Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
File: sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft (raw, json)
Hash identifier: AL9sczalh6hsENcglBld19/56B8h87JwGQwPpVEEcZE=
Subject key identifier: 46:61:BF:85:C3:BC:88:C2:3E:BD:56:C2:20:05:66:1A:9C:CC:F4:71
Authority key identifier: B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
Certificate issuer: /CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Certificate serial: 019A71EEF11F099C21975B5EB41A9E13B4A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
Manifest number: 0B9B
Signing time: Tue 11 Nov 2025 08:01:15 +0000
Manifest this update: Tue 11 Nov 2025 08:01:15 +0000
Manifest next update: Wed 12 Nov 2025 08:01:15 +0000
Files and hashes: 1: pp7YHiA9bCcV4n9KXbmtGvXw0Hw.roa (hash: xXtqKC6cCm9cF/kgqDQZlMKjBn2ULr5S39vUn/a3JHc=)
2: sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl (hash: +GG27p8aglZp+iasjEcdJChE1oTBQn9D5VvagcdJF8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:f1:1f:09:9c:21:97:5b:5e:b4:1a:9e:13:b4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Validity
Not Before: Nov 11 08:01:15 2025 GMT
Not After : Nov 12 08:01:15 2025 GMT
Subject: CN=4661bf85c3bc88c23ebd56c22005661a9cccf471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:40:50:6f:b1:db:ec:64:a8:18:d6:7a:36:db:
3d:93:2a:b5:1d:94:27:52:14:11:02:dd:27:4e:b7:
0d:92:90:0d:38:1c:2e:6c:64:a4:d3:7e:58:5e:6e:
54:82:d3:11:13:61:78:9f:fa:6c:46:8a:3a:12:40:
ca:d5:f1:d6:8b:37:ce:7d:f4:94:0e:88:02:72:4c:
d6:13:df:fe:e1:82:00:06:be:ad:06:e9:92:f7:cd:
b8:2e:ef:d5:c3:28:4f:cb:56:bf:8f:73:23:ad:d7:
42:8f:e1:0d:c9:ea:21:e2:ef:bc:e2:f7:9d:b1:03:
9b:4c:05:47:cf:65:e4:46:e6:aa:bf:8a:86:5d:7b:
fd:41:42:14:70:3f:36:72:bf:e0:97:c9:33:2c:37:
37:5a:2f:56:15:53:9f:a9:c4:42:d4:ca:94:f6:ce:
c7:16:87:53:f9:67:a9:87:4d:52:8f:66:30:b2:57:
f8:b9:19:60:ff:21:d7:3c:e3:c7:b6:2b:ad:f8:ff:
ec:83:ee:b8:38:c2:a1:c2:ba:92:a1:dc:e4:94:4b:
93:d1:f7:d6:d4:a9:0f:7a:da:22:c8:03:a6:50:01:
a6:15:15:b7:8c:ca:2a:a9:16:a6:31:db:be:8c:f0:
af:a6:b7:a8:31:40:55:67:ee:68:1b:a7:df:10:ed:
06:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:61:BF:85:C3:BC:88:C2:3E:BD:56:C2:20:05:66:1A:9C:CC:F4:71
X509v3 Authority Key Identifier:
keyid:B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:84:89:86:33:47:43:95:db:dd:c6:5b:ea:7e:c0:1b:4f:2c:
d9:a0:41:e5:3c:1a:5d:a8:c5:be:e6:08:77:4f:3a:b5:45:86:
83:2f:ca:e5:05:d4:91:5d:27:61:f6:72:ef:ff:63:fe:46:94:
73:fe:d2:b6:36:17:09:07:e6:a4:ef:12:a4:9a:0c:5e:ea:b6:
11:71:52:d9:3d:96:bd:db:ff:4a:ba:7d:70:5c:dc:e4:db:71:
a0:1b:54:d9:18:ce:16:b2:36:95:89:3d:49:d1:80:45:b0:68:
5b:b0:73:3b:fb:8b:40:43:47:c8:1c:9f:57:f5:6a:e5:9c:07:
30:1a:5b:e6:94:5e:d5:fc:9b:95:27:1d:f1:47:9d:12:4d:9c:
4b:b2:e6:19:33:0b:32:d5:ee:4d:18:e1:6b:af:81:ad:35:e9:
8c:32:ca:22:f4:aa:d5:c3:f2:52:d7:80:97:c3:b8:bb:92:44:
58:22:65:ea:fe:88:5c:fd:94:58:eb:7f:08:d5:ad:35:f9:03:
c7:61:96:88:9a:2c:45:16:d5:3b:c4:e0:50:9c:7d:de:b6:78:
55:34:be:bf:e5:36:d7:48:8e:ff:0f:23:5e:d4:20:5e:1a:60:
16:37:d4:e2:bc:de:5b:ab:11:85:cc:de:9a:c8:18:d8:9f:11:
86:b4:c7:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7vEfCZwhl1tetBqeE7SnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxOTU0OWQ2ODMwNWUyOWRmYjAwMDY5YTUyZDNkNGUxZjJj
NTYwNGMwHhcNMjUxMTExMDgwMTE1WhcNMjUxMTEyMDgwMTE1WjAzMTEwLwYDVQQD
Eyg0NjYxYmY4NWMzYmM4OGMyM2ViZDU2YzIyMDA1NjYxYTljY2NmNDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkBQb7Hb7GSoGNZ6Nts9kyq1HZQn
UhQRAt0nTrcNkpANOBwubGSk035YXm5UgtMRE2F4n/psRoo6EkDK1fHWizfOffSU
DogCckzWE9/+4YIABr6tBumS9824Lu/VwyhPy1a/j3MjrddCj+ENyeoh4u+84ved
sQObTAVHz2XkRuaqv4qGXXv9QUIUcD82cr/gl8kzLDc3Wi9WFVOfqcRC1MqU9s7H
FodT+Weph01Sj2Ywslf4uRlg/yHXPOPHtiut+P/sg+64OMKhwrqSodzklEuT0ffW
1KkPetoiyAOmUAGmFRW3jMoqqRamMdu+jPCvpreoMUBVZ+5oG6ffEO0GZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEZhv4XDvIjCPr1WwiAFZhqczPRxMB8GA1UdIwQY
MBaAFLGVSdaDBeKd+wAGmlLT1OHyxWBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjFmNzItY2U4ZS00MmIxLWJlNWEt
YTI4M2M5MDQ4ZjBmLzEvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hZjFmNzItY2U4ZS00MmIxLWJlNWEtYTI4M2M5MDQ4ZjBm
LzEvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4SJhjNH
Q5Xb3cZb6n7AG08s2aBB5TwaXajFvuYId086tUWGgy/K5QXUkV0nYfZy7/9j/kaU
c/7StjYXCQfmpO8SpJoMXuq2EXFS2T2Wvdv/Srp9cFzc5NtxoBtU2RjOFrI2lYk9
SdGARbBoW7BzO/uLQENHyByfV/Vq5ZwHMBpb5pRe1fyblScd8UedEk2cS7LmGTML
MtXuTRjha6+BrTXpjDLKIvSq1cPyUteAl8O4u5JEWCJl6v6IXP2UWOt/CNWtNfkD
x2GWiJosRRbVO8TgUJx93rZ4VTS+v+U210iO/w8jXtQgXhpgFjfU4rzeW6sRhcze
msgY2J8RhrTH8w==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:44:44 2025 by rpki-client