Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json)
Hash identifier: q7hIQCbwix2bBs3sI8HanH7kCTCo2ScUu/ZqeRXCkT8=
Subject key identifier: D9:CE:30:CD:EB:02:B9:BC:ED:A2:7C:D5:95:5D:4C:B8:14:BD:2A:92
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 019A1572B857E7F7503D1929E724D5E59E70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
Manifest number: 1710
Signing time: Fri 24 Oct 2025 09:00:31 +0000
Manifest this update: Fri 24 Oct 2025 09:00:31 +0000
Manifest next update: Sat 25 Oct 2025 09:00:31 +0000
Files and hashes: 1: 2FhEmcxYfTh9K3J3avRiCdDc75E.roa (hash: tOhuHX2KWyFG2B0a0se5O81lEiJFRABFP38mxTII8TU=)
2: 8nUvj8lY7CMTGbwnkVwsxBWh6aw.roa (hash: Aix9ab5boOQSnVduDf/PzYb3KHZGbO4bW6Ul5fxfzk8=)
3: bdkHO-cMRs9yWZFdjBV-qe9nYgE.roa (hash: qubjkKMt0NactOF0nXU7jk7H1UZ/exx8oL0CEz67yU4=)
4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: 4OIYi+9gTOwKeiQ/k/C5ZVG0CZ6T7fElCfIPID8PmS8=)
5: yT5ungE9NAr5a95GJEQ0WzC2bc4.roa (hash: 3Q09eXeA/SVTTdlEZBa1ZfiKoZceB51s1iopXPbgTXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:72:b8:57:e7:f7:50:3d:19:29:e7:24:d5:e5:9e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Oct 24 09:00:31 2025 GMT
Not After : Oct 25 09:00:31 2025 GMT
Subject: CN=d9ce30cdeb02b9bceda27cd5955d4cb814bd2a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1d:89:b2:c6:a0:5c:83:7c:74:4a:c1:da:01:
eb:d7:b5:e1:3a:4d:5e:99:32:91:d3:6e:b6:61:03:
f7:b5:4f:6e:59:ee:0f:b6:3e:ef:9a:52:24:e3:11:
58:a0:69:62:1c:7c:99:a4:5b:83:45:69:7f:61:31:
62:ad:0c:1a:18:f5:8b:66:f4:f4:75:33:fe:0a:64:
c7:e5:a4:3a:bd:56:3b:44:3a:da:21:dc:55:33:58:
35:94:4b:7a:81:1a:32:51:ec:88:1d:9a:0c:bc:1b:
34:84:e6:c3:4b:44:6a:b2:26:99:46:9f:68:01:ab:
13:34:0b:29:c0:1c:98:fd:e5:8c:6e:3c:2c:9e:85:
ed:00:9d:55:b5:76:15:0f:11:28:5a:f3:a2:2b:71:
48:aa:93:ff:23:90:e4:9c:b8:bc:1a:e0:d9:d9:01:
30:a0:49:1a:56:23:4b:9c:64:6c:e2:f8:44:35:52:
3c:19:90:83:ea:ab:87:ec:c6:9c:05:29:a7:44:34:
c9:d3:10:7e:c3:01:7f:8f:5b:69:dd:40:a7:16:e0:
7b:ae:4c:f7:54:13:c4:a3:78:a2:a4:cb:d6:34:59:
7a:75:f6:8c:6d:38:df:fe:92:b2:ef:09:6b:b2:c8:
93:98:9c:f2:33:9c:0c:be:5a:de:08:fc:87:ff:2a:
e6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CE:30:CD:EB:02:B9:BC:ED:A2:7C:D5:95:5D:4C:B8:14:BD:2A:92
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:49:d0:8b:12:79:ed:ff:b3:98:5e:96:ea:ef:3d:00:c4:00:
79:db:cc:9c:b8:97:e8:10:e0:bd:c1:22:68:ab:df:a7:60:7d:
17:8a:58:0d:70:e8:3d:ca:11:c8:c5:98:89:7e:fe:c4:42:42:
a2:89:56:a6:fe:74:42:a7:9f:3d:da:d0:c4:13:5f:69:c3:f9:
7e:2b:80:92:3c:f8:46:71:40:51:0d:60:d3:a1:98:45:dd:cd:
07:0a:85:8e:ea:28:a8:01:5f:f8:74:1c:fe:70:05:59:cd:51:
a3:17:49:a6:aa:c9:2d:f6:3a:0f:9c:a8:10:e7:3b:22:68:ea:
be:10:d5:87:2e:3e:4f:28:2c:f7:f5:9f:0e:1b:5a:bf:cc:02:
22:37:a1:90:84:da:35:78:77:d7:6f:f4:2f:f6:34:0a:62:9b:
b8:4d:70:08:fd:b7:66:8e:73:ad:9a:ee:43:4d:98:5c:b7:6a:
8d:77:31:db:7c:a9:2f:73:bc:f4:97:db:53:d5:0b:21:18:71:
af:82:32:4f:f4:64:d9:b9:53:1c:42:50:63:3a:23:a8:c7:1f:
c0:28:35:41:71:09:44:f5:6a:cf:1b:8c:cd:23:0f:90:4e:fd:
73:fa:7f:d4:48:b2:90:9c:0e:80:f0:a3:7b:4f:96:ce:73:98:
24:e6:d1:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoVcrhX5/dQPRkp5yTV5Z5wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm
ZjhmMzkwHhcNMjUxMDI0MDkwMDMxWhcNMjUxMDI1MDkwMDMxWjAzMTEwLwYDVQQD
EyhkOWNlMzBjZGViMDJiOWJjZWRhMjdjZDU5NTVkNGNiODE0YmQyYTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0B2JssagXIN8dErB2gHr17XhOk1e
mTKR0262YQP3tU9uWe4Ptj7vmlIk4xFYoGliHHyZpFuDRWl/YTFirQwaGPWLZvT0
dTP+CmTH5aQ6vVY7RDraIdxVM1g1lEt6gRoyUeyIHZoMvBs0hObDS0RqsiaZRp9o
AasTNAspwByY/eWMbjwsnoXtAJ1VtXYVDxEoWvOiK3FIqpP/I5DknLi8GuDZ2QEw
oEkaViNLnGRs4vhENVI8GZCD6quH7MacBSmnRDTJ0xB+wwF/j1tp3UCnFuB7rkz3
VBPEo3iipMvWNFl6dfaMbTjf/pKy7wlrssiTmJzyM5wMvlreCPyH/yrm3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnOMM3rArm87aJ81ZVdTLgUvSqSMB8GA1UdIwQY
MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt
NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi
LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiknQixJ5
7f+zmF6W6u89AMQAedvMnLiX6BDgvcEiaKvfp2B9F4pYDXDoPcoRyMWYiX7+xEJC
oolWpv50QqefPdrQxBNfacP5fiuAkjz4RnFAUQ1g06GYRd3NBwqFjuooqAFf+HQc
/nAFWc1RoxdJpqrJLfY6D5yoEOc7ImjqvhDVhy4+Tygs9/WfDhtav8wCIjehkITa
NXh312/0L/Y0CmKbuE1wCP23Zo5zrZruQ02YXLdqjXcx23ypL3O89JfbU9ULIRhx
r4IyT/Rk2blTHEJQYzojqMcfwCg1QXEJRPVqzxuMzSMPkE79c/p/1EiykJwOgPCj
e0+WznOYJObRfw==
-----END CERTIFICATE-----
Generated at Fri Oct 24 12:51:02 2025 by rpki-client