Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: oThCklvIAnT6mBvmrNBcEjIQWFaVDbg5GRHayewqffw=
Subject key identifier: 1A:30:DD:1F:87:4F:A9:A8:7B:AD:E4:7D:9B:31:A0:44:E0:01:85:29
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019A2553A552E58D92AEBD3C3FEDB9F977A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0720
Signing time: Mon 27 Oct 2025 11:00:30 +0000
Manifest this update: Mon 27 Oct 2025 11:00:30 +0000
Manifest next update: Tue 28 Oct 2025 11:00:30 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: qyPFhHwKt4DSKvvQcyunBMXVzFekiDB/eEfo6JWshbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:53:a5:52:e5:8d:92:ae:bd:3c:3f:ed:b9:f9:77:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Oct 27 11:00:30 2025 GMT
Not After : Oct 28 11:00:30 2025 GMT
Subject: CN=1a30dd1f874fa9a87bade47d9b31a044e0018529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:26:bd:98:38:82:35:d7:0c:52:da:6e:3d:
57:b3:b1:54:a3:73:05:76:19:ab:4a:d4:a6:01:45:
31:16:5d:45:54:3a:ea:b4:92:2f:df:d1:f2:e3:57:
d6:4d:69:19:01:52:f8:e4:90:84:47:8f:2b:54:53:
1d:d9:f7:e9:b8:74:2c:08:d3:d7:4a:f7:18:b7:39:
fd:f7:22:bc:e7:36:5a:ec:bf:bb:aa:ba:fd:81:75:
d5:14:18:83:9f:fb:9a:c7:11:a8:eb:dc:fb:c9:52:
19:63:60:92:14:86:11:da:68:f4:92:20:e8:6c:d5:
ff:8d:05:5b:92:e6:9a:c5:81:e4:e9:58:e4:d9:e1:
f6:8d:c3:55:99:61:89:d1:7f:6f:be:d6:c8:60:7f:
6e:d4:8d:87:7d:ab:6d:de:43:6a:52:de:5c:4a:dd:
7d:32:d2:4f:53:fb:ac:11:5f:6c:65:ab:b4:fd:3b:
c3:68:db:f6:a9:5a:a9:b7:ed:4c:b7:96:33:ae:6a:
08:1e:9e:45:15:dc:16:60:60:fc:75:de:c2:25:d2:
4c:f9:73:e0:8f:a6:b0:9b:ea:99:32:84:33:17:1b:
12:48:04:47:53:8f:5d:81:d1:f6:c1:8f:24:df:e4:
34:44:36:1c:7e:e8:48:05:0c:05:10:e5:62:5d:2e:
e8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:30:DD:1F:87:4F:A9:A8:7B:AD:E4:7D:9B:31:A0:44:E0:01:85:29
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:f1:5c:1a:7f:64:66:d9:50:64:86:1e:00:2c:64:45:72:60:
d7:3b:61:e8:6d:72:23:16:08:f3:6d:f0:73:dd:0b:4b:63:bd:
a7:2a:b8:cd:6f:eb:52:b6:93:8b:3d:cc:25:e2:b1:17:d3:f2:
f4:76:7a:56:5f:c6:d2:ab:a6:c8:2f:7d:e2:db:8d:90:19:78:
97:0e:fa:79:5e:5e:d2:4e:cc:d5:e9:c5:75:65:e1:85:ce:19:
05:b0:ec:56:7d:1d:1f:6c:1c:d4:94:2d:3d:1d:b6:c3:a5:76:
86:37:ce:18:83:1f:10:a0:55:16:64:2f:51:82:ee:c9:46:bc:
1d:27:ed:d0:24:50:91:4e:4b:93:de:b5:4d:e9:bc:aa:30:2e:
3a:f7:90:2e:cb:98:ed:5c:7a:73:0f:9b:4e:6a:2f:8e:e6:3a:
c6:df:9f:bf:f0:da:26:eb:dd:02:d7:df:65:03:b9:dc:c6:17:
c0:f3:26:86:0c:7e:71:29:10:e2:db:f0:79:23:b5:c3:3f:af:
17:36:83:21:4a:a4:ae:c7:3a:eb:4d:21:cb:49:f6:d9:23:02:
09:ad:84:00:7b:2f:b3:43:0a:50:81:9c:29:2c:3b:d4:60:21:
0b:c3:17:6d:72:32:4d:0e:a0:3d:09:9e:59:2a:3d:1c:85:42:
dc:ed:08:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZolU6VS5Y2Srr08P+25+XejMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiM2U1OTZhMjRkNDM2NTBjYjYwZThmY2M5ZTQ0ZDZmOGM5
MjlkMzUwHhcNMjUxMDI3MTEwMDMwWhcNMjUxMDI4MTEwMDMwWjAzMTEwLwYDVQQD
EygxYTMwZGQxZjg3NGZhOWE4N2JhZGU0N2Q5YjMxYTA0NGUwMDE4NTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0I0mvZg4gjXXDFLabj1Xs7FUo3MF
dhmrStSmAUUxFl1FVDrqtJIv39Hy41fWTWkZAVL45JCER48rVFMd2ffpuHQsCNPX
SvcYtzn99yK85zZa7L+7qrr9gXXVFBiDn/uaxxGo69z7yVIZY2CSFIYR2mj0kiDo
bNX/jQVbkuaaxYHk6Vjk2eH2jcNVmWGJ0X9vvtbIYH9u1I2Hfatt3kNqUt5cSt19
MtJPU/usEV9sZau0/TvDaNv2qVqpt+1Mt5YzrmoIHp5FFdwWYGD8dd7CJdJM+XPg
j6awm+qZMoQzFxsSSARHU49dgdH2wY8k3+Q0RDYcfuhIBQwFEOViXS7ohQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBow3R+HT6moe63kfZsxoETgAYUpMB8GA1UdIwQY
MBaAFEs+WWok1DZQy2Do/MnkTW+Mkp01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEt
MzNkMThiZjZkZjU1LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEtMzNkMThiZjZkZjU1
LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/FcGn9k
ZtlQZIYeACxkRXJg1zth6G1yIxYI823wc90LS2O9pyq4zW/rUraTiz3MJeKxF9Py
9HZ6Vl/G0qumyC994tuNkBl4lw76eV5e0k7M1enFdWXhhc4ZBbDsVn0dH2wc1JQt
PR22w6V2hjfOGIMfEKBVFmQvUYLuyUa8HSft0CRQkU5Lk961Tem8qjAuOveQLsuY
7Vx6cw+bTmovjuY6xt+fv/DaJuvdAtffZQO53MYXwPMmhgx+cSkQ4tvweSO1wz+v
FzaDIUqkrsc6600hy0n22SMCCa2EAHsvs0MKUIGcKSw71GAhC8MXbXIyTQ6gPQme
WSo9HIVC3O0IJg==
-----END CERTIFICATE-----
Generated at Mon Oct 27 12:24:56 2025 by rpki-client