Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: DKw2Rq/92jEWftnp+9pBkNJCRT61gmyu7Vnh4xWXYRA=
Subject key identifier: B5:EE:6F:28:A9:B9:0A:DB:DC:6F:DC:12:AB:F4:A0:A7:A9:C1:8D:D3
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019A4DE1A560762875BD0E647B0D4B8080D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0735
Signing time: Tue 04 Nov 2025 08:00:24 +0000
Manifest this update: Tue 04 Nov 2025 08:00:24 +0000
Manifest next update: Wed 05 Nov 2025 08:00:24 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: 2woe1xFf8MDNvYAoGLs2hXtpObYPv9UaH7lwnEgf9yM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:a5:60:76:28:75:bd:0e:64:7b:0d:4b:80:80:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Nov 4 08:00:24 2025 GMT
Not After : Nov 5 08:00:24 2025 GMT
Subject: CN=b5ee6f28a9b90adbdc6fdc12abf4a0a7a9c18dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:92:c2:31:77:fe:0c:d0:d7:08:c1:3d:b1:22:
bd:7b:3e:c3:c4:cc:29:02:18:be:99:d2:bc:c7:4e:
bf:bd:1f:64:2c:f3:84:b0:9a:69:ed:2a:eb:9a:73:
91:61:bc:30:e0:ba:6a:de:2d:3b:b1:10:4e:49:6e:
20:32:34:57:41:a3:3e:33:3c:b9:55:35:13:50:93:
0e:48:18:9a:2a:2b:34:4f:67:7a:b1:23:51:89:ac:
17:49:51:b5:fb:0b:cd:90:2a:5e:33:2f:b3:d3:dc:
1e:08:37:bb:7f:f5:a8:65:f0:bd:bc:b5:33:84:73:
c2:be:32:e7:74:70:f9:77:1c:62:c1:d4:50:d5:1a:
88:54:8b:3b:c2:e5:c4:a7:f3:cb:06:77:48:48:72:
cd:bc:47:0b:04:1c:96:23:12:a7:9e:20:f7:1f:d3:
8e:6a:cb:26:9b:22:b2:f8:12:17:4b:a9:1b:1b:97:
3d:aa:25:b8:63:14:f4:f3:da:f9:20:90:cd:2a:71:
96:de:63:73:99:58:3f:68:95:b8:da:42:61:08:aa:
91:2e:c8:c6:7a:56:a6:f7:32:c2:18:cd:d8:6d:5c:
34:41:a6:f6:57:ac:97:20:e2:65:1a:4a:e3:08:24:
8d:60:58:fd:46:44:b7:3b:dc:0d:65:05:59:8a:8d:
7a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EE:6F:28:A9:B9:0A:DB:DC:6F:DC:12:AB:F4:A0:A7:A9:C1:8D:D3
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6a:a0:43:fc:c7:53:c1:91:14:8a:00:85:3e:86:96:6e:db:
dc:50:58:6c:45:5e:99:44:2b:a2:c9:5e:80:b0:9f:3d:2e:94:
ec:1a:30:c8:99:27:d2:57:c4:c0:30:0d:81:f5:3b:9c:4a:d1:
7c:d6:c7:50:fe:3c:e2:c4:68:80:b2:74:c2:15:21:16:54:ab:
0d:d6:13:b2:73:01:cd:85:a0:df:27:9c:51:48:48:47:8a:1e:
91:69:fa:0e:f3:f6:7b:af:89:0b:ac:03:84:a3:2b:62:95:7b:
5e:c9:2d:f3:8b:fa:d5:ad:a0:62:b7:65:6f:ee:e7:6e:c7:3a:
cf:a9:f6:1b:fa:09:f8:3a:89:0d:8d:a8:42:53:8d:a6:e5:5f:
bf:85:5a:cb:50:46:b4:39:37:7b:6b:ed:52:35:4b:0b:8d:15:
05:d3:94:d2:20:5c:ab:5d:2b:aa:16:ac:e4:97:25:d5:0d:18:
3b:4c:e0:23:1e:8a:f5:bc:21:5b:e3:5b:f2:c2:ca:b2:57:70:
bd:65:cb:e2:3b:29:e8:2d:31:c3:a5:8d:90:67:9a:9a:ab:3e:
98:4e:cd:2f:36:11:0f:97:96:d0:fd:d2:ed:4d:63:ff:01:b8:
ab:18:32:6d:48:24:f0:97:7f:d6:3b:40:ee:e2:de:40:9b:8a:
94:d9:81:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:00:58 2025 by rpki-client