Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: zFJ8rHC9HCVFf0b8ibvj7TfxZ//t1sY88rp0zmhGCL8=
Subject key identifier: 9F:ED:D8:50:D8:E1:69:CE:62:C2:34:7C:DE:C8:CE:BC:EB:A1:6C:58
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 019A1CF565B8857C478E236CE379D1521571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0E1A
Signing time: Sat 25 Oct 2025 20:00:35 +0000
Manifest this update: Sat 25 Oct 2025 20:00:35 +0000
Manifest next update: Sun 26 Oct 2025 20:00:35 +0000
Files and hashes: 1: 2CYNXB5qZHN7in7RGaGVmXvb7Xs.roa (hash: n74UAylTv760Shvrd+PI6ipCj4rV+2WaR3QnP3+8e6Y=)
2: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: /XlW7z1qioGNCeRLPSpRXpnq8U87gTJVXdyZoUzZFv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:f5:65:b8:85:7c:47:8e:23:6c:e3:79:d1:52:15:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Oct 25 20:00:35 2025 GMT
Not After : Oct 26 20:00:35 2025 GMT
Subject: CN=9fedd850d8e169ce62c2347cdec8cebceba16c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:66:ca:fe:04:84:35:97:5b:85:d6:5e:cb:7d:
14:cc:ae:7e:32:58:f6:a4:12:47:19:86:cd:58:9d:
ea:cd:8e:97:6b:98:14:be:1b:80:bb:53:5f:3d:63:
1c:9c:ab:0e:3f:9b:d9:fb:25:61:bb:86:94:52:45:
f3:a2:b3:71:5e:02:dd:65:c5:06:2b:fb:7d:00:3c:
39:83:23:a1:6a:8c:fa:f1:61:33:25:20:b3:6b:e4:
6e:09:4b:a9:89:d5:52:be:ea:a2:bd:20:3d:de:24:
dc:ea:c7:1b:a2:c8:77:74:52:54:3a:37:c8:3b:5a:
4f:df:59:13:c5:07:7b:a2:0f:ba:cd:08:98:fe:02:
0e:2b:96:d6:c8:9b:88:5c:b4:07:ee:6b:aa:d7:e8:
71:b0:60:ea:a5:8c:84:94:df:d2:02:f6:5b:7b:d0:
f8:36:ed:51:52:a0:56:63:79:36:6b:5e:2b:cb:1a:
81:c7:2a:c8:15:e6:32:dc:4d:36:a0:57:e7:27:65:
dd:77:03:bf:4f:9f:3a:15:8f:70:2e:e2:65:c6:a1:
02:3c:98:e3:14:67:b6:fe:91:00:bf:81:d4:a9:49:
c4:32:2e:2a:b7:98:76:58:77:80:a8:ae:29:93:e0:
68:a2:b1:e9:bd:e9:f4:fc:d4:39:97:2b:a1:77:34:
a0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:ED:D8:50:D8:E1:69:CE:62:C2:34:7C:DE:C8:CE:BC:EB:A1:6C:58
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e8:bc:db:df:07:4b:4f:41:1c:fc:d3:b4:1b:e5:0a:51:fd:
3f:98:31:56:4f:b3:a8:6d:18:bb:76:f6:ee:5f:41:eb:99:bf:
13:5c:a0:9c:34:a9:9d:97:18:32:e1:75:ff:58:6a:5c:2f:39:
3b:cd:80:56:a8:41:7a:19:2a:57:17:5a:0e:e7:46:13:d9:3d:
e3:f8:0b:b8:ab:93:df:fe:b6:8f:18:04:74:bb:91:34:a4:ab:
42:a6:d6:54:d1:64:f9:d1:d7:69:b0:43:8b:07:4e:63:6d:6e:
73:18:32:5e:d6:c8:17:20:09:ed:3e:b1:9d:ec:6e:79:58:65:
bb:47:54:fb:d9:7b:2b:d0:70:6d:f5:4f:cb:c2:b8:3f:b9:2e:
ca:8e:46:54:47:61:f2:8a:1a:08:7b:5d:51:57:52:26:26:58:
c1:9a:e6:c3:52:d1:7c:de:2d:d7:8b:3d:61:94:21:9d:87:17:
9e:fd:1b:c9:38:98:52:65:49:40:7a:24:84:bf:a7:9d:6b:2f:
29:21:41:21:70:2d:bd:06:1e:23:1a:6a:4b:a2:d5:4b:fb:f7:
49:00:de:c6:58:2d:0f:72:65:4c:04:18:45:48:48:f8:4d:49:
86:e9:45:d7:3c:97:71:6c:71:c0:fd:3d:43:b0:e6:f4:4c:3c:
3a:e2:11:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoc9WW4hXxHjiNs43nRUhVxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkOTJiNjc0NzUyNzA3NTUxMzZhOGEzY2E4MDJjYTEyYzhh
YzdlNzcwHhcNMjUxMDI1MjAwMDM1WhcNMjUxMDI2MjAwMDM1WjAzMTEwLwYDVQQD
Eyg5ZmVkZDg1MGQ4ZTE2OWNlNjJjMjM0N2NkZWM4Y2ViY2ViYTE2YzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8mbK/gSENZdbhdZey30UzK5+Mlj2
pBJHGYbNWJ3qzY6Xa5gUvhuAu1NfPWMcnKsOP5vZ+yVhu4aUUkXzorNxXgLdZcUG
K/t9ADw5gyOhaoz68WEzJSCza+RuCUupidVSvuqivSA93iTc6scbosh3dFJUOjfI
O1pP31kTxQd7og+6zQiY/gIOK5bWyJuIXLQH7muq1+hxsGDqpYyElN/SAvZbe9D4
Nu1RUqBWY3k2a14ryxqBxyrIFeYy3E02oFfnJ2XddwO/T586FY9wLuJlxqECPJjj
FGe2/pEAv4HUqUnEMi4qt5h2WHeAqK4pk+BoorHpven0/NQ5lyuhdzSgVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ/t2FDY4WnOYsI0fN7IzrzroWxYMB8GA1UdIwQY
MBaAFH2StnR1JwdVE2qKPKgCyhLIrH53MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUt
NDEwYzY3MWU3NTc3LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUtNDEwYzY3MWU3NTc3
LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASui8298H
S09BHPzTtBvlClH9P5gxVk+zqG0Yu3b27l9B65m/E1ygnDSpnZcYMuF1/1hqXC85
O82AVqhBehkqVxdaDudGE9k94/gLuKuT3/62jxgEdLuRNKSrQqbWVNFk+dHXabBD
iwdOY21ucxgyXtbIFyAJ7T6xnexueVhlu0dU+9l7K9BwbfVPy8K4P7kuyo5GVEdh
8ooaCHtdUVdSJiZYwZrmw1LRfN4t14s9YZQhnYcXnv0byTiYUmVJQHokhL+nnWsv
KSFBIXAtvQYeIxpqS6LVS/v3SQDexlgtD3JlTAQYRUhI+E1JhulF1zyXcWxxwP09
Q7Dm9Ew8OuIR5w==
-----END CERTIFICATE-----
Generated at Sun Oct 26 00:56:36 2025 by rpki-client