Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: KFsAUk2E+VWODm7o43Z5mGGr9dczYxH+Do3JPAaqzRQ=
Subject key identifier: 69:71:7F:3C:D2:86:0D:AB:D7:52:6E:59:76:EE:94:05:92:71:59:37
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 0198A04D02F95ABE67FFF58BFEA451BC4A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 043A
Signing time: Tue 12 Aug 2025 22:00:58 +0000
Manifest this update: Tue 12 Aug 2025 22:00:58 +0000
Manifest next update: Wed 13 Aug 2025 22:00:58 +0000
Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: a6fRDu2+6eXNwvxrCKk5kCL6Y8X3JvMeyCXWyxz/Bas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:02:f9:5a:be:67:ff:f5:8b:fe:a4:51:bc:4a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Aug 12 22:00:58 2025 GMT
Not After : Aug 13 22:00:58 2025 GMT
Subject: CN=69717f3cd2860dabd7526e5976ee940592715937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:49:a0:a8:d2:53:24:c5:d4:51:68:a8:a4:
fd:66:35:e4:9e:78:af:a4:1d:e2:0e:37:f6:0e:4f:
89:ac:8b:ff:c0:e7:a2:a4:6f:80:c2:3d:fe:4b:93:
26:77:b7:4e:e7:d0:81:3b:91:a3:dd:f0:19:1b:15:
39:d1:1a:19:66:a8:9f:c8:96:9e:5a:65:4d:0c:06:
ed:73:b9:da:0d:f7:ac:a1:95:35:a0:dd:34:30:b0:
dc:85:82:0a:42:56:95:6d:9e:bc:8f:41:c3:c2:77:
10:b2:b7:9f:6f:31:c6:aa:39:27:47:a6:ce:0e:35:
d2:18:4f:d8:55:e3:94:9b:e7:11:2b:a4:cc:6e:92:
7c:3c:9c:e2:60:26:a9:09:82:9d:eb:82:52:f8:67:
b1:c2:24:b4:42:01:26:1f:33:3e:29:c8:a5:80:60:
31:6d:b8:c1:4d:9c:ca:c4:0d:d3:ed:47:23:3f:e7:
e0:fa:c8:c7:fb:1d:54:c8:bf:07:48:f4:a6:86:65:
b3:be:3d:fc:d5:00:f4:37:ef:a2:66:a4:2e:68:c2:
23:c6:3a:f3:3b:39:24:18:d0:e6:02:f9:05:35:aa:
e8:15:62:58:19:cc:b1:93:3b:c3:66:5e:7b:40:91:
34:5c:b4:b6:e6:43:9f:cf:78:b2:ca:0f:18:6d:37:
59:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:71:7F:3C:D2:86:0D:AB:D7:52:6E:59:76:EE:94:05:92:71:59:37
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:29:32:06:88:ec:76:75:45:1b:e7:20:25:73:22:c2:d1:f0:
0b:dd:4b:38:29:62:b5:ce:97:47:8a:77:2f:7d:32:c7:d2:fe:
50:8a:1f:06:9a:eb:29:c4:44:87:58:cb:ad:a8:60:43:b5:c9:
cc:e5:3e:62:52:e4:a5:4b:4d:d8:fe:2c:be:1a:61:4f:b2:b8:
92:c7:f2:36:31:3c:8e:5f:ed:a2:74:66:b6:e4:ec:7d:b3:6c:
7c:53:50:3f:de:c0:bb:23:d3:b6:37:15:3b:77:53:fc:05:d5:
f8:a0:46:e4:42:fb:a2:8c:e2:e0:f4:22:52:39:b9:24:97:e5:
8b:03:1f:cc:de:9b:7e:a9:35:03:fb:a7:62:3a:aa:d8:d9:22:
d4:61:1f:9e:fd:d4:d9:00:f8:ae:7c:eb:ce:b8:c0:03:cc:c9:
e4:fd:a9:4c:4d:03:26:9d:cb:ee:57:f7:b5:9d:5a:3d:1e:16:
81:57:d8:fa:62:e1:4c:4c:3f:49:79:43:10:ab:39:64:49:d3:
62:99:ed:44:05:08:c2:ad:dc:29:e2:25:d8:ab:49:bd:aa:1d:
77:bb:71:10:7f:a4:8d:3c:25:1e:c4:49:f3:56:10:a7:b9:44:
78:4e:49:43:f0:7c:f3:21:8b:b4:3e:73:76:0b:4d:00:06:5d:
bb:81:a6:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigTQL5Wr5n//WL/qRRvEpZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNDBlMjU2MDY2NTFhMDc1NDg0YzcwOWZhNzY2ZDgwZGFk
NTJkOWMwHhcNMjUwODEyMjIwMDU4WhcNMjUwODEzMjIwMDU4WjAzMTEwLwYDVQQD
Eyg2OTcxN2YzY2QyODYwZGFiZDc1MjZlNTk3NmVlOTQwNTkyNzE1OTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutJJoKjSUyTF1FFoqKT9ZjXknniv
pB3iDjf2Dk+JrIv/wOeipG+Awj3+S5Mmd7dO59CBO5Gj3fAZGxU50RoZZqifyJae
WmVNDAbtc7naDfesoZU1oN00MLDchYIKQlaVbZ68j0HDwncQsrefbzHGqjknR6bO
DjXSGE/YVeOUm+cRK6TMbpJ8PJziYCapCYKd64JS+GexwiS0QgEmHzM+KcilgGAx
bbjBTZzKxA3T7UcjP+fg+sjH+x1UyL8HSPSmhmWzvj381QD0N++iZqQuaMIjxjrz
OzkkGNDmAvkFNaroFWJYGcyxkzvDZl57QJE0XLS25kOfz3iyyg8YbTdZ6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGlxfzzShg2r11JuWXbulAWScVk3MB8GA1UdIwQY
MBaAFM9A4lYGZRoHVITHCfp2bYDa1S2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy83ZDVlMWMtOWQ3OS00YjM5LWI1NjAt
ZTk5N2U1NThkNzNhLzEvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy83ZDVlMWMtOWQ3OS00YjM5LWI1NjAtZTk5N2U1NThkNzNh
LzEvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMykyBojs
dnVFG+cgJXMiwtHwC91LOClitc6XR4p3L30yx9L+UIofBprrKcREh1jLrahgQ7XJ
zOU+YlLkpUtN2P4svhphT7K4ksfyNjE8jl/tonRmtuTsfbNsfFNQP97AuyPTtjcV
O3dT/AXV+KBG5EL7oozi4PQiUjm5JJfliwMfzN6bfqk1A/unYjqq2Nki1GEfnv3U
2QD4rnzrzrjAA8zJ5P2pTE0DJp3L7lf3tZ1aPR4WgVfY+mLhTEw/SXlDEKs5ZEnT
YpntRAUIwq3cKeIl2KtJvaodd7txEH+kjTwlHsRJ81YQp7lEeE5JQ/B88yGLtD5z
dgtNAAZdu4GmXA==
-----END CERTIFICATE-----
Generated at Wed Aug 13 05:51:34 2025 by rpki-client