Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
File: zEHDryzVmGV10bz2Xsnod2Zu3jY.mft (raw, json)
Hash identifier: uRC+XQgrzIeLj0qDZLHuiVoNKWhzignYq18gcky79jU=
Subject key identifier: 4D:9D:E9:A9:E2:AF:1E:D0:FE:98:50:DD:B5:95:3C:92:87:96:57:62
Authority key identifier: CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36
Certificate issuer: /CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36
Certificate serial: 0199239F14EFDF05468E3D00D8589D183CD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
Manifest number: 1303
Signing time: Sun 07 Sep 2025 10:00:52 +0000
Manifest this update: Sun 07 Sep 2025 10:00:52 +0000
Manifest next update: Mon 08 Sep 2025 10:00:52 +0000
Files and hashes: 1: zEHDryzVmGV10bz2Xsnod2Zu3jY.crl (hash: CbGP0Sc+Uv9KcyzgFnZUpfVOg4EPuSMfPsORjDZlLus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:14:ef:df:05:46:8e:3d:00:d8:58:9d:18:3c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36
Validity
Not Before: Sep 7 10:00:52 2025 GMT
Not After : Sep 8 10:00:52 2025 GMT
Subject: CN=4d9de9a9e2af1ed0fe9850ddb5953c9287965762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:6c:ad:b5:f0:4b:b9:85:45:60:ed:23:32:
64:4d:b4:70:ab:d4:13:41:51:2c:01:b6:e5:36:58:
f1:c3:60:d0:07:63:11:c1:d4:08:bb:95:14:82:0c:
1b:73:36:9a:58:42:12:15:48:1b:af:cc:e8:96:18:
0d:df:06:c7:fb:82:b7:3c:6e:ef:34:72:b4:de:e2:
b3:14:f3:88:b9:94:d8:f5:97:cd:ed:d4:8b:12:8c:
23:3c:cf:0f:60:c6:4e:55:21:ea:9d:e6:99:7a:c5:
c2:83:bb:a2:9e:74:8f:c3:35:f4:91:84:a3:6a:fd:
1b:40:be:6f:9c:2f:1b:69:41:f4:e5:8a:c0:7c:31:
bf:0a:4b:5e:02:50:42:41:96:77:31:44:a9:4e:93:
90:ac:49:1a:8d:99:20:8f:08:78:72:54:8d:c4:0c:
97:33:76:ef:81:70:07:80:ed:a7:18:c9:06:3e:44:
57:ba:a5:85:60:05:53:e6:5d:ba:1e:2a:83:95:6c:
0b:c6:b7:82:09:4e:7b:15:95:58:6a:3a:0f:86:e8:
c3:7f:bb:53:bd:8f:a4:3c:7c:8b:ae:a6:d3:91:d5:
08:d5:f7:03:6e:b9:db:cc:10:42:ea:3c:b6:21:73:
64:64:b2:e2:bf:02:3e:30:f1:5a:27:47:10:7b:ac:
2e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9D:E9:A9:E2:AF:1E:D0:FE:98:50:DD:B5:95:3C:92:87:96:57:62
X509v3 Authority Key Identifier:
keyid:CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:de:ce:a6:c3:91:b0:83:8d:ca:2c:36:60:f9:49:ee:ae:84:
80:9f:92:ec:56:6a:59:7f:2c:48:9b:0b:05:1b:37:7f:05:b2:
0c:72:fe:ba:09:98:21:a3:bf:4c:8d:94:a9:10:51:ba:ae:2d:
0e:4d:4b:14:0a:7b:20:14:f6:56:9a:68:31:46:32:f7:f5:6f:
d0:db:f1:ba:23:a1:a2:5c:f2:1e:1e:30:ab:6f:a2:ae:30:14:
f0:ca:1e:8f:c6:a5:c5:b7:7c:a1:99:f1:40:2b:35:ef:9f:47:
18:e2:08:6f:02:5c:a9:28:05:d3:ad:d2:ff:6a:2f:cf:97:7f:
51:bd:0f:35:9d:dc:91:34:35:26:99:a3:61:b9:8c:ef:39:75:
03:60:e7:66:d8:aa:ae:11:55:71:f0:a0:cd:9c:a3:8b:0d:47:
55:ff:c1:2e:96:20:d8:96:b6:f1:5d:f5:13:aa:21:a5:bf:49:
84:40:8d:62:2b:7a:ce:3b:44:93:22:42:ec:18:52:c0:36:8c:
e2:f9:f2:f1:58:ea:60:e3:86:88:cc:ad:c0:1d:68:2d:20:e3:
4a:75:32:3f:52:f0:49:23:09:03:8c:55:9e:9e:3d:c3:52:7e:
db:6b:43:7a:45:bd:df:a0:1a:05:16:e9:6c:a7:f0:a3:12:36:
6d:5e:2f:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnxTv3wVGjj0A2FidGDzSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNDFjM2FmMmNkNTk4NjU3NWQxYmNmNjVlYzllODc3NjY2
ZWRlMzYwHhcNMjUwOTA3MTAwMDUyWhcNMjUwOTA4MTAwMDUyWjAzMTEwLwYDVQQD
Eyg0ZDlkZTlhOWUyYWYxZWQwZmU5ODUwZGRiNTk1M2M5Mjg3OTY1NzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMhsrbXwS7mFRWDtIzJkTbRwq9QT
QVEsAbblNljxw2DQB2MRwdQIu5UUggwbczaaWEISFUgbr8zolhgN3wbH+4K3PG7v
NHK03uKzFPOIuZTY9ZfN7dSLEowjPM8PYMZOVSHqneaZesXCg7uinnSPwzX0kYSj
av0bQL5vnC8baUH05YrAfDG/CkteAlBCQZZ3MUSpTpOQrEkajZkgjwh4clSNxAyX
M3bvgXAHgO2nGMkGPkRXuqWFYAVT5l26HiqDlWwLxreCCU57FZVYajoPhujDf7tT
vY+kPHyLrqbTkdUI1fcDbrnbzBBC6jy2IXNkZLLivwI+MPFaJ0cQe6wuhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE2d6anirx7Q/phQ3bWVPJKHlldiMB8GA1UdIwQY
MBaAFMxBw68s1ZhlddG89l7J6Hdmbt42MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85YTZlNTEtNGE4Zi00MGQzLWIwZmEt
NGM2NTIyNDUzYzlhLzEvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi85YTZlNTEtNGE4Zi00MGQzLWIwZmEtNGM2NTIyNDUzYzlh
LzEvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHN7OpsOR
sIONyiw2YPlJ7q6EgJ+S7FZqWX8sSJsLBRs3fwWyDHL+ugmYIaO/TI2UqRBRuq4t
Dk1LFAp7IBT2VppoMUYy9/Vv0NvxuiOholzyHh4wq2+irjAU8Moej8alxbd8oZnx
QCs1759HGOIIbwJcqSgF063S/2ovz5d/Ub0PNZ3ckTQ1JpmjYbmM7zl1A2DnZtiq
rhFVcfCgzZyjiw1HVf/BLpYg2Ja28V31E6ohpb9JhECNYit6zjtEkyJC7BhSwDaM
4vny8VjqYOOGiMytwB1oLSDjSnUyP1LwSSMJA4xVnp49w1J+22tDekW936AaBRbp
bKfwoxI2bV4vAw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:09 2025 by rpki-client