Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: jbBub9LiNAiaHW/CxSMUMJ14H5ShiJAp+pn8g+FkImE=
Subject key identifier: CC:73:CC:7A:2C:6B:60:66:E9:CB:92:30:D6:EE:CF:F6:9F:A2:E8:EE
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019933B6E941148A49D044291907178A07F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 01FD
Signing time: Wed 10 Sep 2025 13:00:48 +0000
Manifest this update: Wed 10 Sep 2025 13:00:48 +0000
Manifest next update: Thu 11 Sep 2025 13:00:48 +0000
Files and hashes: 1: 6w-yXh1-tMAIvo8oiWeiA5ImsoE.roa (hash: I2XmgPmlr8AeGcV748BNU3DKlg3Epa3bbBrXS+lzrBo=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: QyXYXCJog7vZXQXHznOM6RhvIgdqvC0ff9qUCVpT7LQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:b6:e9:41:14:8a:49:d0:44:29:19:07:17:8a:07:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Sep 10 13:00:48 2025 GMT
Not After : Sep 11 13:00:48 2025 GMT
Subject: CN=cc73cc7a2c6b6066e9cb9230d6eecff69fa2e8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:32:e1:84:fc:77:6a:3e:34:87:7a:70:c6:85:
ac:16:8b:eb:b6:b2:03:41:7a:90:57:e5:b5:e8:18:
e0:22:f1:00:62:5f:96:23:1a:4a:68:4e:1f:a8:63:
89:ab:6b:99:4a:e2:56:e8:06:7a:96:9c:c1:6d:b2:
eb:26:92:35:0d:42:88:10:f1:a4:a2:2c:74:88:75:
e0:5e:65:8b:fd:80:b4:4e:b4:3b:d8:d7:f4:b4:25:
91:ec:6a:fe:40:fb:a0:30:c0:7e:35:42:c3:4a:9e:
94:da:ed:e7:0e:89:91:31:2a:8c:dd:85:2f:47:87:
d0:4c:07:a8:81:0e:4c:e4:00:9d:9c:f3:31:89:82:
97:c7:87:81:04:06:77:e0:51:3a:61:f5:2b:fb:70:
ff:41:a5:c5:10:73:f7:72:16:75:b9:94:1a:de:ae:
4d:4f:cf:f8:cc:4f:dc:17:d1:0f:87:77:02:a8:66:
0a:e9:dd:25:c9:f5:bf:09:ff:5e:7d:c5:db:c4:eb:
1e:65:1c:ca:96:bc:dd:a1:02:e8:09:74:e5:eb:8b:
94:e6:f3:ad:bb:96:50:15:89:d3:9d:d9:d0:b5:a1:
b2:74:13:d3:ca:57:6b:e4:98:07:99:3b:78:e3:90:
56:19:83:d3:7a:64:a9:9a:df:ad:75:7f:37:fd:20:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:73:CC:7A:2C:6B:60:66:E9:CB:92:30:D6:EE:CF:F6:9F:A2:E8:EE
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:4e:10:3c:b4:63:b3:cb:1d:66:4d:36:21:77:64:7d:2f:ce:
76:88:20:16:61:32:51:8d:ac:58:1e:64:c4:be:9f:31:48:29:
d6:06:06:78:d0:b8:32:21:a9:50:34:9b:68:b7:49:a4:9f:e0:
92:87:f7:f7:4a:43:f0:93:17:01:5e:10:40:9c:7b:c0:58:f9:
bc:fa:51:db:b2:99:13:56:2a:1b:1c:a5:77:d9:1c:42:69:e0:
b2:bc:74:eb:b2:d2:4e:e6:b6:53:fc:16:7b:4f:16:8f:3b:79:
94:09:f9:d5:6b:80:22:1e:85:3b:7b:b5:e3:4c:98:1a:cb:03:
77:50:fa:dc:33:06:32:71:10:66:9e:11:42:70:fb:a2:94:37:
77:c4:88:17:a6:2b:db:2f:cb:54:49:ac:e1:41:a1:17:01:b9:
07:2f:13:ae:f3:fa:cc:37:3f:1a:ca:9e:de:c2:a6:e7:af:0c:
61:4d:b6:54:13:a8:8a:09:64:b5:d2:39:76:8e:db:41:35:37:
f3:87:66:80:03:e6:5b:19:77:0b:75:f0:58:14:5c:55:43:d3:
bf:d8:f9:ff:21:db:51:c9:32:a8:08:ef:5d:3a:39:27:99:0a:
62:59:2a:f7:07:e6:df:41:c0:7c:06:ac:17:a1:5d:2a:9e:78:
a9:b7:37:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkztulBFIpJ0EQpGQcXigf4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0Y2YxZWU5MDY1M2I3YjgxNGQ2YjU0NTk0OWJkOTRkZGUw
ZmM2YTEwHhcNMjUwOTEwMTMwMDQ4WhcNMjUwOTExMTMwMDQ4WjAzMTEwLwYDVQQD
EyhjYzczY2M3YTJjNmI2MDY2ZTljYjkyMzBkNmVlY2ZmNjlmYTJlOGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDLhhPx3aj40h3pwxoWsFovrtrID
QXqQV+W16BjgIvEAYl+WIxpKaE4fqGOJq2uZSuJW6AZ6lpzBbbLrJpI1DUKIEPGk
oix0iHXgXmWL/YC0TrQ72Nf0tCWR7Gr+QPugMMB+NULDSp6U2u3nDomRMSqM3YUv
R4fQTAeogQ5M5ACdnPMxiYKXx4eBBAZ34FE6YfUr+3D/QaXFEHP3chZ1uZQa3q5N
T8/4zE/cF9EPh3cCqGYK6d0lyfW/Cf9efcXbxOseZRzKlrzdoQLoCXTl64uU5vOt
u5ZQFYnTndnQtaGydBPTyldr5JgHmTt445BWGYPTemSpmt+tdX83/SCR5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMxzzHosa2Bm6cuSMNbuz/afoujuMB8GA1UdIwQY
MBaAFGTPHukGU7e4FNa1RZSb2U3eD8ahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8yOTljYWEtOGNjZC00OWMxLTkwMjkt
ODgwNGRhZDc4MGExLzEvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8yOTljYWEtOGNjZC00OWMxLTkwMjktODgwNGRhZDc4MGEx
LzEvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEE4QPLRj
s8sdZk02IXdkfS/OdoggFmEyUY2sWB5kxL6fMUgp1gYGeNC4MiGpUDSbaLdJpJ/g
kof390pD8JMXAV4QQJx7wFj5vPpR27KZE1YqGxyld9kcQmngsrx067LSTua2U/wW
e08Wjzt5lAn51WuAIh6FO3u140yYGssDd1D63DMGMnEQZp4RQnD7opQ3d8SIF6Yr
2y/LVEms4UGhFwG5By8TrvP6zDc/Gsqe3sKm568MYU22VBOoiglktdI5do7bQTU3
84dmgAPmWxl3C3XwWBRcVUPTv9j5/yHbUckyqAjvXTo5J5kKYlkq9wfm30HAfAas
F6FdKp54qbc3eA==
-----END CERTIFICATE-----
Generated at Wed Sep 10 22:02:15 2025 by rpki-client