Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: 7P0+sDbgWp/Nax5JzeIzwNRP53oepv6paMa+9d9th6c=
Subject key identifier: 34:72:47:D5:1B:B2:41:F9:53:C2:ED:30:1D:6C:9F:66:B9:0C:B9:59
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 019A72258B2AAEE61217CF7C70F2EA5F9EE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 0A41
Signing time: Tue 11 Nov 2025 09:00:54 +0000
Manifest this update: Tue 11 Nov 2025 09:00:54 +0000
Manifest next update: Wed 12 Nov 2025 09:00:54 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: zYnYxDWuOxB1Lpbj2zK2heTcX947pELB1tlFx0mVfHU=)
2: PMHzHrS6vvRZOElfdDEFLn4owdU.roa (hash: UQqloSoHMyhRkRNOpx686QqPQutsxYq/mxr1bVAeLpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:8b:2a:ae:e6:12:17:cf:7c:70:f2:ea:5f:9e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: Nov 11 09:00:54 2025 GMT
Not After : Nov 12 09:00:54 2025 GMT
Subject: CN=347247d51bb241f953c2ed301d6c9f66b90cb959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b5:29:b7:e4:a1:66:41:3d:01:ce:77:c4:c2:
20:dd:3c:08:af:e5:b6:d3:4a:dc:1c:2a:34:77:47:
b9:b1:8c:31:f4:13:73:a8:fe:f3:3a:04:fc:c7:83:
09:54:02:0b:36:24:f8:75:c7:f2:0e:19:5e:0a:b3:
cf:26:c1:7b:08:67:37:b9:2e:c6:94:86:33:66:70:
72:59:89:15:b3:60:28:02:cd:89:85:81:21:a9:ef:
6f:46:64:a6:3c:22:22:84:38:30:54:70:8a:69:1b:
02:47:d1:63:ce:70:7f:ac:e5:c8:24:c3:e6:2b:5f:
b6:54:e8:39:22:6d:76:93:d6:ce:fe:69:7d:51:d7:
cc:78:84:34:a3:97:b1:7c:ed:a9:56:ea:57:d9:ac:
73:18:a4:95:b1:7b:62:d9:ec:ff:88:e4:60:00:a9:
99:cd:04:19:85:1b:28:f0:89:2f:52:2a:6d:ea:ce:
1f:b8:f7:0a:60:ca:27:ed:f6:7a:0e:b3:ed:36:4a:
99:b3:85:41:65:e1:6d:2e:db:39:74:ef:52:a5:d8:
5c:d0:b2:2d:80:99:54:75:c0:a1:c9:b7:59:47:65:
94:33:39:86:80:1d:02:11:8f:43:45:cd:ce:0b:c8:
61:12:ed:1d:62:8c:06:4c:dc:d6:48:9d:3a:bf:78:
b2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:72:47:D5:1B:B2:41:F9:53:C2:ED:30:1D:6C:9F:66:B9:0C:B9:59
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:64:d4:a0:a2:68:76:73:4c:e8:a1:ea:ab:f5:31:63:5d:72:
bf:02:08:61:b3:00:bb:66:ff:ce:a7:1b:8b:18:d7:c7:2c:ad:
c1:54:c6:88:de:71:42:a3:bb:08:ee:a1:c6:ff:42:92:34:5b:
05:70:b0:9a:23:ab:e2:44:0b:02:01:7f:22:00:e7:83:39:fc:
55:5b:4d:6b:12:55:db:1f:cd:78:dc:17:a9:24:4a:1b:b0:a2:
f4:cd:e4:d2:42:d1:1b:15:37:1e:b2:84:c8:27:fc:d1:32:7a:
c6:e7:71:71:32:f8:aa:2d:34:c4:60:d0:d6:a1:72:27:11:e1:
db:0e:e0:71:d5:ff:cb:f7:0c:f7:ae:bd:d0:c0:f3:08:5f:88:
a7:c9:6f:bb:58:03:d3:c4:f2:26:c1:af:ea:05:ec:b0:c9:5d:
08:d2:9c:32:e5:b5:10:62:05:e4:38:d7:ae:7a:a3:a1:12:02:
8b:9d:9a:e1:76:b5:87:bf:d0:17:ce:15:86:21:88:99:6b:e0:
d4:7b:d6:31:a9:b0:99:91:17:53:59:e3:5b:13:b2:dd:80:9c:
b3:f6:8f:09:a1:60:77:82:2c:72:94:e2:87:51:d7:58:fc:a2:
f1:07:01:e3:bf:09:f8:14:c4:10:4b:00:4d:23:93:6c:0d:0c:
2d:a4:66:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJYsqruYSF898cPLqX57kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzM2IzMmUwNWQwYTg1ZGJkNDQ1MGYzN2E3M2U3ZmExZjYx
MDBhZmMwHhcNMjUxMTExMDkwMDU0WhcNMjUxMTEyMDkwMDU0WjAzMTEwLwYDVQQD
EygzNDcyNDdkNTFiYjI0MWY5NTNjMmVkMzAxZDZjOWY2NmI5MGNiOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9bUpt+ShZkE9Ac53xMIg3TwIr+W2
00rcHCo0d0e5sYwx9BNzqP7zOgT8x4MJVAILNiT4dcfyDhleCrPPJsF7CGc3uS7G
lIYzZnByWYkVs2AoAs2JhYEhqe9vRmSmPCIihDgwVHCKaRsCR9FjznB/rOXIJMPm
K1+2VOg5Im12k9bO/ml9UdfMeIQ0o5exfO2pVupX2axzGKSVsXti2ez/iORgAKmZ
zQQZhRso8IkvUipt6s4fuPcKYMon7fZ6DrPtNkqZs4VBZeFtLts5dO9Spdhc0LIt
gJlUdcChybdZR2WUMzmGgB0CEY9DRc3OC8hhEu0dYowGTNzWSJ06v3iy0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDRyR9UbskH5U8LtMB1sn2a5DLlZMB8GA1UdIwQY
MBaAFNM7MuBdCoXb1EUPN6c+f6H2EAr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgt
MGUxNmJhZWY3MTEzLzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgtMGUxNmJhZWY3MTEz
LzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxGTUoKJo
dnNM6KHqq/UxY11yvwIIYbMAu2b/zqcbixjXxyytwVTGiN5xQqO7CO6hxv9CkjRb
BXCwmiOr4kQLAgF/IgDngzn8VVtNaxJV2x/NeNwXqSRKG7Ci9M3k0kLRGxU3HrKE
yCf80TJ6xudxcTL4qi00xGDQ1qFyJxHh2w7gcdX/y/cM96690MDzCF+Ip8lvu1gD
08TyJsGv6gXssMldCNKcMuW1EGIF5DjXrnqjoRICi52a4Xa1h7/QF84VhiGImWvg
1HvWMamwmZEXU1njWxOy3YCcs/aPCaFgd4IscpTih1HXWPyi8QcB478J+BTEEEsA
TSOTbA0MLaRmWw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:59 2025 by rpki-client