Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json)
Hash identifier: J53D4uyEXEP2x/+I8ThuwiiQWF8LSlGgtZdQdL5zO4g=
Subject key identifier: 98:70:D9:C0:BB:79:E5:72:40:25:D0:29:6A:BA:88:6A:2C:81:CA:2F
Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Certificate serial: 019A5119EC4DFD453013473413813670A89F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
Manifest number: D3
Signing time: Tue 04 Nov 2025 23:00:44 +0000
Manifest this update: Tue 04 Nov 2025 23:00:44 +0000
Manifest next update: Wed 05 Nov 2025 23:00:44 +0000
Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: j13X5f0iaiyKenAdLrsrk4W8bc5hH6Z7DN7d+mf3Xdc=)
2: Gc7bIWg_002hRPQXdkZu34Nt1hk.roa (hash: rYe2LH24NobxlRDRXW8nW9SeQn4FShUkG8Kt27Qhtsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 23:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:ec:4d:fd:45:30:13:47:34:13:81:36:70:a8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Validity
Not Before: Nov 4 23:00:44 2025 GMT
Not After : Nov 5 23:00:44 2025 GMT
Subject: CN=9870d9c0bb79e5724025d0296aba886a2c81ca2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a3:74:5b:31:73:94:3f:d0:0f:8b:f9:b6:3b:
7a:34:8d:d7:51:65:6d:85:15:10:fc:37:6a:f6:bf:
18:09:57:ac:62:54:4e:10:6f:b9:b6:c5:9f:f6:3d:
db:32:ce:e0:83:27:45:33:42:d6:e3:e0:54:8d:0d:
fb:4c:c9:77:50:4f:bb:95:c8:69:61:18:f5:70:f5:
d9:3a:d1:c2:fb:2f:04:5f:12:7c:67:0c:9b:6b:9b:
3a:b0:70:92:e0:3a:ad:41:50:a3:d3:67:a2:e4:b4:
82:d2:d1:0f:ed:3b:e1:86:36:07:50:cb:71:c4:49:
3a:04:86:b4:2a:cf:b8:de:33:8f:45:37:b5:dd:df:
85:67:c1:5c:7a:80:d4:3a:cf:bb:92:fa:8a:b1:2c:
ab:8b:11:63:dd:a6:d1:24:80:94:8a:23:c0:b0:f8:
08:0e:cb:1c:72:91:3b:ac:66:f7:ef:54:2a:ba:4a:
33:47:d7:7d:da:6c:34:31:75:dc:ff:75:e3:83:8b:
ac:a4:f7:10:91:35:3d:5b:ca:2b:1c:03:cd:3a:1e:
2b:02:ce:de:ca:e9:f4:29:f0:52:5b:8c:d1:17:91:
24:9d:81:d6:01:ec:48:17:36:f0:b7:01:56:f4:fb:
84:42:fe:5e:e8:22:67:fc:77:c5:ad:ef:4d:8b:90:
6a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:70:D9:C0:BB:79:E5:72:40:25:D0:29:6A:BA:88:6A:2C:81:CA:2F
X509v3 Authority Key Identifier:
keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:a3:a0:a0:70:66:5a:cc:ba:88:43:b2:e1:fe:27:99:41:b9:
e2:cb:9d:69:2e:56:5f:e3:87:1f:95:f2:80:41:0b:56:bb:73:
99:c7:09:bb:2d:15:cf:e6:65:a8:38:6d:39:fa:96:4d:76:ac:
e6:1b:81:ea:ab:89:ce:bc:88:70:16:9f:95:83:e1:ad:4a:4d:
21:58:21:b8:d8:e5:e0:f2:b4:57:d8:38:d8:97:1f:b4:cb:f2:
94:17:d6:60:9d:53:c5:5e:01:b0:ca:b3:80:2f:56:ce:f7:44:
75:9a:cb:c9:c6:d6:c9:17:90:d2:fe:a7:b6:3b:dc:7c:fe:88:
39:42:5c:c2:d8:dc:6c:d1:42:64:2a:88:c9:c2:c9:e4:32:48:
70:3e:fb:78:2a:2c:05:88:ce:06:f7:75:8c:ef:98:3c:b8:0b:
f6:b4:51:64:ca:6c:3f:ef:f1:77:68:a5:a5:29:5c:c1:28:e1:
df:ba:d2:28:0e:d4:d8:2f:a6:19:a0:63:4e:63:fd:f1:97:e5:
2d:f3:34:06:49:33:5e:dc:f1:fb:54:12:58:e9:56:7c:db:cd:
ec:ff:32:00:7e:91:bc:8e:4f:e6:4f:af:e5:f6:b8:54:1f:9a:
85:c7:4e:7a:14:c4:e0:62:a3:1a:04:7f:3b:4a:12:54:52:a6:
57:7f:00:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRGexN/UUwE0c0E4E2cKifMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzVlZDY2YWMwMWQ3OTE3NWNlNGQ3OGY2NzJhMWZlNDcy
MDM3ODAwHhcNMjUxMTA0MjMwMDQ0WhcNMjUxMTA1MjMwMDQ0WjAzMTEwLwYDVQQD
Eyg5ODcwZDljMGJiNzllNTcyNDAyNWQwMjk2YWJhODg2YTJjODFjYTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqN0WzFzlD/QD4v5tjt6NI3XUWVt
hRUQ/Ddq9r8YCVesYlROEG+5tsWf9j3bMs7ggydFM0LW4+BUjQ37TMl3UE+7lchp
YRj1cPXZOtHC+y8EXxJ8Zwyba5s6sHCS4DqtQVCj02ei5LSC0tEP7TvhhjYHUMtx
xEk6BIa0Ks+43jOPRTe13d+FZ8FceoDUOs+7kvqKsSyrixFj3abRJICUiiPAsPgI
DssccpE7rGb371QqukozR9d92mw0MXXc/3Xjg4uspPcQkTU9W8orHAPNOh4rAs7e
yun0KfBSW4zRF5EknYHWAexIFzbwtwFW9PuEQv5e6CJn/HfFre9Ni5BqXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhw2cC7eeVyQCXQKWq6iGosgcovMB8GA1UdIwQY
MBaAFPM17WasAdeRdc5NePZyof5HIDeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEt
NTBhY2JhZWVjN2NhLzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEtNTBhY2JhZWVjN2Nh
LzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnKOgoHBm
Wsy6iEOy4f4nmUG54sudaS5WX+OHH5XygEELVrtzmccJuy0Vz+ZlqDhtOfqWTXas
5huB6quJzryIcBaflYPhrUpNIVghuNjl4PK0V9g42JcftMvylBfWYJ1TxV4BsMqz
gC9WzvdEdZrLycbWyReQ0v6ntjvcfP6IOUJcwtjcbNFCZCqIycLJ5DJIcD77eCos
BYjOBvd1jO+YPLgL9rRRZMpsP+/xd2ilpSlcwSjh37rSKA7U2C+mGaBjTmP98Zfl
LfM0BkkzXtzx+1QSWOlWfNvN7P8yAH6RvI5P5k+v5fa4VB+ahcdOehTE4GKjGgR/
O0oSVFKmV38Ayw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:24:39 2025 by rpki-client