Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
File: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft (raw, json)
Hash identifier: Ado3XC+R1hfrXfdETNDGVnr3/ifbKZL9RMOFMWGQ+xY=
Subject key identifier: F4:CA:9A:F9:E2:49:13:1C:A4:90:3C:E2:02:D8:7D:89:67:A3:E5:32
Authority key identifier: 64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
Certificate issuer: /CN=6431e960cd061039b3b27fd25d4160771c498bab
Certificate serial: 019935005D43E44ADCDBA896B5EC3873FDCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
Manifest number: 12CE
Signing time: Wed 10 Sep 2025 19:00:40 +0000
Manifest this update: Wed 10 Sep 2025 19:00:40 +0000
Manifest next update: Thu 11 Sep 2025 19:00:40 +0000
Files and hashes: 1: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl (hash: eAIF2CQPmPsCgfZV1T3/EuGkAZmxy5XuYcGehYmbPso=)
2: ZNva-8ABsvjJ6HrNFF7Xd55KW-w.roa (hash: nx2aCY2Bfbi+2/xFJXRwWrGYEeyRAMv/De92goZyeZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:5d:43:e4:4a:dc:db:a8:96:b5:ec:38:73:fd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6431e960cd061039b3b27fd25d4160771c498bab
Validity
Not Before: Sep 10 19:00:40 2025 GMT
Not After : Sep 11 19:00:40 2025 GMT
Subject: CN=f4ca9af9e249131ca4903ce202d87d8967a3e532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6d:eb:11:27:07:fe:66:95:29:98:71:ea:49:
b4:8b:7f:fa:30:59:b6:e7:2a:a5:af:30:62:56:fb:
a2:b3:44:3a:22:cd:b0:0f:1e:60:30:12:4b:3e:5b:
19:07:45:1f:aa:29:5a:e9:41:87:34:f6:1e:72:82:
d8:78:2c:4c:56:d9:70:68:3b:7d:bf:9f:f8:39:5d:
e6:1f:55:54:37:86:b4:d8:b0:4a:27:74:d1:5b:df:
1a:e2:9b:25:6f:9d:a4:82:ed:f2:8e:0e:db:5d:cc:
34:f8:5e:91:8e:c0:50:ca:1f:fc:b9:fa:36:4a:16:
e8:d7:b7:bf:9d:b4:0e:da:8a:40:6e:06:88:3c:61:
da:76:5f:83:50:86:16:26:06:7a:ce:59:39:52:e8:
0c:48:5f:f8:7c:a7:18:37:9d:f9:e7:15:39:61:0d:
f3:43:a8:18:01:ff:d4:8e:7f:09:51:f5:07:9a:f7:
11:3f:fe:dc:4a:40:94:4d:b0:7a:40:b4:45:06:6e:
f2:0e:ef:2d:7d:30:5e:62:4f:61:fa:10:53:7d:28:
6c:ba:8b:1a:eb:02:47:3f:73:46:e7:a9:6a:ec:9a:
4e:55:24:8b:29:25:49:06:3c:ec:35:5a:e3:2c:83:
5b:30:c5:fa:de:15:ab:24:f3:a7:b8:60:ae:53:2c:
09:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CA:9A:F9:E2:49:13:1C:A4:90:3C:E2:02:D8:7D:89:67:A3:E5:32
X509v3 Authority Key Identifier:
keyid:64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:50:c4:78:6b:85:b8:a5:45:29:94:7b:21:87:6f:ef:c4:6c:
f8:a7:94:7c:1d:de:07:d2:3c:56:9a:db:5a:a5:24:94:3e:77:
40:bf:63:c9:6b:11:73:72:f1:e8:b2:a4:74:fb:7a:d5:c7:a4:
97:7c:73:d9:67:b8:90:e1:7d:40:d0:84:66:fc:3c:4f:53:58:
13:88:63:cc:5b:c2:82:58:30:7b:d6:df:74:7e:1c:11:69:92:
18:dd:c2:9d:85:84:cd:07:1f:a0:97:1d:55:fe:69:1a:21:fc:
1d:51:d0:d5:2a:30:34:3e:6e:07:d4:a6:ca:df:fb:9c:7c:66:
a0:44:d9:5a:53:fd:da:75:b3:32:b8:fd:b5:18:69:a0:1a:17:
ac:ec:c6:c6:25:01:25:b9:af:f5:37:4f:49:1e:5d:e7:0e:5c:
99:21:5c:c5:0f:90:4a:c7:71:50:3c:1c:36:1b:11:94:2e:4e:
3e:46:e4:a6:6b:c6:b8:ee:fb:a9:50:48:a5:31:50:e0:6f:06:
46:17:10:2c:73:4e:ff:a4:35:21:36:98:b2:35:e4:4a:f0:fd:
48:51:6c:6a:c8:81:68:29:bf:ea:c2:6a:8c:20:a6:57:2e:3c:
1e:aa:87:d8:53:86:55:3a:8a:91:ad:5e:b6:62:3f:38:ac:16:
64:ad:ec:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1AF1D5Erc26iWtew4c/3OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MzFlOTYwY2QwNjEwMzliM2IyN2ZkMjVkNDE2MDc3MWM0
OThiYWIwHhcNMjUwOTEwMTkwMDQwWhcNMjUwOTExMTkwMDQwWjAzMTEwLwYDVQQD
EyhmNGNhOWFmOWUyNDkxMzFjYTQ5MDNjZTIwMmQ4N2Q4OTY3YTNlNTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlG3rEScH/maVKZhx6km0i3/6MFm2
5yqlrzBiVvuis0Q6Is2wDx5gMBJLPlsZB0Ufqila6UGHNPYecoLYeCxMVtlwaDt9
v5/4OV3mH1VUN4a02LBKJ3TRW98a4pslb52kgu3yjg7bXcw0+F6RjsBQyh/8ufo2
Shbo17e/nbQO2opAbgaIPGHadl+DUIYWJgZ6zlk5UugMSF/4fKcYN5355xU5YQ3z
Q6gYAf/Ujn8JUfUHmvcRP/7cSkCUTbB6QLRFBm7yDu8tfTBeYk9h+hBTfShsuosa
6wJHP3NG56lq7JpOVSSLKSVJBjzsNVrjLINbMMX63hWrJPOnuGCuUywJBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPTKmvniSRMcpJA84gLYfYlno+UyMB8GA1UdIwQY
MBaAFGQx6WDNBhA5s7J/0l1BYHccSYurMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkRIcFlNMEdFRG16c25fU1hVRmdkeHhKaTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80ZmQ5MzEtOWYyMi00OWYzLWJlNTct
ZTlkYWY3OWViNzVlLzEvWkRIcFlNMEdFRG16c25fU1hVRmdkeHhKaTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80ZmQ5MzEtOWYyMi00OWYzLWJlNTctZTlkYWY3OWViNzVl
LzEvWkRIcFlNMEdFRG16c25fU1hVRmdkeHhKaTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiFDEeGuF
uKVFKZR7IYdv78Rs+KeUfB3eB9I8VprbWqUklD53QL9jyWsRc3Lx6LKkdPt61cek
l3xz2We4kOF9QNCEZvw8T1NYE4hjzFvCglgwe9bfdH4cEWmSGN3CnYWEzQcfoJcd
Vf5pGiH8HVHQ1SowND5uB9Smyt/7nHxmoETZWlP92nWzMrj9tRhpoBoXrOzGxiUB
Jbmv9TdPSR5d5w5cmSFcxQ+QSsdxUDwcNhsRlC5OPkbkpmvGuO77qVBIpTFQ4G8G
RhcQLHNO/6Q1ITaYsjXkSvD9SFFsasiBaCm/6sJqjCCmVy48HqqH2FOGVTqKka1e
tmI/OKwWZK3sxw==
-----END CERTIFICATE-----
Generated at Thu Sep 11 01:14:10 2025 by rpki-client