Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
File: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft (raw, json)
Hash identifier: q0ulZ3AbvRdq7AbAeq2RgLsLruhYH7dgqz3wwj43naA=
Subject key identifier: 1E:FF:7D:90:8F:ED:8C:23:13:84:A9:4B:A0:FF:6D:26:3A:1E:51:64
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 019A7149AAF41165FE7799709B52F1AB0944
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
Manifest number: 12AB
Signing time: Tue 11 Nov 2025 05:00:44 +0000
Manifest this update: Tue 11 Nov 2025 05:00:44 +0000
Manifest next update: Wed 12 Nov 2025 05:00:44 +0000
Files and hashes: 1: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl (hash: E1QZlvRicEwL0s4Le2Qfa3HTvaHaOSYx0KpNKxnRWOw=)
2: uoOTDO3I8Ju9HNeb_RrUnxiXqMM.roa (hash: uWLf97UT0+0lxJvC3noTnvF0IVTFV5k9XbA2AIDmE6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:aa:f4:11:65:fe:77:99:70:9b:52:f1:ab:09:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Nov 11 05:00:44 2025 GMT
Not After : Nov 12 05:00:44 2025 GMT
Subject: CN=1eff7d908fed8c231384a94ba0ff6d263a1e5164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d9:38:c8:e9:23:ec:df:cf:c9:01:f8:15:37:
cc:88:3a:6e:a5:37:25:28:04:e1:90:a0:95:c5:8f:
6b:06:61:99:8b:3f:39:37:15:93:41:a7:00:e5:6d:
12:45:fe:56:80:24:f9:07:16:0f:7d:2c:5c:ef:b1:
eb:ca:35:18:29:3e:a2:b9:7c:95:3f:cc:90:e3:d2:
8f:20:9a:fb:28:b5:a7:0e:85:8a:97:87:59:2b:20:
dd:7e:1d:6e:41:d6:40:cd:fb:e9:f6:46:cb:59:1d:
19:29:0d:df:50:d4:8e:57:30:a3:61:99:d0:5c:5d:
bc:df:d8:00:ab:b9:9f:9b:ef:bc:4b:12:0d:5a:5c:
9c:e8:55:7e:5f:d9:e2:59:e6:86:7f:d9:a6:da:be:
ff:81:e2:65:a8:f4:c6:53:5a:e1:a9:b5:c9:66:c2:
19:d4:f0:97:4e:03:75:96:0a:e5:22:d2:d9:29:0e:
30:40:07:33:8b:01:2d:c3:bb:f0:cb:48:1b:d1:c7:
e2:93:d0:d2:a8:1f:f2:38:63:2a:12:4a:05:9d:f5:
c5:f6:8c:b7:6b:29:91:9c:ed:45:5f:5c:ad:0c:ff:
00:f6:9a:7c:a8:78:31:99:e2:bd:b8:a1:80:7d:2c:
6e:2e:99:06:5f:dc:11:9f:38:11:f8:ad:ef:32:12:
8f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FF:7D:90:8F:ED:8C:23:13:84:A9:4B:A0:FF:6D:26:3A:1E:51:64
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c1:0c:e8:65:47:f9:1d:49:59:b8:95:2d:9e:09:74:f1:2c:
b5:c7:9b:6a:3d:08:20:24:e2:5f:68:3f:f0:7f:a7:1f:84:84:
32:d8:b8:bd:55:c2:ae:0a:ea:f8:f4:88:c1:df:ac:7e:97:c4:
2d:01:cc:8d:3a:c5:24:50:d1:5b:22:cc:ad:a2:94:74:04:a9:
c5:f2:aa:e6:86:fd:19:71:f3:e2:d9:f6:9a:b1:e1:24:9e:10:
a2:98:20:f4:7f:a1:bc:2d:4f:55:3d:dc:4f:71:b1:ab:ad:44:
93:46:d8:79:d0:26:a9:d1:b0:19:72:08:71:4f:0e:2a:e8:06:
71:b1:31:7a:11:01:96:4d:33:c5:1e:f6:e3:64:09:de:87:44:
f9:10:47:b3:ff:33:25:1e:99:c9:c1:03:49:23:5f:f9:6c:17:
ac:f7:41:a7:8d:57:74:ef:b4:82:e2:a5:db:21:08:2a:64:29:
e6:f8:6f:38:c4:3e:67:bc:99:9d:be:8f:b3:7a:0f:d9:22:98:
fe:69:c4:a3:34:fb:e9:c7:7d:02:ee:19:e0:4c:7e:32:e9:42:
c2:b2:1c:a4:2e:72:fb:a4:5b:58:4a:8d:f8:c5:24:9f:ec:96:
d6:f3:c4:2c:a8:4d:e6:b2:79:54:11:df:ec:d6:3f:70:4a:d0:
5a:ec:7f:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSar0EWX+d5lwm1LxqwlEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZDVlNWNkN2QwMzc1ZGUyNTI3NDA1NDY0MTJiODhiYTVi
Y2ZhN2EwHhcNMjUxMTExMDUwMDQ0WhcNMjUxMTEyMDUwMDQ0WjAzMTEwLwYDVQQD
EygxZWZmN2Q5MDhmZWQ4YzIzMTM4NGE5NGJhMGZmNmQyNjNhMWU1MTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tk4yOkj7N/PyQH4FTfMiDpupTcl
KAThkKCVxY9rBmGZiz85NxWTQacA5W0SRf5WgCT5BxYPfSxc77HryjUYKT6iuXyV
P8yQ49KPIJr7KLWnDoWKl4dZKyDdfh1uQdZAzfvp9kbLWR0ZKQ3fUNSOVzCjYZnQ
XF2839gAq7mfm++8SxINWlyc6FV+X9niWeaGf9mm2r7/geJlqPTGU1rhqbXJZsIZ
1PCXTgN1lgrlItLZKQ4wQAcziwEtw7vwy0gb0cfik9DSqB/yOGMqEkoFnfXF9oy3
aymRnO1FX1ytDP8A9pp8qHgxmeK9uKGAfSxuLpkGX9wRnzgR+K3vMhKPLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB7/fZCP7YwjE4SpS6D/bSY6HlFkMB8GA1UdIwQY
MBaAFGbV5c19A3XeJSdAVGQSuIulvPp6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnRYbHpYMERkZDRsSjBCVVpCSzRpNlc4LW5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8zZGI4ZDMtMzQwNC00NWVmLTg0MDkt
ODZiOTBmMTk3ZWRlLzEvWnRYbHpYMERkZDRsSjBCVVpCSzRpNlc4LW5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8zZGI4ZDMtMzQwNC00NWVmLTg0MDktODZiOTBmMTk3ZWRl
LzEvWnRYbHpYMERkZDRsSjBCVVpCSzRpNlc4LW5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWsEM6GVH
+R1JWbiVLZ4JdPEstcebaj0IICTiX2g/8H+nH4SEMti4vVXCrgrq+PSIwd+sfpfE
LQHMjTrFJFDRWyLMraKUdASpxfKq5ob9GXHz4tn2mrHhJJ4Qopgg9H+hvC1PVT3c
T3Gxq61Ek0bYedAmqdGwGXIIcU8OKugGcbExehEBlk0zxR7242QJ3odE+RBHs/8z
JR6ZycEDSSNf+WwXrPdBp41XdO+0guKl2yEIKmQp5vhvOMQ+Z7yZnb6Ps3oP2SKY
/mnEozT76cd9Au4Z4Ex+MulCwrIcpC5y+6RbWEqN+MUkn+yW1vPELKhN5rJ5VBHf
7NY/cErQWux/rw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:29 2025 by rpki-client