Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: 7WBQBvS6fX7UydSpLT8qtJEWL6vP/hiEm1LE4UTa+Dw=
Subject key identifier: 15:CC:36:72:3F:5B:8B:41:D7:F6:0E:3D:AA:AA:F0:07:A7:5D:23:16
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 019A4E18A6936FC304EFE00B04FFFA87AD48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 0780
Signing time: Tue 04 Nov 2025 09:00:29 +0000
Manifest this update: Tue 04 Nov 2025 09:00:29 +0000
Manifest next update: Wed 05 Nov 2025 09:00:29 +0000
Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: KEZUTavs0KxgA4A8tqMpuKFMRAt2jT3xewQxWrK0LkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:a6:93:6f:c3:04:ef:e0:0b:04:ff:fa:87:ad:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Nov 4 09:00:29 2025 GMT
Not After : Nov 5 09:00:29 2025 GMT
Subject: CN=15cc36723f5b8b41d7f60e3daaaaf007a75d2316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0c:6a:6b:dd:1b:83:35:4e:9b:8d:59:c1:68:
45:0a:4e:0b:c3:96:b9:15:b8:fe:37:36:00:6e:12:
0c:ac:15:b2:ff:a2:4c:c9:0e:b4:6c:71:9a:4a:71:
be:53:57:61:91:30:ae:52:f6:35:a6:4d:aa:f8:43:
8d:fd:07:33:c0:89:9c:a7:1b:33:e0:d9:da:8b:4b:
e8:bd:27:58:49:73:7d:28:f0:60:6a:4c:22:5a:a3:
cc:ce:2a:ce:31:79:49:b4:4d:4a:5f:56:61:6f:cf:
4c:05:f7:94:a6:02:45:0c:40:f0:0a:58:e3:00:cf:
1c:95:de:5f:dc:dc:4f:29:14:6f:4e:d7:33:5e:bf:
1d:e4:67:3d:ad:43:ec:cd:ba:07:e4:77:ad:ee:56:
e9:6a:bb:45:1e:a1:4f:fd:d3:f2:f5:ff:f5:3b:bc:
19:13:74:15:b8:c4:81:75:67:d9:a2:a3:4c:74:a9:
2e:82:5a:36:71:4e:b9:33:3e:97:74:0b:40:e9:f5:
7e:96:d7:ad:29:2e:05:8d:e4:99:17:dc:a9:a7:a6:
43:5d:84:46:1f:48:b3:75:ea:a5:30:9c:1d:88:b1:
1e:99:97:e2:20:4c:10:31:0f:ec:42:0d:4f:18:0e:
32:d5:72:ce:4b:4e:9b:bf:b0:44:51:96:59:e9:a3:
21:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:CC:36:72:3F:5B:8B:41:D7:F6:0E:3D:AA:AA:F0:07:A7:5D:23:16
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:3b:af:99:d2:ce:e4:97:e1:e7:43:4e:73:ce:8b:47:64:fb:
05:03:9a:b2:32:95:62:48:25:ec:4b:e6:3a:f2:65:ab:22:28:
3b:f1:b5:bb:72:1c:d2:a2:47:30:57:7c:b4:3b:a1:2f:06:66:
ac:ed:a9:fe:34:7c:4a:02:14:d3:db:64:14:a4:6a:83:2c:02:
0c:09:cc:5f:1e:23:2b:40:6b:22:e8:4b:f4:24:9b:2e:9c:3b:
a1:c3:1d:f9:51:ed:db:00:ab:79:ae:31:36:2b:48:6c:aa:7f:
a5:d8:ad:f6:b9:a7:16:d2:f5:7c:11:aa:c4:11:d9:89:1a:f4:
6c:d8:43:69:3f:82:ad:a9:bf:be:60:15:d4:30:e7:da:79:cc:
2d:24:0a:9f:38:fb:8f:40:3f:18:dc:7e:2a:41:3a:3a:ee:95:
7f:be:73:5d:e8:bd:21:1a:4e:4e:af:34:93:c2:02:48:03:e1:
81:8b:17:42:0f:6b:c0:ea:4b:65:f4:35:70:9f:a2:f6:ee:aa:
46:c8:07:96:0a:fa:22:98:f0:23:10:7e:b0:1c:f1:1c:11:98:
3b:26:27:59:58:7c:38:bc:c9:da:01:e3:c4:60:55:3c:9f:85:
39:5d:bb:e1:97:ac:a9:21:76:14:ca:ba:c1:74:e8:1c:5c:53:
fe:94:c6:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGKaTb8ME7+ALBP/6h61IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0
NGVjZTcwHhcNMjUxMTA0MDkwMDI5WhcNMjUxMTA1MDkwMDI5WjAzMTEwLwYDVQQD
EygxNWNjMzY3MjNmNWI4YjQxZDdmNjBlM2RhYWFhZjAwN2E3NWQyMzE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAxqa90bgzVOm41ZwWhFCk4Lw5a5
Fbj+NzYAbhIMrBWy/6JMyQ60bHGaSnG+U1dhkTCuUvY1pk2q+EON/QczwImcpxsz
4Nnai0vovSdYSXN9KPBgakwiWqPMzirOMXlJtE1KX1Zhb89MBfeUpgJFDEDwCljj
AM8cld5f3NxPKRRvTtczXr8d5Gc9rUPszboH5Het7lbpartFHqFP/dPy9f/1O7wZ
E3QVuMSBdWfZoqNMdKkuglo2cU65Mz6XdAtA6fV+ltetKS4FjeSZF9ypp6ZDXYRG
H0izdeqlMJwdiLEemZfiIEwQMQ/sQg1PGA4y1XLOS06bv7BEUZZZ6aMhAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBXMNnI/W4tB1/YOPaqq8AenXSMWMB8GA1UdIwQY
MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt
NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz
LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfjuvmdLO
5Jfh50NOc86LR2T7BQOasjKVYkgl7EvmOvJlqyIoO/G1u3Ic0qJHMFd8tDuhLwZm
rO2p/jR8SgIU09tkFKRqgywCDAnMXx4jK0BrIuhL9CSbLpw7ocMd+VHt2wCrea4x
NitIbKp/pdit9rmnFtL1fBGqxBHZiRr0bNhDaT+Cram/vmAV1DDn2nnMLSQKnzj7
j0A/GNx+KkE6Ou6Vf75zXei9IRpOTq80k8ICSAPhgYsXQg9rwOpLZfQ1cJ+i9u6q
RsgHlgr6IpjwIxB+sBzxHBGYOyYnWVh8OLzJ2gHjxGBVPJ+FOV274ZesqSF2FMq6
wXToHFxT/pTGTQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:09 2025 by rpki-client