Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json)
Hash identifier: rb70nDVbrN9Qgww03m4sV8CB20XnJa0i87ILs+FkKj4=
Subject key identifier: 8C:94:85:09:F6:27:F8:3B:B5:1C:6D:11:B7:80:15:F4:10:93:38:C3
Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Certificate serial: 019A2553642AEB362B0403BF7E074C99F65B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 11:00:13 +0000
Manifest this update: Mon 27 Oct 2025 11:00:13 +0000
Manifest next update: Tue 28 Oct 2025 11:00:13 +0000
Files and hashes: 1: O1oreHXoGfE0x_DduepnzXbv1jQ.roa (hash: YJRrGXYLhqb/8S1lAURaXg16hfYVh9EAfo6ckQiEqy0=)
2: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: Y/mOHOAknIr8tcqApWn7d6c+fkHgEFPz++ihtsZVKKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 11:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:53:64:2a:eb:36:2b:04:03:bf:7e:07:4c:99:f6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Validity
Not Before: Oct 27 11:00:13 2025 GMT
Not After : Oct 28 11:00:13 2025 GMT
Subject: CN=8c948509f627f83bb51c6d11b78015f4109338c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a0:fd:fe:4a:e7:b9:63:71:13:d1:63:21:30:
82:24:de:26:2e:b8:4d:36:4d:d4:50:db:49:16:97:
89:e1:a2:14:97:86:9b:53:11:47:bc:b8:fa:08:7a:
a5:8d:06:74:41:29:40:0f:0a:ae:a1:c9:13:bf:65:
2a:ff:01:27:a4:1a:f5:0d:32:f6:6d:81:4c:cd:56:
53:62:d4:17:d1:d8:e8:06:65:97:aa:5f:ce:01:6b:
53:eb:20:64:0f:0d:40:79:ce:4a:54:0c:89:29:f4:
14:0d:25:85:ce:81:2b:ba:ec:f0:4b:2d:20:e1:37:
07:75:32:46:ae:73:b0:fe:96:5f:87:66:07:a8:53:
6e:34:7c:85:12:3b:e8:d3:be:f8:5d:a2:af:ad:07:
72:21:16:a0:1d:76:61:73:32:d3:c3:a9:93:dc:76:
84:fb:4f:32:e8:58:6e:0e:10:08:a9:f4:71:ec:00:
e6:aa:38:42:a5:5e:35:eb:b1:c8:75:91:9e:cb:dc:
47:36:25:42:ce:4a:11:be:9e:59:19:7f:77:23:68:
e4:b9:8e:bf:9b:33:60:b7:a9:c7:54:09:1d:56:9a:
a6:07:e9:40:6c:f2:3c:3c:29:59:9f:6b:55:eb:e9:
78:24:97:fe:46:73:b7:ac:bf:90:04:93:92:5a:34:
dd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:94:85:09:F6:27:F8:3B:B5:1C:6D:11:B7:80:15:F4:10:93:38:C3
X509v3 Authority Key Identifier:
keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:6b:2c:aa:5f:70:85:41:11:46:2a:43:a8:a3:d3:77:07:f2:
07:31:c7:2b:cd:ff:08:ec:03:bd:0a:0c:c9:4f:3e:98:07:db:
25:0d:14:31:3f:80:42:10:69:50:c8:a7:c3:8c:75:ee:b4:5c:
f0:ea:1f:c9:69:4c:3c:6a:ca:1c:1c:36:ab:08:fd:37:67:0e:
94:45:b5:03:9b:19:46:ef:83:25:2c:11:c0:ca:49:88:85:43:
be:cd:92:2d:79:af:2a:e8:02:91:f5:77:3d:46:83:78:29:15:
5d:74:71:19:41:ca:aa:e0:3f:0d:22:b7:16:c7:f7:fe:ad:b6:
02:d9:f4:71:1a:be:af:77:80:a9:eb:7d:0d:85:f6:09:c5:07:
fd:6a:a1:27:d4:8f:46:51:9c:54:bb:2e:fc:28:4d:00:d1:fd:
95:a9:cc:c9:23:fe:81:f2:87:e3:7f:23:fa:17:b4:a0:f8:2c:
63:22:bb:26:68:ef:6d:65:44:35:8d:0e:f8:a4:84:ac:76:1f:
82:05:a5:21:9a:67:8f:fd:ac:8b:77:73:df:30:b2:66:b9:87:
73:eb:f9:d0:e6:f7:a3:a9:e3:08:b9:e8:be:a8:7d:32:77:65:
29:e8:32:61:c0:f0:f1:91:65:ea:f6:26:8c:3b:30:1e:a8:c3:
4e:03:a9:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZolU2Qq6zYrBAO/fgdMmfZbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkOTM5ZWI3NGFiYmNkMjIyN2MyMTkyYWEyYTM3ZTZkY2I4
OThlNTMwHhcNMjUxMDI3MTEwMDEzWhcNMjUxMDI4MTEwMDEzWjAzMTEwLwYDVQQD
Eyg4Yzk0ODUwOWY2MjdmODNiYjUxYzZkMTFiNzgwMTVmNDEwOTMzOGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqD9/krnuWNxE9FjITCCJN4mLrhN
Nk3UUNtJFpeJ4aIUl4abUxFHvLj6CHqljQZ0QSlADwquockTv2Uq/wEnpBr1DTL2
bYFMzVZTYtQX0djoBmWXql/OAWtT6yBkDw1Aec5KVAyJKfQUDSWFzoEruuzwSy0g
4TcHdTJGrnOw/pZfh2YHqFNuNHyFEjvo0774XaKvrQdyIRagHXZhczLTw6mT3HaE
+08y6FhuDhAIqfRx7ADmqjhCpV4167HIdZGey9xHNiVCzkoRvp5ZGX93I2jkuY6/
mzNgt6nHVAkdVpqmB+lAbPI8PClZn2tV6+l4JJf+RnO3rL+QBJOSWjTdiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIyUhQn2J/g7tRxtEbeAFfQQkzjDMB8GA1UdIwQY
MBaAFG2TnrdKu80iJ8IZKqKjfm3LiY5TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTIt
ZTk1ZTJkM2QyM2UwLzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTItZTk1ZTJkM2QyM2Uw
LzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE2ssql9w
hUERRipDqKPTdwfyBzHHK83/COwDvQoMyU8+mAfbJQ0UMT+AQhBpUMinw4x17rRc
8OofyWlMPGrKHBw2qwj9N2cOlEW1A5sZRu+DJSwRwMpJiIVDvs2SLXmvKugCkfV3
PUaDeCkVXXRxGUHKquA/DSK3Fsf3/q22Atn0cRq+r3eAqet9DYX2CcUH/WqhJ9SP
RlGcVLsu/ChNANH9lanMySP+gfKH438j+he0oPgsYyK7JmjvbWVENY0O+KSErHYf
ggWlIZpnj/2si3dz3zCyZrmHc+v50Ob3o6njCLnovqh9MndlKegyYcDw8ZFl6vYm
jDswHqjDTgOplQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 20:26:10 2025 by rpki-client