Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: J+mQRNKi39z4cq2qsQ5EtZUlbVaiQLQ3+7FFzkkKoKo=
Subject key identifier: 7A:AB:29:11:EF:5C:26:11:89:D0:C4:76:AE:C4:A4:81:4B:36:38:55
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 01992255B3E48FA52B82D4A70D60188DBF83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0E8D
Signing time: Sun 07 Sep 2025 04:01:05 +0000
Manifest this update: Sun 07 Sep 2025 04:01:05 +0000
Manifest next update: Mon 08 Sep 2025 04:01:05 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: P9HBjvfiDnuAFwFm2Fki87hgChhVKufl7LtBE7zYfes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:b3:e4:8f:a5:2b:82:d4:a7:0d:60:18:8d:bf:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Sep 7 04:01:05 2025 GMT
Not After : Sep 8 04:01:05 2025 GMT
Subject: CN=7aab2911ef5c261189d0c476aec4a4814b363855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:08:9e:dc:36:a2:a3:ee:ad:5f:87:9e:53:a8:
3f:d4:37:0b:8f:b6:ed:6a:d0:20:db:cb:c8:22:71:
9d:3d:8c:c4:36:a4:4b:c5:01:df:b4:cf:d8:13:e8:
df:bf:64:a1:60:3e:02:16:9a:12:eb:34:8c:48:b6:
67:19:ec:5f:ea:ea:b1:33:8c:e5:fc:8c:2f:24:a9:
89:31:6d:f6:d5:a9:2a:2c:cd:bb:ed:77:ac:8f:4c:
4c:50:0b:0d:e4:6e:e6:84:84:28:f0:22:2a:f7:a3:
2f:74:1a:1f:87:dd:17:7d:5d:b4:b5:24:b4:52:96:
d2:c6:2e:96:f1:0d:3a:16:79:8e:c5:d1:64:bd:df:
8e:7b:a0:41:21:4c:ed:ed:ef:3b:4d:a1:16:96:cf:
9e:f0:1a:1c:46:67:9c:f0:62:ce:20:e9:4c:e2:4b:
89:cb:94:c2:f7:ce:80:bf:1e:65:38:76:af:59:29:
72:3a:84:87:e3:50:81:a0:fc:e0:e3:33:77:cb:5a:
43:59:cd:2a:05:40:33:89:84:32:df:dc:dd:8c:40:
a3:3a:3d:02:1b:70:c2:2d:f2:4f:f5:ee:83:7f:b1:
bf:27:e6:61:9f:2d:94:a5:ac:3e:91:cf:bf:b0:53:
74:9a:b2:a2:b9:ef:0b:ef:ec:71:41:6d:f5:1e:ba:
a2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AB:29:11:EF:5C:26:11:89:D0:C4:76:AE:C4:A4:81:4B:36:38:55
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:67:bf:19:76:19:bb:ed:93:b3:da:c3:1f:80:61:ed:c5:c3:
52:57:d4:0d:86:bc:24:0a:ff:14:a8:be:5b:0d:7a:30:2f:5e:
0e:ec:d6:c2:e8:f8:b0:e6:6d:0e:d4:06:23:0a:cd:d0:a3:56:
7d:92:db:9b:2d:26:f6:3e:93:56:6c:75:0c:2d:71:93:19:91:
66:2c:eb:aa:2a:9c:45:2c:11:b1:93:ec:b8:71:1e:87:5f:46:
0e:7c:7f:e6:32:5e:17:e6:32:fa:18:b1:27:f4:b3:33:6e:7f:
68:cd:0b:ea:7d:83:43:03:cd:70:aa:87:f1:7d:ff:7b:a8:bd:
dc:48:44:83:dd:ef:d1:4d:52:ef:5b:21:9a:e8:9b:88:c1:e9:
d6:eb:06:d2:aa:40:2a:b8:ff:12:4c:87:0f:f2:1a:48:12:d6:
8e:da:0e:8f:6c:64:c8:a9:fe:bb:17:3b:65:a9:ea:a5:7b:7e:
8f:1d:06:7e:b5:98:b7:8f:fd:3e:21:e1:7f:c7:92:92:de:60:
3d:b6:20:26:52:b6:fe:39:bd:ba:ea:a3:9b:27:ea:a7:e4:3d:
31:2c:ae:4b:54:ad:e2:bb:ee:fc:99:c7:44:a6:c0:9e:08:36:
27:77:e5:af:35:b6:a4:f0:4e:8d:be:53:ec:4c:c2:28:9f:0d:
ef:41:98:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVbPkj6UrgtSnDWAYjb+DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkM2MxMTBkZmQ3N2Y1Nzc1NzM5MWMwZmFlZGVlYmUzNjA4
NjU3MWQwHhcNMjUwOTA3MDQwMTA1WhcNMjUwOTA4MDQwMTA1WjAzMTEwLwYDVQQD
Eyg3YWFiMjkxMWVmNWMyNjExODlkMGM0NzZhZWM0YTQ4MTRiMzYzODU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAie3Daio+6tX4eeU6g/1DcLj7bt
atAg28vIInGdPYzENqRLxQHftM/YE+jfv2ShYD4CFpoS6zSMSLZnGexf6uqxM4zl
/IwvJKmJMW321akqLM277Xesj0xMUAsN5G7mhIQo8CIq96MvdBofh90XfV20tSS0
UpbSxi6W8Q06FnmOxdFkvd+Oe6BBIUzt7e87TaEWls+e8BocRmec8GLOIOlM4kuJ
y5TC986Avx5lOHavWSlyOoSH41CBoPzg4zN3y1pDWc0qBUAziYQy39zdjECjOj0C
G3DCLfJP9e6Df7G/J+Zhny2Upaw+kc+/sFN0mrKiue8L7+xxQW31HrqioQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqrKRHvXCYRidDEdq7EpIFLNjhVMB8GA1UdIwQY
MBaAFM08EQ39d/V3VzkcD67e6+NghlcdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelR3UkRmMTM5WGRYT1J3UHJ0N3I0MkNHVngwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8yMGU1YTItMGU2NC00ZWEzLThjODYt
NmMwMmVjMTliODA5LzEvelR3UkRmMTM5WGRYT1J3UHJ0N3I0MkNHVngwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8yMGU1YTItMGU2NC00ZWEzLThjODYtNmMwMmVjMTliODA5
LzEvelR3UkRmMTM5WGRYT1J3UHJ0N3I0MkNHVngwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR2e/GXYZ
u+2Ts9rDH4Bh7cXDUlfUDYa8JAr/FKi+Ww16MC9eDuzWwuj4sOZtDtQGIwrN0KNW
fZLbmy0m9j6TVmx1DC1xkxmRZizrqiqcRSwRsZPsuHEeh19GDnx/5jJeF+Yy+hix
J/SzM25/aM0L6n2DQwPNcKqH8X3/e6i93EhEg93v0U1S71shmuibiMHp1usG0qpA
Krj/EkyHD/IaSBLWjtoOj2xkyKn+uxc7ZanqpXt+jx0GfrWYt4/9PiHhf8eSkt5g
PbYgJlK2/jm9uuqjmyfqp+Q9MSyuS1St4rvu/JnHRKbAngg2J3flrzW2pPBOjb5T
7EzCKJ8N70GYWQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:39 2025 by rpki-client