Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
File: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft (raw, json)
Hash identifier: NQwCU+yOOdGiJAYsUWftssJMwM3L6GYT9d/mVKAPtro=
Subject key identifier: AD:1C:A4:14:0C:B2:9B:DF:4A:65:D9:85:07:7F:C7:E4:63:FE:13:90
Authority key identifier: 66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
Certificate issuer: /CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Certificate serial: 019A2854E41BFE7BEC9B5E5D68A4006983E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
Manifest number: 16FA
Signing time: Tue 28 Oct 2025 01:00:43 +0000
Manifest this update: Tue 28 Oct 2025 01:00:43 +0000
Manifest next update: Wed 29 Oct 2025 01:00:43 +0000
Files and hashes: 1: 0eX0y1ByZozFyvqGz0EfmzMn6QQ.roa (hash: 9RKCNhJsqijEbBv8dV32/+CAVglgcAVrqc5Rx6tHl+s=)
2: PrLRWGrkGlOz391B_d1bhvHtRdM.roa (hash: Zq1F0wSxITxrY6z9+vuv+6+JvubiotTrHBEnZAFhoq4=)
3: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl (hash: aqtTLpOyDI/GJ4XgP4BNIYVVZwFgtXx25dRMeewWIBk=)
4: d-rt9f-dKC8oZEWyOv7rd6kbEo8.roa (hash: K8bXuYuwS4X0pfixId+iunQp5n4hsy6zV6Ye+pRdYtA=)
5: yIea70mz68MEWf7MSufqGinRRfw.roa (hash: C1KZ935qcqSwGSABodTKIPq8sxOye3X7esfEPyg6lGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:54:e4:1b:fe:7b:ec:9b:5e:5d:68:a4:00:69:83:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Validity
Not Before: Oct 28 01:00:43 2025 GMT
Not After : Oct 29 01:00:43 2025 GMT
Subject: CN=ad1ca4140cb29bdf4a65d985077fc7e463fe1390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:33:c6:67:6f:b0:8d:d2:9a:d0:86:66:15:
8f:7f:5d:4d:fc:39:98:6c:b2:a8:53:01:72:87:74:
e1:d7:f3:f1:90:f2:74:0b:fb:3f:b4:f6:99:d8:29:
2d:c9:26:bf:5a:9b:d6:91:30:ba:25:bc:f4:e5:2b:
fa:b1:d1:97:54:b8:23:c3:3b:00:9a:b3:b0:29:7b:
27:26:7f:9e:4c:d3:37:b2:11:35:82:c3:e1:56:e5:
97:17:da:47:52:72:a2:79:4a:5b:d6:b2:7b:8e:52:
90:75:64:4a:2e:8e:5f:09:32:71:55:11:22:b0:88:
53:2f:c9:b7:95:cb:1b:c1:7c:5e:ae:6c:70:11:b4:
c3:1c:fa:bf:29:3e:20:08:3b:90:0b:23:3b:db:ec:
3b:b9:da:91:5b:ee:c5:ec:4e:da:98:70:71:af:88:
8a:6c:76:4e:81:b6:a0:99:6d:ea:8d:48:5c:50:50:
0d:9c:ed:99:9e:24:94:b8:69:80:2c:5a:b2:32:1a:
34:8f:37:92:1a:85:6d:5a:17:1c:64:fa:4c:68:12:
bc:1b:96:6f:d3:c7:5e:54:b4:ed:f9:5f:0a:a1:95:
29:73:bf:6f:7f:07:50:d6:88:39:a4:b5:86:ff:e5:
fb:c1:85:2f:c9:b4:25:82:e4:db:03:ca:fe:65:4e:
f4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1C:A4:14:0C:B2:9B:DF:4A:65:D9:85:07:7F:C7:E4:63:FE:13:90
X509v3 Authority Key Identifier:
keyid:66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c5:77:4c:bd:1d:ee:db:76:80:73:49:f6:81:b0:53:e0:48:
be:cc:2d:f4:87:6f:b6:86:89:da:54:e4:42:85:16:19:f3:a4:
37:48:e0:95:cc:c4:4a:49:88:da:dc:e8:b9:2e:18:ca:e7:10:
53:c7:f6:bc:de:fb:5f:95:f7:0c:a3:e3:c3:eb:b0:be:1b:e1:
84:a6:7a:d1:3c:88:bc:34:d1:c6:d6:18:1f:eb:c0:9d:56:bf:
3c:c6:e6:5e:83:dc:42:f8:3c:4b:0a:f2:77:54:2b:6f:92:01:
df:fe:a7:39:49:b8:c8:d6:a3:03:79:1c:8e:63:4a:13:a5:5b:
b7:de:9d:f2:b4:ad:6f:0a:50:63:5e:23:06:1b:e4:53:08:8b:
2f:ce:bd:68:92:f0:82:dc:78:14:e6:9e:9d:d5:de:9f:fa:dc:
b1:44:aa:25:84:f5:9f:7e:24:37:fb:52:d3:b4:bd:38:a6:1d:
17:5f:86:02:f1:75:14:73:f9:38:43:9e:10:69:3d:8b:78:5b:
b5:64:0b:ea:59:a7:16:69:9f:a7:ce:38:0b:c8:d7:b9:c5:47:
94:84:a9:3f:8e:53:ab:75:03:68:0c:f4:c4:f0:d3:4e:35:2b:
e8:b5:a1:31:1f:7f:b8:54:02:3c:81:f9:d2:40:3c:56:8d:78:
26:83:5c:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZooVOQb/nvsm15daKQAaYPjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2NjM0ZjE0NTg2ZTM5OWNkMzgwMmQ5Yzg4YjFlNjdkOGRk
YjAzYTgwHhcNMjUxMDI4MDEwMDQzWhcNMjUxMDI5MDEwMDQzWjAzMTEwLwYDVQQD
EyhhZDFjYTQxNDBjYjI5YmRmNGE2NWQ5ODUwNzdmYzdlNDYzZmUxMzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hozxmdvsI3SmtCGZhWPf11N/DmY
bLKoUwFyh3Th1/PxkPJ0C/s/tPaZ2CktySa/WpvWkTC6Jbz05Sv6sdGXVLgjwzsA
mrOwKXsnJn+eTNM3shE1gsPhVuWXF9pHUnKieUpb1rJ7jlKQdWRKLo5fCTJxVREi
sIhTL8m3lcsbwXxermxwEbTDHPq/KT4gCDuQCyM72+w7udqRW+7F7E7amHBxr4iK
bHZOgbagmW3qjUhcUFANnO2ZniSUuGmALFqyMho0jzeSGoVtWhccZPpMaBK8G5Zv
08deVLTt+V8KoZUpc79vfwdQ1og5pLWG/+X7wYUvybQlguTbA8r+ZU70bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK0cpBQMspvfSmXZhQd/x+Rj/hOQMB8GA1UdIwQY
MBaAFGZjTxRYbjmc04AtnIix5n2N2wOoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDct
MTcxZGI0NjkwYzBhLzEvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDctMTcxZGI0NjkwYzBh
LzEvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJMV3TL0d
7tt2gHNJ9oGwU+BIvswt9IdvtoaJ2lTkQoUWGfOkN0jglczESkmI2tzouS4YyucQ
U8f2vN77X5X3DKPjw+uwvhvhhKZ60TyIvDTRxtYYH+vAnVa/PMbmXoPcQvg8Swry
d1Qrb5IB3/6nOUm4yNajA3kcjmNKE6Vbt96d8rStbwpQY14jBhvkUwiLL869aJLw
gtx4FOaendXen/rcsUSqJYT1n34kN/tS07S9OKYdF1+GAvF1FHP5OEOeEGk9i3hb
tWQL6lmnFmmfp844C8jXucVHlISpP45Tq3UDaAz0xPDTTjUr6LWhMR9/uFQCPIH5
0kA8Vo14JoNc6w==
-----END CERTIFICATE-----
Generated at Tue Oct 28 06:31:28 2025 by rpki-client