Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
File: ZCOaUQhPGytcaEZDysFGIXx5-NE.mft (raw, json)
Hash identifier: pD0eFVFtytOhw5n7Df9cj/uyVnp8SpWlUGA5S48oTJo=
Subject key identifier: 25:84:90:0B:94:41:C0:E1:31:B2:C8:EB:79:1B:A5:25:75:D5:E0:75
Authority key identifier: 64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
Certificate issuer: /CN=64239a51084f1b2b5c684643cac146217c79f8d1
Certificate serial: 0199240DD297C644C65E71A7BEDA3AC43649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
Manifest number: 09AD
Signing time: Sun 07 Sep 2025 12:01:49 +0000
Manifest this update: Sun 07 Sep 2025 12:01:49 +0000
Manifest next update: Mon 08 Sep 2025 12:01:49 +0000
Files and hashes: 1: 1WnsILYxjGfpft24w4cU0Z9HVy0.roa (hash: mXH7nwV2vIU6tKBb8bErNfD249HtR3Br3nGu9VJRl4A=)
2: ZCOaUQhPGytcaEZDysFGIXx5-NE.crl (hash: nswCGnsjamp+onkPB8jrdxIVdanhLE9wP2L47Wl4nzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:d2:97:c6:44:c6:5e:71:a7:be:da:3a:c4:36:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64239a51084f1b2b5c684643cac146217c79f8d1
Validity
Not Before: Sep 7 12:01:49 2025 GMT
Not After : Sep 8 12:01:49 2025 GMT
Subject: CN=2584900b9441c0e131b2c8eb791ba52575d5e075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:7b:1d:e3:b1:5e:40:a0:6a:2e:52:29:c0:
2e:20:7d:f1:30:b7:42:4e:6a:21:21:7a:06:0d:55:
08:b9:ff:f4:90:4f:e5:34:c4:44:3f:12:33:9f:36:
13:a3:a7:f9:d9:7a:46:f7:49:5a:ed:91:41:7e:23:
13:a9:5e:2f:5d:f7:4a:de:20:1c:9e:f0:25:8c:e2:
77:41:89:4f:ba:f0:5b:89:80:e0:e8:7f:a1:7a:c8:
d3:aa:be:b4:74:dd:fc:a7:f9:25:da:02:b2:d7:c4:
a4:53:b0:2c:c2:de:46:fa:42:d0:28:de:05:06:5c:
27:e8:20:c2:3a:a1:e0:b5:15:02:5c:19:74:86:8e:
7a:56:47:b4:c6:13:6f:a6:9e:f2:64:e5:f3:36:c8:
b3:27:a6:5c:44:2e:97:5e:5a:77:03:67:65:1e:30:
5f:a1:29:ba:aa:f6:23:d5:63:c0:03:b8:fa:1d:79:
8c:a3:8c:15:af:75:66:54:de:83:80:d7:22:98:18:
e9:bb:3e:4f:5c:0a:39:52:8e:e1:84:a9:8d:f7:e9:
00:72:7d:06:2d:bb:4e:ba:96:d9:ce:86:da:da:54:
29:23:a4:d2:0f:2c:37:ac:d3:4d:8a:f4:ec:9c:57:
2b:b9:64:27:81:6f:ba:2a:3a:ac:09:a2:f6:98:65:
ae:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:84:90:0B:94:41:C0:E1:31:B2:C8:EB:79:1B:A5:25:75:D5:E0:75
X509v3 Authority Key Identifier:
keyid:64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:74:4e:93:4a:e4:41:c4:e8:e2:7c:71:f4:96:28:b4:c6:bf:
01:b0:12:7f:f4:db:2e:a8:fd:f0:7c:bb:63:ad:0e:96:1a:ba:
7d:8a:74:ef:57:e1:b3:e2:b6:56:08:15:42:13:fd:dc:06:0a:
53:fb:7c:ae:d8:9a:0f:c0:1f:7a:4d:8c:9f:20:9a:fa:d5:81:
11:b7:1a:da:50:0a:2f:8a:ba:96:74:fd:0d:82:28:3f:29:a4:
ce:99:ca:d1:9a:05:43:af:76:7b:e5:2c:48:9e:4d:0a:3c:45:
4d:0a:f4:bc:8b:10:82:cf:07:96:5e:aa:fe:0c:ed:ad:3e:f6:
5a:e1:94:2e:80:a0:bc:fc:e8:3e:5b:48:41:ee:fa:2f:04:25:
9f:99:ce:e4:75:39:f8:15:07:11:63:bc:0b:18:9b:b5:f3:60:
05:56:d4:5c:5a:53:f4:cd:99:59:18:62:84:30:8d:ef:74:83:
95:5b:cd:73:fa:40:48:eb:c5:a3:58:b9:a7:3e:a3:70:74:e6:
3e:fd:a0:3a:ec:82:23:25:ec:22:73:5f:87:fd:e3:09:be:51:
c3:e5:2a:01:19:a3:57:48:7f:57:d6:92:d4:9a:89:c0:9c:fa:
f0:2f:30:d4:bc:3c:14:fe:4f:54:21:ca:4f:11:8e:cf:54:dc:
ca:9d:0f:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkDdKXxkTGXnGnvto6xDZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MjM5YTUxMDg0ZjFiMmI1YzY4NDY0M2NhYzE0NjIxN2M3
OWY4ZDEwHhcNMjUwOTA3MTIwMTQ5WhcNMjUwOTA4MTIwMTQ5WjAzMTEwLwYDVQQD
EygyNTg0OTAwYjk0NDFjMGUxMzFiMmM4ZWI3OTFiYTUyNTc1ZDVlMDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03N7HeOxXkCgai5SKcAuIH3xMLdC
TmohIXoGDVUIuf/0kE/lNMREPxIznzYTo6f52XpG90la7ZFBfiMTqV4vXfdK3iAc
nvAljOJ3QYlPuvBbiYDg6H+hesjTqr60dN38p/kl2gKy18SkU7Aswt5G+kLQKN4F
Blwn6CDCOqHgtRUCXBl0ho56Vke0xhNvpp7yZOXzNsizJ6ZcRC6XXlp3A2dlHjBf
oSm6qvYj1WPAA7j6HXmMo4wVr3VmVN6DgNcimBjpuz5PXAo5Uo7hhKmN9+kAcn0G
LbtOupbZzoba2lQpI6TSDyw3rNNNivTsnFcruWQngW+6KjqsCaL2mGWuYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCWEkAuUQcDhMbLI63kbpSV11eB1MB8GA1UdIwQY
MBaAFGQjmlEITxsrXGhGQ8rBRiF8efjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYt
NGU5MzA1Y2FmMWEzLzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYtNGU5MzA1Y2FmMWEz
LzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXROk0rk
QcTo4nxx9JYotMa/AbASf/TbLqj98Hy7Y60Olhq6fYp071fhs+K2VggVQhP93AYK
U/t8rtiaD8Afek2MnyCa+tWBEbca2lAKL4q6lnT9DYIoPymkzpnK0ZoFQ692e+Us
SJ5NCjxFTQr0vIsQgs8Hll6q/gztrT72WuGULoCgvPzoPltIQe76LwQln5nO5HU5
+BUHEWO8CxibtfNgBVbUXFpT9M2ZWRhihDCN73SDlVvNc/pASOvFo1i5pz6jcHTm
Pv2gOuyCIyXsInNfh/3jCb5Rw+UqARmjV0h/V9aS1JqJwJz68C8w1Lw8FP5PVCHK
TxGOz1Tcyp0PJw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:35 2025 by rpki-client