Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: 82Y7L2dr27N4SbuUmSveo3shcYoPY2sDWL7TaF+4wpg=
Subject key identifier: 3F:80:66:BC:AF:5B:6A:65:6E:AD:95:5B:20:C9:BF:1B:BE:C2:D0:1F
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019A0A131FD033BA0A464504677F907385EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 1538
Signing time: Wed 22 Oct 2025 04:00:16 +0000
Manifest this update: Wed 22 Oct 2025 04:00:16 +0000
Manifest next update: Thu 23 Oct 2025 04:00:16 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: 6kTi2LP4JsaOdKEx0EV5YZWsbZadltB1Y24i+s9BNfI=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 04:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0a:13:1f:d0:33:ba:0a:46:45:04:67:7f:90:73:85:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Oct 22 04:00:16 2025 GMT
Not After : Oct 23 04:00:16 2025 GMT
Subject: CN=3f8066bcaf5b6a656ead955b20c9bf1bbec2d01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1f:d5:a1:ba:fd:40:e3:c9:07:fc:4a:93:3f:
1a:23:07:3b:73:47:f8:80:ed:91:d3:ce:f4:c5:ca:
e9:a6:fe:ca:1f:84:88:61:d6:b1:2d:d6:33:b0:cf:
65:a9:3c:05:40:66:0c:c9:0a:d1:b0:50:4f:b8:76:
bd:b9:42:52:27:c5:c5:1e:07:d3:dd:57:5c:f3:91:
d8:1a:c3:48:08:30:6c:2a:66:24:36:1c:d8:d6:a7:
1d:93:0e:4d:0e:98:c2:28:f9:0f:7d:00:a6:2a:3c:
6b:78:81:95:7c:4b:4c:98:02:3b:16:20:f2:b7:36:
49:a8:7b:ed:b6:e4:36:b6:4b:a4:d2:04:ce:30:c3:
e3:2d:d7:46:eb:17:8c:17:a7:ba:e3:b1:10:34:37:
b9:94:74:ee:c4:b3:75:20:d2:03:b1:49:b3:b3:d2:
37:f9:7d:71:39:17:04:16:6b:c5:e6:53:30:40:aa:
9a:56:b6:f7:54:e5:07:12:00:6c:d5:e5:d9:4b:7e:
e3:4a:4e:25:ed:20:74:85:59:e4:ce:51:5d:67:73:
4c:aa:e4:f2:7c:61:75:e3:fa:a5:e6:f5:83:22:63:
f3:53:6c:36:f5:77:09:8b:71:06:d4:3f:01:71:7d:
5d:c4:83:5c:ec:cf:77:f6:6c:f5:31:2b:b5:41:a5:
ef:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:80:66:BC:AF:5B:6A:65:6E:AD:95:5B:20:C9:BF:1B:BE:C2:D0:1F
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:99:1d:6b:67:0a:df:66:ed:b3:a0:73:11:28:ad:34:49:dc:
16:b5:8f:68:50:81:b9:01:29:d8:45:8f:db:fe:14:1d:a3:fb:
d8:cf:41:32:13:11:4f:70:05:5c:b9:35:6a:1a:7b:82:b2:35:
a3:74:c5:2f:d1:7c:d5:8d:32:a1:3b:15:d7:c4:20:ce:45:58:
30:f3:99:92:86:7e:42:7f:dc:80:e9:27:0a:b7:e2:4b:86:50:
ef:9c:a8:ac:d0:8c:1b:9c:78:03:ec:b2:a5:32:e9:fb:7f:06:
6b:e3:36:3d:d8:10:02:d4:b5:53:9e:a0:82:41:e8:17:d1:eb:
19:9c:9d:ff:8d:88:e1:59:00:15:89:7f:dc:a6:89:cf:2c:2a:
bb:72:30:23:c3:2f:5c:87:4e:94:b2:5c:8a:ae:8e:76:e4:aa:
01:0e:8f:83:54:f1:ee:3d:3a:a2:0c:67:6c:a2:99:fd:b2:a5:
01:36:48:7c:29:7a:fd:91:3a:bd:4c:06:4f:41:7f:93:05:63:
a5:12:94:4a:1f:d2:18:21:1e:15:67:eb:0a:f8:bc:92:a2:64:
21:4f:b8:ad:4d:51:09:e2:f6:77:70:f4:f1:11:cd:4f:04:0f:
bc:85:26:8d:d8:1c:c5:8b:0c:9b:a3:58:92:48:bd:ea:5f:32:
a1:95:32:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoKEx/QM7oKRkUEZ3+Qc4XrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk
ZWRhZTQwHhcNMjUxMDIyMDQwMDE2WhcNMjUxMDIzMDQwMDE2WjAzMTEwLwYDVQQD
EygzZjgwNjZiY2FmNWI2YTY1NmVhZDk1NWIyMGM5YmYxYmJlYzJkMDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoh/Vobr9QOPJB/xKkz8aIwc7c0f4
gO2R0870xcrppv7KH4SIYdaxLdYzsM9lqTwFQGYMyQrRsFBPuHa9uUJSJ8XFHgfT
3Vdc85HYGsNICDBsKmYkNhzY1qcdkw5NDpjCKPkPfQCmKjxreIGVfEtMmAI7FiDy
tzZJqHvttuQ2tkuk0gTOMMPjLddG6xeMF6e647EQNDe5lHTuxLN1INIDsUmzs9I3
+X1xORcEFmvF5lMwQKqaVrb3VOUHEgBs1eXZS37jSk4l7SB0hVnkzlFdZ3NMquTy
fGF14/ql5vWDImPzU2w29XcJi3EG1D8BcX1dxINc7M939mz1MSu1QaXvRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+AZryvW2plbq2VWyDJvxu+wtAfMB8GA1UdIwQY
MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt
NjIzZTE5OWZkYmU5LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5
LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5kda2cK
32bts6BzESitNEncFrWPaFCBuQEp2EWP2/4UHaP72M9BMhMRT3AFXLk1ahp7grI1
o3TFL9F81Y0yoTsV18QgzkVYMPOZkoZ+Qn/cgOknCrfiS4ZQ75yorNCMG5x4A+yy
pTLp+38Ga+M2PdgQAtS1U56ggkHoF9HrGZyd/42I4VkAFYl/3KaJzywqu3IwI8Mv
XIdOlLJciq6OduSqAQ6Pg1Tx7j06ogxnbKKZ/bKlATZIfCl6/ZE6vUwGT0F/kwVj
pRKUSh/SGCEeFWfrCvi8kqJkIU+4rU1RCeL2d3D08RHNTwQPvIUmjdgcxYsMm6NY
kki96l8yoZUygA==
-----END CERTIFICATE-----
Generated at Wed Oct 22 12:36:17 2025 by rpki-client