Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: aMIa1dttP2ZSIqgueRk8eGn23XvNZQe8VaVU38ev+k0=
Subject key identifier: F3:BB:A8:CE:FD:F6:1B:5D:DA:C1:7E:0F:32:C1:8D:B4:66:54:F8:36
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 01987ABFB55D3843B99F6FFD2789B3C4968A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 068E
Signing time: Tue 05 Aug 2025 15:00:40 +0000
Manifest this update: Tue 05 Aug 2025 15:00:40 +0000
Manifest next update: Wed 06 Aug 2025 15:00:40 +0000
Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: hGF+S2V+vkjijaSJfH9LqndzrJFfO9mcOU8Zf8ix+QU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:b5:5d:38:43:b9:9f:6f:fd:27:89:b3:c4:96:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Aug 5 15:00:40 2025 GMT
Not After : Aug 6 15:00:40 2025 GMT
Subject: CN=f3bba8cefdf61b5ddac17e0f32c18db46654f836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b0:7a:95:06:e1:2c:52:5d:3a:22:2b:75:10:
1e:24:e5:26:96:fe:f0:a2:42:ba:9a:11:e7:d6:85:
77:0e:79:50:6b:6f:f7:1a:5a:b6:3a:a9:8e:80:26:
fa:86:26:ef:9d:c2:ce:93:d9:cc:71:7e:30:96:93:
09:b1:d3:1f:6b:b3:c5:b8:70:96:8e:1b:61:be:c0:
6a:8d:2f:03:f8:7e:e9:78:73:de:ab:17:dc:fb:42:
60:bc:83:e4:d1:f7:91:aa:15:24:b3:61:6f:89:84:
1d:db:8f:cc:6c:a6:2a:12:07:51:ff:01:31:8d:0e:
e1:4b:f3:3a:98:15:b0:56:2a:8b:13:25:ef:ae:97:
f8:e5:9a:f3:6e:04:1a:f7:f0:24:e5:1f:30:a0:63:
3b:e6:67:9c:a3:e9:16:58:72:31:58:4d:6f:2f:f0:
2b:36:84:79:d3:90:29:39:7f:bc:47:24:ef:c2:3b:
04:cc:c9:c8:a0:90:5b:fd:9d:94:dd:80:df:fd:d0:
c7:e1:c9:c5:17:13:6f:b0:26:12:2f:65:4b:21:a7:
b8:e8:24:00:72:ff:c5:99:2d:ba:b4:a4:d2:b3:51:
d3:c0:8b:87:33:12:57:dc:fd:b1:b0:d9:74:6a:37:
1e:18:6b:4f:66:9f:b1:9c:95:33:ab:ab:13:cf:8d:
1d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:BB:A8:CE:FD:F6:1B:5D:DA:C1:7E:0F:32:C1:8D:B4:66:54:F8:36
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:9a:1d:32:3e:d7:95:57:ed:49:c1:bc:60:39:02:c3:ef:34:
f0:2b:4e:5d:16:39:12:f5:66:c3:fd:2a:17:88:be:41:0a:b9:
6c:9b:51:ea:10:09:04:84:aa:32:54:48:1c:27:2a:74:1e:34:
33:cd:64:6f:9e:13:f0:bc:f5:21:b1:14:4e:e1:48:96:0e:c7:
37:21:cf:22:97:3b:7f:ad:31:ba:79:b9:3e:ed:ee:6a:f7:fc:
27:c5:4b:85:e1:70:46:fe:ba:1b:cc:36:29:6e:12:2d:df:15:
69:a5:bf:37:d8:74:94:05:36:28:b9:1c:31:06:e0:a4:7d:64:
ad:03:51:91:2f:4c:ee:4e:db:55:7a:9e:cd:18:7e:da:e6:c4:
f5:1b:34:e4:c2:6c:96:ac:c3:23:d4:38:08:9c:67:f5:44:64:
8d:19:fd:c2:10:ba:0b:45:6b:7d:f8:29:06:05:df:cd:a4:4f:
be:bc:04:77:74:2e:0d:1a:44:9f:d7:b3:74:75:ba:81:4c:8b:
09:c3:4b:af:f1:d0:ed:f8:ea:96:67:03:15:56:9d:16:b1:50:
da:ad:3d:8c:af:27:69:51:2c:bd:1f:93:ab:88:fa:1c:32:07:
0e:d3:b0:d6:36:6f:f5:d6:a6:de:d1:f2:87:8c:43:d6:50:0c:
bd:a4:05:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6v7VdOEO5n2/9J4mzxJaKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0
NGVjZTcwHhcNMjUwODA1MTUwMDQwWhcNMjUwODA2MTUwMDQwWjAzMTEwLwYDVQQD
EyhmM2JiYThjZWZkZjYxYjVkZGFjMTdlMGYzMmMxOGRiNDY2NTRmODM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLB6lQbhLFJdOiIrdRAeJOUmlv7w
okK6mhHn1oV3DnlQa2/3Glq2OqmOgCb6hibvncLOk9nMcX4wlpMJsdMfa7PFuHCW
jhthvsBqjS8D+H7peHPeqxfc+0JgvIPk0feRqhUks2FviYQd24/MbKYqEgdR/wEx
jQ7hS/M6mBWwViqLEyXvrpf45ZrzbgQa9/Ak5R8woGM75meco+kWWHIxWE1vL/Ar
NoR505ApOX+8RyTvwjsEzMnIoJBb/Z2U3YDf/dDH4cnFFxNvsCYSL2VLIae46CQA
cv/FmS26tKTSs1HTwIuHMxJX3P2xsNl0ajceGGtPZp+xnJUzq6sTz40dUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPO7qM799htd2sF+DzLBjbRmVPg2MB8GA1UdIwQY
MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt
NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz
LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKpodMj7X
lVftScG8YDkCw+808CtOXRY5EvVmw/0qF4i+QQq5bJtR6hAJBISqMlRIHCcqdB40
M81kb54T8Lz1IbEUTuFIlg7HNyHPIpc7f60xunm5Pu3uavf8J8VLheFwRv66G8w2
KW4SLd8VaaW/N9h0lAU2KLkcMQbgpH1krQNRkS9M7k7bVXqezRh+2ubE9Rs05MJs
lqzDI9Q4CJxn9URkjRn9whC6C0VrffgpBgXfzaRPvrwEd3QuDRpEn9ezdHW6gUyL
CcNLr/HQ7fjqlmcDFVadFrFQ2q09jK8naVEsvR+Tq4j6HDIHDtOw1jZv9dam3tHy
h4xD1lAMvaQFyw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 00:48:14 2025 by rpki-client