Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
File: VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft (raw, json)
Hash identifier: CYazt4vLWIKBaa83SGvLLUhxClY735ahqSXrdiqIch8=
Subject key identifier: 31:1C:11:0A:46:0E:58:47:6F:A5:9A:85:FF:5B:F0:C6:C4:BA:F3:15
Authority key identifier: 55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
Certificate issuer: /CN=559a769412d2d963b491ebe31d44111dcafccc94
Certificate serial: 019A71B84A9974A797A7293605921AD53DCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
Manifest number: 0602
Signing time: Tue 11 Nov 2025 07:01:34 +0000
Manifest this update: Tue 11 Nov 2025 07:01:34 +0000
Manifest next update: Wed 12 Nov 2025 07:01:34 +0000
Files and hashes: 1: VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl (hash: aeX9umuF8RhZWiij9tbfMC3KTCtZPuV6JMl1ODDgLEo=)
2: r1lquQ-XjIWjOg1LAkyGn6KMjo0.roa (hash: wZhXEM3Xxa5+Fz5oyJ1++QkvfDJcpfPRAfCqMyTq70w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:4a:99:74:a7:97:a7:29:36:05:92:1a:d5:3d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559a769412d2d963b491ebe31d44111dcafccc94
Validity
Not Before: Nov 11 07:01:34 2025 GMT
Not After : Nov 12 07:01:34 2025 GMT
Subject: CN=311c110a460e58476fa59a85ff5bf0c6c4baf315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2d:66:a3:c7:4a:78:83:1e:f2:42:f2:6e:09:
b0:61:1d:c3:59:3f:53:2b:e5:92:02:92:72:cf:4b:
22:5f:6e:52:ba:04:83:c0:8f:61:38:d3:9c:b6:d6:
fa:6f:b4:f8:51:9f:f4:0d:5f:fa:f5:90:4b:92:d8:
a6:bb:bb:2b:6c:9a:58:1c:63:a5:5b:23:fd:5e:10:
76:76:3c:8e:e2:0e:8c:28:5f:ea:24:a8:ef:94:41:
89:8a:14:2b:18:97:e9:ac:96:a1:ca:87:b2:12:a6:
71:47:8c:c0:9a:e4:8f:0f:be:e2:2f:71:4b:a4:5d:
b3:6b:9e:1f:f7:6a:09:90:1c:44:53:bd:da:7f:a6:
a6:f7:ec:8d:98:45:18:3e:20:42:d9:ca:0a:8a:a2:
67:82:17:64:22:e4:55:28:3c:4e:97:40:b3:f8:d6:
b7:77:70:d8:fc:26:60:84:bb:1e:83:b2:6a:43:7b:
9a:a1:50:b9:e6:96:5c:7a:94:a7:6d:a6:04:dd:97:
35:af:fc:78:07:26:96:bc:b5:8a:3b:f3:81:02:92:
e0:97:79:70:15:dd:af:d8:eb:da:9c:4b:53:52:33:
00:01:a6:44:bd:dc:96:3e:6a:9d:91:67:82:d6:39:
e0:eb:87:36:54:04:77:2c:20:b0:ea:e6:2f:f7:24:
07:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1C:11:0A:46:0E:58:47:6F:A5:9A:85:FF:5B:F0:C6:C4:BA:F3:15
X509v3 Authority Key Identifier:
keyid:55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:90:4d:39:c0:3d:c9:be:3b:e3:f8:d7:81:9a:6f:70:62:0b:
57:5b:19:ad:cb:1f:e2:c4:b6:48:cf:e0:4c:5f:9a:44:c5:ff:
c0:09:5b:a4:d6:92:e3:3a:c5:d1:aa:dd:ff:a3:67:7d:7b:5e:
9f:51:63:92:05:9b:6d:b2:63:38:e7:6b:c7:98:1b:5f:89:5e:
f3:eb:29:bb:e4:f8:51:e1:9a:a9:8a:68:56:9c:9f:6a:26:21:
f2:f8:70:f2:e3:b5:32:d6:e7:84:ce:31:dd:c4:79:0e:14:da:
f2:af:96:55:8a:e8:8c:bf:98:0e:b4:84:6b:aa:17:88:7b:09:
5d:b8:fe:83:24:55:31:82:91:83:1c:a8:03:21:81:c2:47:21:
e6:9d:43:6b:0b:8c:fe:7c:c2:9e:fe:50:b7:30:4d:de:76:1d:
ce:4c:e0:20:e2:7f:c7:df:ee:76:2c:75:c2:4d:de:99:a0:d0:
1c:a3:15:95:e6:b1:76:92:d4:21:5a:60:b1:50:a3:8b:db:40:
c7:30:a7:5a:30:9c:7d:ff:3a:5e:9f:9d:fe:4a:e2:ac:98:23:
0c:d1:41:9a:14:05:65:ee:b8:82:32:6b:d6:e3:03:f9:cf:c9:
ee:a9:71:f3:52:07:06:29:bb:90:fa:bf:ce:3c:27:7c:31:aa:
98:61:c7:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuEqZdKeXpyk2BZIa1T3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1OWE3Njk0MTJkMmQ5NjNiNDkxZWJlMzFkNDQxMTFkY2Fm
Y2NjOTQwHhcNMjUxMTExMDcwMTM0WhcNMjUxMTEyMDcwMTM0WjAzMTEwLwYDVQQD
EygzMTFjMTEwYTQ2MGU1ODQ3NmZhNTlhODVmZjViZjBjNmM0YmFmMzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy1mo8dKeIMe8kLybgmwYR3DWT9T
K+WSApJyz0siX25SugSDwI9hONOcttb6b7T4UZ/0DV/69ZBLktimu7srbJpYHGOl
WyP9XhB2djyO4g6MKF/qJKjvlEGJihQrGJfprJahyoeyEqZxR4zAmuSPD77iL3FL
pF2za54f92oJkBxEU73af6am9+yNmEUYPiBC2coKiqJnghdkIuRVKDxOl0Cz+Na3
d3DY/CZghLseg7JqQ3uaoVC55pZcepSnbaYE3Zc1r/x4ByaWvLWKO/OBApLgl3lw
Fd2v2OvanEtTUjMAAaZEvdyWPmqdkWeC1jng64c2VAR3LCCw6uYv9yQH3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDEcEQpGDlhHb6Wahf9b8MbEuvMVMB8GA1UdIwQY
MBaAFFWadpQS0tljtJHr4x1EER3K/MyUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9kNDVkM2YtNTdhZC00Y2ExLWI4ZGYt
N2UyNTNlNjM5OGU1LzEvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi9kNDVkM2YtNTdhZC00Y2ExLWI4ZGYtN2UyNTNlNjM5OGU1
LzEvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhpBNOcA9
yb474/jXgZpvcGILV1sZrcsf4sS2SM/gTF+aRMX/wAlbpNaS4zrF0ard/6NnfXte
n1FjkgWbbbJjOOdrx5gbX4le8+spu+T4UeGaqYpoVpyfaiYh8vhw8uO1MtbnhM4x
3cR5DhTa8q+WVYrojL+YDrSEa6oXiHsJXbj+gyRVMYKRgxyoAyGBwkch5p1DawuM
/nzCnv5QtzBN3nYdzkzgIOJ/x9/udix1wk3emaDQHKMVleaxdpLUIVpgsVCji9tA
xzCnWjCcff86Xp+d/krirJgjDNFBmhQFZe64gjJr1uMD+c/J7qlx81IHBim7kPq/
zjwnfDGqmGHH1Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:31 2025 by rpki-client