Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
File: zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft (raw, json)
Hash identifier: 2+lPqU7MzTzxnuYHwTqPNEGKoAA7vA0o98XI11zF0x4=
Subject key identifier: 0C:93:03:92:D7:6C:DF:A7:29:DA:74:1B:48:FD:DA:9E:3B:67:21:62
Authority key identifier: CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
Certificate issuer: /CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Certificate serial: 019923D6229EAA4648DD9562C6490C44CB0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
Manifest number: 0C0E
Signing time: Sun 07 Sep 2025 11:00:59 +0000
Manifest this update: Sun 07 Sep 2025 11:00:59 +0000
Manifest next update: Mon 08 Sep 2025 11:00:59 +0000
Files and hashes: 1: 0_tGmdVdpjc2L8zUWyzyW9iPObU.roa (hash: bn84kxibGx4/EOPh2OY0dkRz9RK07gMRfVN7WrprjOg=)
2: zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl (hash: nGvhOh7C3If+J7KsTC7vewwroxr8lBWBVeRFbXju8/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:22:9e:aa:46:48:dd:95:62:c6:49:0c:44:cb:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Validity
Not Before: Sep 7 11:00:59 2025 GMT
Not After : Sep 8 11:00:59 2025 GMT
Subject: CN=0c930392d76cdfa729da741b48fdda9e3b672162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:b2:db:70:22:d8:32:83:67:4a:29:f1:5f:
b8:60:dc:c7:f5:c7:9c:75:11:ac:84:93:7f:ae:cc:
4f:b1:9e:d0:39:8e:72:3c:73:8c:74:cc:c4:61:b0:
c6:f4:e9:ac:f9:15:12:cb:8f:e8:7d:3d:fc:62:4a:
93:1a:5a:df:83:f0:37:ea:b5:12:38:28:eb:53:ed:
e1:c8:31:d1:be:a1:a5:c9:5f:18:04:f9:aa:1e:7c:
27:34:85:ec:5b:97:d9:b1:92:b8:1b:9a:b0:2c:44:
ef:8f:b4:1d:a0:58:d1:b5:98:14:af:80:46:51:6b:
c1:90:b1:90:c9:d6:4d:ef:d0:d1:4b:70:ed:f0:cc:
04:ad:48:3e:36:bd:b4:9c:84:33:90:e3:bc:d2:41:
d6:80:1c:f9:4e:e5:5c:1b:0b:4c:72:17:10:62:67:
3c:c7:82:54:8d:4f:db:12:2e:2f:21:7f:4e:29:ea:
96:6b:73:c9:69:57:21:fb:c8:da:34:dc:fb:bd:72:
91:35:f3:b2:63:af:da:78:36:cc:87:e2:08:1a:aa:
88:55:d4:c2:62:38:8a:c2:e2:6b:0b:a2:a9:9f:53:
97:f8:c5:1e:84:f7:56:e3:2a:43:90:e7:e8:64:27:
ff:a8:8e:a7:76:22:a5:76:c1:03:0b:a0:cd:e3:e7:
9a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:93:03:92:D7:6C:DF:A7:29:DA:74:1B:48:FD:DA:9E:3B:67:21:62
X509v3 Authority Key Identifier:
keyid:CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:90:e6:a7:9b:0a:80:a3:be:e6:86:7f:ef:97:74:41:18:6b:
dc:74:67:30:c3:b3:76:1e:89:f9:82:b0:b0:c6:a4:07:89:d3:
08:10:38:f3:46:f7:7e:62:b8:ff:33:0c:2f:0a:4c:33:61:44:
ed:09:31:c8:ce:fd:1f:74:a2:6b:89:18:58:dc:6b:ca:ff:9a:
7e:70:9e:ad:64:ea:a3:02:47:2e:d6:01:31:dd:05:5e:1f:e5:
f5:d0:e7:9a:e8:c9:9a:5a:a8:42:3e:e4:bd:09:b6:96:dd:5a:
bb:03:fc:33:82:1a:3e:67:c0:5f:2e:0e:10:af:21:4b:ca:db:
df:bc:52:7e:0d:18:92:a7:e7:3a:59:12:ba:f2:8b:ec:a2:d0:
bc:9f:f8:77:2d:a3:4d:2e:d6:f4:9b:43:19:85:26:2f:39:ce:
a3:f6:cf:29:eb:a5:14:c0:8f:0f:0f:f7:67:f2:db:ec:2a:76:
77:bd:ad:67:a0:0c:28:47:f6:6a:41:a1:8d:00:c3:5e:c2:26:
9d:5d:0c:0a:3a:4d:19:45:86:64:96:11:95:a2:ec:f7:b3:e2:
4e:5a:13:01:52:b0:20:5b:f5:98:60:7b:14:69:ac:50:26:49:
53:4d:bd:12:0c:e0:5b:1c:d6:88:12:55:82:da:6c:23:fa:7e:
f3:e3:b8:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkj1iKeqkZI3ZVixkkMRMsLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkN2VlNGIwMzI3OTk2MzA0Y2YxOGExMjhlMjY1NTc4MGM5
ZDZiOWIwHhcNMjUwOTA3MTEwMDU5WhcNMjUwOTA4MTEwMDU5WjAzMTEwLwYDVQQD
EygwYzkzMDM5MmQ3NmNkZmE3MjlkYTc0MWI0OGZkZGE5ZTNiNjcyMTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt62y23Ai2DKDZ0op8V+4YNzH9cec
dRGshJN/rsxPsZ7QOY5yPHOMdMzEYbDG9Oms+RUSy4/ofT38YkqTGlrfg/A36rUS
OCjrU+3hyDHRvqGlyV8YBPmqHnwnNIXsW5fZsZK4G5qwLETvj7QdoFjRtZgUr4BG
UWvBkLGQydZN79DRS3Dt8MwErUg+Nr20nIQzkOO80kHWgBz5TuVcGwtMchcQYmc8
x4JUjU/bEi4vIX9OKeqWa3PJaVch+8jaNNz7vXKRNfOyY6/aeDbMh+IIGqqIVdTC
YjiKwuJrC6Kpn1OX+MUehPdW4ypDkOfoZCf/qI6ndiKldsEDC6DN4+eaOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAyTA5LXbN+nKdp0G0j92p47ZyFiMB8GA1UdIwQY
MBaAFM1+5LAyeZYwTPGKEo4mVXgMnWubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelg3a3NESjVsakJNOFlvU2ppWlZlQXlkYTVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lY2FlYjMtZjQyZi00YmFjLWE0OWUt
MjQyZmZkYWEyNjcwLzEvelg3a3NESjVsakJNOFlvU2ppWlZlQXlkYTVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9lY2FlYjMtZjQyZi00YmFjLWE0OWUtMjQyZmZkYWEyNjcw
LzEvelg3a3NESjVsakJNOFlvU2ppWlZlQXlkYTVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABZDmp5sK
gKO+5oZ/75d0QRhr3HRnMMOzdh6J+YKwsMakB4nTCBA480b3fmK4/zMMLwpMM2FE
7QkxyM79H3Sia4kYWNxryv+afnCerWTqowJHLtYBMd0FXh/l9dDnmujJmlqoQj7k
vQm2lt1auwP8M4IaPmfAXy4OEK8hS8rb37xSfg0YkqfnOlkSuvKL7KLQvJ/4dy2j
TS7W9JtDGYUmLznOo/bPKeulFMCPDw/3Z/Lb7Cp2d72tZ6AMKEf2akGhjQDDXsIm
nV0MCjpNGUWGZJYRlaLs97PiTloTAVKwIFv1mGB7FGmsUCZJU029EgzgWxzWiBJV
gtpsI/p+8+O4/w==
-----END CERTIFICATE-----
Generated at Sun Sep 7 15:24:18 2025 by rpki-client