUvINOBd6w5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLanIfidacYDx4xoF9l3CssLCT3bMB8GA1UdIwQY
MBaAFM+6BD4cS1JEeo42e7wTB1GfpfrgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8zZjMzZDgtY2NlYi00NTA2LWEyZWYt
YzBjYTgwYTA1ZTJhLzEvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8zZjMzZDgtY2NlYi00NTA2LWEyZWYtYzBjYTgwYTA1ZTJh
LzEvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPQNKHRd
p6h5+a5qxOnrWlysAkEK62qWsZ93QjRfzj7JH+El9FotlXVppkqwVj/yitrBZZUG
vq3WRW7vdqH/TkLEUyxqNsWvBVrO/vQoiYJVZeO3OY56jeV56+JL9DK5g7rs3WdZ
HYzQeHvJDuGp961SQHSLbKBga/bkqR34mG/GkBn4/K3kf7ly4Taxhmq3ZI0dNP2L
df1Z/Ow9XXy/TX4StauO2k3mOzbfPiDVHPNSrIPXArTwn3b4EiomIiunb30+09L5
7sHpo1xn2DRGkItid31AkC1CMDrfMBZktsmR2zdCJkyb6mkQX5Fh8iOf4ueQPYWa
K6SdVT35Vel68w==
-----END CERTIFICATE-----
Generated at Tue Oct 28 14:26:33 2025 by rpki-client