Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: pdfwQ4X+U9YtdalcWg+gpL+pTiTL99u/4t+hSpgG9pU=
Subject key identifier: 03:40:E6:E1:1F:81:76:74:83:89:F1:FE:4B:83:55:F5:4F:30:5D:8A
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 019A4C9822515B5F94112737A36B4F944572
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0BC3
Signing time: Tue 04 Nov 2025 02:00:29 +0000
Manifest this update: Tue 04 Nov 2025 02:00:29 +0000
Manifest next update: Wed 05 Nov 2025 02:00:29 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: xadQ8zWmuthInEU7oylox+QARSldpACWu2HmUo4090Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 02:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:98:22:51:5b:5f:94:11:27:37:a3:6b:4f:94:45:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Nov 4 02:00:29 2025 GMT
Not After : Nov 5 02:00:29 2025 GMT
Subject: CN=0340e6e11f8176748389f1fe4b8355f54f305d8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bb:65:a8:ca:13:d2:b4:bd:88:8c:1f:58:69:
65:e1:d5:38:6a:5a:d0:c0:31:f9:24:cc:97:09:a3:
b8:26:48:2b:4d:a0:1b:de:8e:02:7f:ac:37:76:74:
b4:28:a8:cd:4c:29:03:a8:fb:76:60:a7:b6:20:9e:
a8:fe:72:69:78:bc:f6:e6:f9:eb:ef:c7:50:44:a0:
f0:f5:0e:a9:4e:37:9a:0d:0f:99:c3:de:c7:b1:bb:
db:fe:66:9e:c3:33:78:f9:ee:2e:85:eb:8f:10:d8:
bb:ac:61:ea:f5:79:53:1e:91:77:40:fb:52:28:76:
e3:cb:85:e6:3b:3c:e8:0b:f6:80:e1:bd:32:0a:e5:
04:bb:b2:7c:01:23:89:d2:ec:53:dd:e4:68:f8:cc:
e2:7a:f0:31:de:ca:89:89:b1:36:7a:d3:14:37:95:
63:4f:f5:0f:0b:23:34:d4:03:13:6f:43:71:41:51:
8b:06:2e:40:f2:de:9d:05:01:b6:8e:10:3f:23:fa:
aa:6c:65:c4:12:fa:4a:f3:a2:4f:4c:9d:15:71:bc:
5d:10:d9:4d:55:d8:20:3c:62:6c:4f:ff:12:5e:af:
02:b4:b0:95:de:f7:d4:b8:11:ff:09:07:45:d1:ad:
6c:52:5b:45:03:fc:d9:34:99:4f:b8:c5:6c:0b:5b:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:40:E6:E1:1F:81:76:74:83:89:F1:FE:4B:83:55:F5:4F:30:5D:8A
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:42:ed:4a:e2:93:13:80:4b:90:be:d6:15:59:54:60:23:b5:
a3:c8:3c:6d:af:65:c4:0b:de:5b:15:8a:03:33:49:05:86:30:
2f:b8:95:20:cc:2d:21:5e:ef:86:6c:2a:d6:5a:43:04:50:53:
ee:e8:ec:04:1f:57:a0:a9:c2:5b:00:a8:40:9f:3e:33:c2:6a:
ff:05:56:7f:b4:ea:16:99:34:8b:44:be:d5:78:31:70:ee:88:
0d:b7:5f:f4:48:4c:dc:7d:aa:74:2b:6f:06:7c:f7:09:27:06:
28:21:d0:68:d7:32:14:01:42:28:e2:36:b3:69:11:90:ba:63:
98:a8:84:7f:92:93:4b:bd:9e:87:9d:bb:a4:93:38:6d:a7:15:
15:f0:32:ee:74:2e:cf:f2:ce:f7:52:7a:49:c3:91:c6:e1:4a:
02:d7:fb:cd:ba:24:0c:70:b3:e8:2d:bb:92:35:7d:d7:c1:c3:
28:94:d5:70:78:01:b9:dd:84:3f:92:fa:9f:a2:4b:b3:d1:ef:
7b:44:2c:ba:e1:13:74:65:95:29:1e:39:09:67:43:f2:ef:c9:
83:8a:4f:3d:14:7c:c3:aa:72:14:e7:fb:60:14:5f:e4:ea:d0:
50:4a:d2:be:1a:59:69:00:1f:17:db:5a:66:c9:7d:8d:e2:5f:
1c:12:b4:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMmCJRW1+UESc3o2tPlEVyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjMjc1YjIxN2RmMWRlOTg4Y2EyMTkyYTgzYWUxMWRkZjQy
M2E0NGYwHhcNMjUxMTA0MDIwMDI5WhcNMjUxMTA1MDIwMDI5WjAzMTEwLwYDVQQD
EygwMzQwZTZlMTFmODE3Njc0ODM4OWYxZmU0YjgzNTVmNTRmMzA1ZDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg7tlqMoT0rS9iIwfWGll4dU4alrQ
wDH5JMyXCaO4JkgrTaAb3o4Cf6w3dnS0KKjNTCkDqPt2YKe2IJ6o/nJpeLz25vnr
78dQRKDw9Q6pTjeaDQ+Zw97Hsbvb/maewzN4+e4uheuPENi7rGHq9XlTHpF3QPtS
KHbjy4XmOzzoC/aA4b0yCuUEu7J8ASOJ0uxT3eRo+MzievAx3sqJibE2etMUN5Vj
T/UPCyM01AMTb0NxQVGLBi5A8t6dBQG2jhA/I/qqbGXEEvpK86JPTJ0VcbxdENlN
VdggPGJsT/8SXq8CtLCV3vfUuBH/CQdF0a1sUltFA/zZNJlPuMVsC1t8OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFANA5uEfgXZ0g4nx/kuDVfVPMF2KMB8GA1UdIwQY
MBaAFMwnWyF98d6YjKIZKoOuEd30I6RPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81MTI0ZDAtMmIzZi00ZGFiLTg1N2Qt
MmU2MzlmY2E0NjQwLzEvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81MTI0ZDAtMmIzZi00ZGFiLTg1N2QtMmU2MzlmY2E0NjQw
LzEvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkULtSuKT
E4BLkL7WFVlUYCO1o8g8ba9lxAveWxWKAzNJBYYwL7iVIMwtIV7vhmwq1lpDBFBT
7ujsBB9XoKnCWwCoQJ8+M8Jq/wVWf7TqFpk0i0S+1XgxcO6IDbdf9EhM3H2qdCtv
Bnz3CScGKCHQaNcyFAFCKOI2s2kRkLpjmKiEf5KTS72eh527pJM4bacVFfAy7nQu
z/LO91J6ScORxuFKAtf7zbokDHCz6C27kjV918HDKJTVcHgBud2EP5L6n6JLs9Hv
e0QsuuETdGWVKR45CWdD8u/Jg4pPPRR8w6pyFOf7YBRf5OrQUErSvhpZaQAfF9ta
Zsl9jeJfHBK0RA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:10 2025 by rpki-client