Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: aG60HbaaL9FMTkbKMWLZ8KVwy7WCFUESS/HMvI7lHbU=
Subject key identifier: B5:24:38:29:01:AF:EC:1E:10:3C:20:CF:1A:86:19:45:08:F7:59:4E
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 01993236752E00703AA1D27755A96A3058F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0B96
Signing time: Wed 10 Sep 2025 06:00:53 +0000
Manifest this update: Wed 10 Sep 2025 06:00:53 +0000
Manifest next update: Thu 11 Sep 2025 06:00:53 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: hEMk5rv74XcWtrvF2Y38Xi0tDTPWvMB/D8/p33SV0Go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:75:2e:00:70:3a:a1:d2:77:55:a9:6a:30:58:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Sep 10 06:00:53 2025 GMT
Not After : Sep 11 06:00:53 2025 GMT
Subject: CN=b524382901afec1e103c20cf1a86194508f7594e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6e:fd:c0:93:86:9d:c4:59:52:fe:f5:ca:9f:
ef:ed:b5:8a:06:b3:27:e9:90:32:3a:4f:fd:28:d5:
87:6b:ca:ab:5e:05:5c:7d:4c:7e:94:a9:1c:54:f9:
e1:37:64:6f:ce:9f:92:60:87:14:bc:f1:9e:9b:2c:
5d:c6:8f:ac:20:74:25:18:c4:88:4d:5e:c6:5b:2f:
2d:d3:3f:92:a2:89:bb:ea:c9:e0:7f:09:2d:48:fe:
e9:d5:14:d5:59:72:39:af:3c:50:4a:03:54:85:61:
f5:31:d8:f8:b3:b3:14:97:81:dc:fe:66:b4:a6:af:
a8:19:5b:9d:c6:2e:46:1d:b3:9f:44:5d:28:a7:58:
1e:f1:3c:03:9a:3b:9e:48:00:01:f2:43:5b:93:bc:
49:1a:8a:71:e2:40:ce:a9:fc:25:d2:ba:1b:93:04:
0c:6e:8e:e5:70:a0:56:99:bc:75:09:37:a5:ad:d7:
06:19:64:27:3c:18:91:a4:a2:b4:1e:92:8c:8e:b8:
a7:06:8a:ec:47:55:fe:7d:58:5e:2d:28:b9:e7:8b:
3e:6c:dd:57:c3:6f:c2:a4:7d:0b:fc:a9:0f:69:7d:
a8:af:95:f1:9a:5f:c6:ae:bc:83:bc:ab:f3:32:cf:
65:36:02:34:2d:e7:7e:19:e4:70:55:b0:0b:0a:a9:
d7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:24:38:29:01:AF:EC:1E:10:3C:20:CF:1A:86:19:45:08:F7:59:4E
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f1:b7:61:7e:06:33:45:57:04:ea:7a:b6:d5:21:a1:e0:ba:44:
27:36:37:21:56:16:6b:56:c5:ab:50:ee:89:dc:88:51:ed:bb:
4f:72:57:25:81:7e:4c:5b:b8:37:62:d7:74:59:06:c8:36:1e:
f2:6e:27:d1:db:36:65:0f:2e:4e:35:f2:f3:fd:29:94:5c:1c:
86:bd:3e:07:69:5a:10:f6:c0:a6:1f:a8:e6:88:f5:7e:43:be:
14:c7:96:9e:29:b4:62:06:52:1e:df:18:80:7a:0d:d3:dd:41:
a1:b0:c2:a9:f1:05:d6:8e:cf:70:f2:de:90:73:dd:a0:6d:65:
e7:b5:e1:8a:49:6a:49:70:71:42:75:22:ec:3b:78:aa:ed:77:
85:28:5f:82:46:f3:e7:d4:ad:0e:44:7a:f3:29:19:23:f0:dd:
a5:41:41:60:31:c4:93:e4:61:58:46:4d:8b:11:b5:4c:71:f6:
39:92:08:e1:f0:62:bd:78:ea:b2:bf:5d:ac:24:aa:8d:f7:2c:
84:6d:89:93:27:3f:e2:a4:0d:f6:17:44:68:09:dd:57:c8:4f:
e1:1a:e4:92:32:8e:15:63:6a:ba:91:7d:5d:b2:1b:2c:14:2e:
d9:45:c2:f3:62:9a:1b:d7:a3:e8:93:ea:57:f7:2c:1a:bc:09:
64:43:ad:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkyNnUuAHA6odJ3ValqMFjxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOTRkZjY1YTNiZGRkZmI1NTYwOWYxODUwZTE0OWY4MmJl
YTc4ZjcwHhcNMjUwOTEwMDYwMDUzWhcNMjUwOTExMDYwMDUzWjAzMTEwLwYDVQQD
EyhiNTI0MzgyOTAxYWZlYzFlMTAzYzIwY2YxYTg2MTk0NTA4Zjc1OTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoG79wJOGncRZUv71yp/v7bWKBrMn
6ZAyOk/9KNWHa8qrXgVcfUx+lKkcVPnhN2Rvzp+SYIcUvPGemyxdxo+sIHQlGMSI
TV7GWy8t0z+Soom76sngfwktSP7p1RTVWXI5rzxQSgNUhWH1Mdj4s7MUl4Hc/ma0
pq+oGVudxi5GHbOfRF0op1ge8TwDmjueSAAB8kNbk7xJGopx4kDOqfwl0robkwQM
bo7lcKBWmbx1CTelrdcGGWQnPBiRpKK0HpKMjrinBorsR1X+fVheLSi554s+bN1X
w2/CpH0L/KkPaX2or5Xxml/GrryDvKvzMs9lNgI0Led+GeRwVbALCqnXBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLUkOCkBr+weEDwgzxqGGUUI91lOMB8GA1UdIwQY
MBaAFD2U32Wjvd37VWCfGFDhSfgr6nj3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9kYTljNjItOGUxNi00NmRmLWJlMmIt
MDZiOWVkOTlmMTZjLzEvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9kYTljNjItOGUxNi00NmRmLWJlMmItMDZiOWVkOTlmMTZj
LzEvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8bdhfgYz
RVcE6nq21SGh4LpEJzY3IVYWa1bFq1DuidyIUe27T3JXJYF+TFu4N2LXdFkGyDYe
8m4n0ds2ZQ8uTjXy8/0plFwchr0+B2laEPbAph+o5oj1fkO+FMeWnim0YgZSHt8Y
gHoN091BobDCqfEF1o7PcPLekHPdoG1l57XhiklqSXBxQnUi7Dt4qu13hShfgkbz
59StDkR68ykZI/DdpUFBYDHEk+RhWEZNixG1THH2OZII4fBivXjqsr9drCSqjfcs
hG2Jkyc/4qQN9hdEaAndV8hP4RrkkjKOFWNqupF9XbIbLBQu2UXC82KaG9ej6JPq
V/csGrwJZEOtEA==
-----END CERTIFICATE-----
Generated at Wed Sep 10 12:46:03 2025 by rpki-client