Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier: V0lRLLS9tP3GA9OrNoPdohP6+WSwU7MYeKmmDvViF6I=
Subject key identifier: 82:5F:68:36:D6:76:59:CF:34:0E:F6:78:0B:3D:E5:24:94:7E:4C:B3
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial: 019A4D73F1D4DAD499F33FE4CF77AE2BA061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number: 1622
Signing time: Tue 04 Nov 2025 06:00:35 +0000
Manifest this update: Tue 04 Nov 2025 06:00:35 +0000
Manifest next update: Wed 05 Nov 2025 06:00:35 +0000
Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: O9Z7rx+AnxQIR964sa/nAjqYN5lJu72fd7AXZjT9RT8=)
2: hgdnPYifylvEbRhPG5rcZMHgm-E.roa (hash: kVaA/BoHtOWfVS1UNUVlSYGZdZvXh/V05GtETEpyoE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:f1:d4:da:d4:99:f3:3f:e4:cf:77:ae:2b:a0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Validity
Not Before: Nov 4 06:00:35 2025 GMT
Not After : Nov 5 06:00:35 2025 GMT
Subject: CN=825f6836d67659cf340ef6780b3de524947e4cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5c:dc:5f:0c:17:bc:53:3b:68:f1:b2:8a:63:
cd:af:43:a1:0d:ea:7b:80:98:04:80:ea:51:41:76:
5e:7e:e9:42:e9:ff:e7:c0:78:d0:91:34:c0:93:38:
ee:f7:41:0e:84:df:d3:4c:b2:58:e5:8b:92:9b:14:
ec:93:d4:de:11:f3:c5:87:a5:6e:f0:d6:f5:ea:70:
18:d5:27:ea:ec:51:99:84:b5:6d:0d:57:13:f2:a0:
46:38:24:12:08:58:5f:1c:b3:66:0c:7b:22:78:aa:
1d:eb:78:be:ce:d9:ab:97:9d:a9:1d:39:e2:a3:9d:
48:2c:14:1e:dd:05:68:eb:dd:60:e4:ff:e3:57:b6:
6f:70:28:35:1b:9d:8e:18:ca:40:3b:df:fe:8e:5e:
a4:d7:9f:e8:05:86:ee:c9:e8:c1:1b:4b:52:57:5b:
d6:76:79:c9:28:db:01:ae:ad:8c:8b:c6:29:56:35:
ee:f7:5d:fd:a3:04:15:cf:ac:13:bb:4a:84:88:a5:
c1:fd:d1:4d:ec:88:6e:7c:33:5e:f9:2d:f4:34:e2:
2a:98:7e:72:ef:cd:f0:84:60:cc:9e:47:bd:18:59:
68:b6:25:7f:8d:20:d2:7d:a1:bd:af:cf:c4:e6:e7:
db:45:3f:1f:7e:4d:7c:e3:c6:0c:38:39:da:d4:1a:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5F:68:36:D6:76:59:CF:34:0E:F6:78:0B:3D:E5:24:94:7E:4C:B3
X509v3 Authority Key Identifier:
keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ea:54:8e:71:3b:ae:84:fe:93:95:92:ae:71:98:d6:49:cb:
ad:5b:81:6c:b8:29:85:52:33:2c:39:c5:eb:6c:3f:bf:3b:86:
25:b7:35:1a:d1:11:49:46:9a:95:f5:72:6d:d2:84:4a:91:f1:
58:4c:b6:4f:91:d1:62:52:00:01:f0:d9:e8:92:94:e8:bc:87:
63:10:f5:86:96:87:16:37:05:68:73:9d:47:b2:4c:51:30:b4:
c6:8c:e7:18:63:32:5f:24:6d:40:4b:77:10:66:a7:43:df:30:
7a:02:33:c8:57:0e:97:3c:bd:46:c9:f6:91:81:ba:c0:58:ff:
4e:db:fa:d5:76:06:f7:c0:cb:b2:35:c6:21:7b:be:bb:ef:58:
ba:8a:75:2c:15:ed:72:3d:16:92:b4:d3:c5:04:96:49:e3:ed:
74:60:78:2d:6b:76:9c:ec:8f:6c:fb:c3:60:ff:c2:f7:3b:0a:
ef:12:56:dc:ab:46:01:2c:38:42:b8:47:92:20:78:2e:b4:68:
b2:48:53:0d:f3:ce:d5:12:d6:f1:f1:7c:15:f4:7f:7a:8f:fe:
c4:1f:ae:5f:ff:53:cb:0d:e6:f3:b9:d7:b5:53:c6:0a:3e:97:
36:df:76:1b:3e:ec:e0:13:c0:42:c9:66:fb:d9:c9:3a:3e:19:
ab:89:4a:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNc/HU2tSZ8z/kz3euK6BhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YjMxZGNkNmJiNTMwODAyOWM0MjczMjMwNTE0ZjcyNmIx
Yjg2YmEwHhcNMjUxMTA0MDYwMDM1WhcNMjUxMTA1MDYwMDM1WjAzMTEwLwYDVQQD
Eyg4MjVmNjgzNmQ2NzY1OWNmMzQwZWY2NzgwYjNkZTUyNDk0N2U0Y2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFzcXwwXvFM7aPGyimPNr0OhDep7
gJgEgOpRQXZefulC6f/nwHjQkTTAkzju90EOhN/TTLJY5YuSmxTsk9TeEfPFh6Vu
8Nb16nAY1Sfq7FGZhLVtDVcT8qBGOCQSCFhfHLNmDHsieKod63i+ztmrl52pHTni
o51ILBQe3QVo691g5P/jV7ZvcCg1G52OGMpAO9/+jl6k15/oBYbuyejBG0tSV1vW
dnnJKNsBrq2Mi8YpVjXu9139owQVz6wTu0qEiKXB/dFN7IhufDNe+S30NOIqmH5y
783whGDMnke9GFlotiV/jSDSfaG9r8/E5ufbRT8ffk1848YMODna1Bry2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJfaDbWdlnPNA72eAs95SSUfkyzMB8GA1UdIwQY
MBaAFGSzHc1rtTCAKcQnMjBRT3JrG4a6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85ODBkNmUtOGE5OS00MjYwLTgwNjQt
NDRhYjY4OWUxZDRkLzEvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny85ODBkNmUtOGE5OS00MjYwLTgwNjQtNDRhYjY4OWUxZDRk
LzEvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcupUjnE7
roT+k5WSrnGY1knLrVuBbLgphVIzLDnF62w/vzuGJbc1GtERSUaalfVybdKESpHx
WEy2T5HRYlIAAfDZ6JKU6LyHYxD1hpaHFjcFaHOdR7JMUTC0xoznGGMyXyRtQEt3
EGanQ98wegIzyFcOlzy9Rsn2kYG6wFj/Ttv61XYG98DLsjXGIXu+u+9Yuop1LBXt
cj0WkrTTxQSWSePtdGB4LWt2nOyPbPvDYP/C9zsK7xJW3KtGASw4QrhHkiB4LrRo
skhTDfPO1RLW8fF8FfR/eo/+xB+uX/9Tyw3m87nXtVPGCj6XNt92Gz7s4BPAQslm
+9nJOj4Zq4lKAg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:28:55 2025 by rpki-client