Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: QDAmj6YAQRKJB9nYzyuDMofmem77fqW33o9QzukYlmM=
Subject key identifier: BE:84:DC:7F:C2:C9:CA:42:E3:E2:3E:01:37:82:60:80:AD:29:43:6B
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019A503DF41E812DE7EF89A578EFAF57B298
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 0568
Signing time: Tue 04 Nov 2025 19:00:28 +0000
Manifest this update: Tue 04 Nov 2025 19:00:28 +0000
Manifest next update: Wed 05 Nov 2025 19:00:28 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: F0tWv4rj9CtXMXIOA0+k0sbcYUl2BHO8UhzESBCRQF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:f4:1e:81:2d:e7:ef:89:a5:78:ef:af:57:b2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Nov 4 19:00:28 2025 GMT
Not After : Nov 5 19:00:28 2025 GMT
Subject: CN=be84dc7fc2c9ca42e3e23e0137826080ad29436b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:45:da:94:6d:43:62:b1:fb:47:31:c0:40:
f2:fb:8b:fa:5c:9b:c4:ba:f3:90:02:6a:f6:a7:7d:
64:f3:c7:05:f0:c7:df:6a:0a:a7:c9:45:16:6e:b1:
cf:77:52:9b:d4:2a:23:f6:7b:d7:fd:7d:ee:86:e1:
bc:fe:50:69:94:e4:f8:91:c4:cb:b4:f5:e9:15:49:
3d:42:72:70:8d:c5:95:ad:71:0f:f8:0a:9e:02:77:
78:1b:e5:3e:2b:7c:1a:50:a3:d0:0e:9e:2a:eb:c1:
85:4d:76:7f:a9:70:0d:45:5f:d9:72:6f:55:28:0e:
f7:50:e2:0d:49:aa:c7:cc:f4:12:cb:ac:ef:66:8c:
05:98:cb:55:d3:ea:b9:77:d7:33:e5:bd:81:69:68:
86:be:e1:d6:43:ce:41:f7:62:6b:36:9f:a4:9a:77:
e0:4b:63:80:41:3d:27:ac:b6:c8:71:49:75:8e:5f:
b6:81:cb:32:90:f0:c9:0a:1e:b4:ee:e0:8d:5f:df:
7e:ba:87:84:94:4c:63:8c:40:d4:c1:55:fc:4a:2b:
f0:15:7e:58:b9:ba:6b:43:79:60:7f:95:ac:d5:42:
02:97:f8:c1:68:e8:ee:3f:84:03:07:54:7a:b3:8b:
f7:f0:08:50:d4:b0:5f:b7:42:92:4d:bc:44:b6:39:
1b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:84:DC:7F:C2:C9:CA:42:E3:E2:3E:01:37:82:60:80:AD:29:43:6B
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:83:fc:f2:da:3a:f7:75:c2:bc:0d:0d:5c:af:b7:ee:88:b2:
cf:39:ef:68:98:5c:76:3c:8b:18:44:66:a4:ef:d4:84:3d:a5:
35:c3:26:b2:c2:8b:92:29:e5:b6:73:8b:29:1f:eb:a4:24:81:
ee:eb:8e:cf:11:14:76:a1:70:64:cc:ea:8d:7c:15:af:cb:d7:
12:4e:ab:eb:70:a1:61:cf:9c:40:e5:74:6e:0c:31:e8:9a:1c:
1e:e5:d7:a2:c0:df:b5:81:d3:31:f4:e8:9d:19:62:54:f8:12:
59:3b:7e:5a:e5:1d:43:84:e0:a6:30:8b:3c:e7:7d:1b:d2:bc:
b4:89:cf:29:56:87:61:4f:7d:69:29:fb:61:63:ac:b3:1f:12:
72:25:d2:ac:ad:71:1f:36:9d:38:c3:39:f5:a8:46:3e:94:37:
0e:c4:79:25:91:bb:d8:85:f9:a6:75:fd:35:43:99:4f:92:57:
a5:e5:4f:f9:20:ee:68:87:ff:49:d8:94:cb:6b:b8:49:bd:da:
c2:dd:6c:03:8d:4d:ee:8a:1e:ea:81:89:5e:a9:01:b9:69:b9:
53:d6:a0:9f:7e:75:d5:2b:82:a7:3f:a3:a7:bf:10:0b:57:d4:
5c:05:77:23:be:60:18:fa:0f:63:d6:d9:ef:21:f2:76:ac:99:
15:cb:ff:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQPfQegS3n74mleO+vV7KYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZmY1YjNjZGFmMmVhZDFiYzMzMDk0MTFiZjk0OTJjZDk4
N2FmYmEwHhcNMjUxMTA0MTkwMDI4WhcNMjUxMTA1MTkwMDI4WjAzMTEwLwYDVQQD
EyhiZTg0ZGM3ZmMyYzljYTQyZTNlMjNlMDEzNzgyNjA4MGFkMjk0MzZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPhF2pRtQ2Kx+0cxwEDy+4v6XJvE
uvOQAmr2p31k88cF8MffagqnyUUWbrHPd1Kb1Coj9nvX/X3uhuG8/lBplOT4kcTL
tPXpFUk9QnJwjcWVrXEP+AqeAnd4G+U+K3waUKPQDp4q68GFTXZ/qXANRV/Zcm9V
KA73UOINSarHzPQSy6zvZowFmMtV0+q5d9cz5b2BaWiGvuHWQ85B92JrNp+kmnfg
S2OAQT0nrLbIcUl1jl+2gcsykPDJCh607uCNX99+uoeElExjjEDUwVX8SivwFX5Y
ubprQ3lgf5Ws1UICl/jBaOjuP4QDB1R6s4v38AhQ1LBft0KSTbxEtjkbawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL6E3H/CycpC4+I+ATeCYICtKUNrMB8GA1UdIwQY
MBaAFM3/Wzza8urRvDMJQRv5SSzZh6+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEt
YTg3ODFhZGQyNDIzLzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEtYTg3ODFhZGQyNDIz
LzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn4P88to6
93XCvA0NXK+37oiyzznvaJhcdjyLGERmpO/UhD2lNcMmssKLkinltnOLKR/rpCSB
7uuOzxEUdqFwZMzqjXwVr8vXEk6r63ChYc+cQOV0bgwx6JocHuXXosDftYHTMfTo
nRliVPgSWTt+WuUdQ4TgpjCLPOd9G9K8tInPKVaHYU99aSn7YWOssx8SciXSrK1x
HzadOMM59ahGPpQ3DsR5JZG72IX5pnX9NUOZT5JXpeVP+SDuaIf/SdiUy2u4Sb3a
wt1sA41N7ooe6oGJXqkBuWm5U9agn3511SuCpz+jp78QC1fUXAV3I75gGPoPY9bZ
7yHydqyZFcv/cQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 01:51:07 2025 by rpki-client