Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: L9q5h5KI6oLGhzapm1x7NYOg3JEbYgx9UK9peOik1h4=
Subject key identifier: AB:DB:04:39:89:46:E8:5F:A8:1D:C6:86:00:F7:CB:3E:97:66:21:A0
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019A4EF4760602A7A8AB7C783EFC268F425A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1580
Signing time: Tue 04 Nov 2025 13:00:35 +0000
Manifest this update: Tue 04 Nov 2025 13:00:35 +0000
Manifest next update: Wed 05 Nov 2025 13:00:35 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: y3sqJ+4sqk7roueTef4H0WnK1td2ZQM3TUm+Rq+jdaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:76:06:02:a7:a8:ab:7c:78:3e:fc:26:8f:42:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Nov 4 13:00:35 2025 GMT
Not After : Nov 5 13:00:35 2025 GMT
Subject: CN=abdb04398946e85fa81dc68600f7cb3e976621a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6c:46:b6:d0:dc:7b:44:53:91:59:48:dc:56:
99:df:7b:4d:2e:83:bf:7c:85:86:a3:05:c3:d0:8d:
68:99:58:c1:e2:ce:c7:59:aa:22:1d:46:6b:58:b4:
8b:cc:db:89:d2:68:8c:4f:59:7e:5d:08:5a:c0:80:
bc:ff:2b:30:c6:23:11:ab:2f:6f:1e:9a:8e:db:5a:
42:60:4d:da:17:b7:79:81:52:a6:9e:b3:9b:75:8c:
26:7c:dc:19:8f:61:45:76:12:4d:6b:cd:5c:40:7f:
94:32:20:c9:1c:47:07:7f:2b:d8:dd:21:1a:e3:2b:
a6:d9:8a:c6:23:73:ac:1e:51:79:a5:a6:e2:4b:48:
6c:3d:0a:86:46:aa:d3:ed:a0:38:81:da:3c:a0:02:
26:c9:2a:a2:4b:7a:74:ac:c4:36:82:75:99:17:b4:
04:2e:7d:c0:59:b0:d8:42:2a:69:7c:58:48:f3:6e:
f4:da:6a:74:0a:67:e0:ff:57:bd:14:5f:9f:36:c7:
56:09:1e:3e:7f:41:fc:b0:1e:27:40:5e:13:c7:b6:
33:cb:bf:7f:d2:67:ae:12:54:1f:d5:dc:1c:e4:29:
06:dd:f9:fc:e1:0c:97:cc:a0:fb:dd:d2:1e:cc:95:
66:09:71:89:33:72:01:e3:51:8f:a1:ae:3e:4b:01:
1d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DB:04:39:89:46:E8:5F:A8:1D:C6:86:00:F7:CB:3E:97:66:21:A0
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:86:53:18:f7:a6:56:ea:12:2c:10:96:a0:6a:10:e6:b1:08:
7f:be:c0:58:34:ad:97:21:bb:83:8c:77:58:2c:80:07:6b:0c:
00:7b:3c:9a:a0:44:bf:db:de:8d:64:87:b0:36:b4:57:d1:42:
af:82:56:d2:8d:92:8e:40:47:5e:9a:8e:12:d2:ec:78:7c:58:
80:aa:ba:a8:8d:b0:be:36:00:12:6e:83:d6:4f:07:19:0d:72:
70:d6:b0:f7:6d:65:82:b2:b4:6e:20:98:58:4e:21:c7:1f:fc:
a9:ee:4d:9f:4a:5b:ea:20:f7:a3:32:1f:d0:ef:cf:e3:68:a5:
e8:c5:4b:0f:31:9e:f7:d1:1a:3a:79:e8:8b:d8:e6:e4:47:fa:
ed:d5:f5:fd:71:ae:4b:21:f4:97:29:60:52:9c:d6:35:a2:4d:
86:f0:76:6a:fb:fc:84:76:3b:e5:d8:f8:e2:77:5e:c4:d6:5a:
aa:5c:97:6a:dc:99:1e:84:ca:f2:16:c6:99:ef:17:59:b8:d4:
c3:6f:80:36:b4:46:98:8c:f3:bf:7b:e2:aa:23:f8:5b:d4:cc:
7b:8a:33:78:15:9e:a4:fe:08:fe:dc:bd:5d:cc:7d:f9:6a:c9:
5d:9b:58:b9:8b:4d:d5:e3:71:bb:25:db:5a:3a:29:9f:74:fe:
7f:bb:09:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9HYGAqeoq3x4Pvwmj0JaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl
MjIwZTEwHhcNMjUxMTA0MTMwMDM1WhcNMjUxMTA1MTMwMDM1WjAzMTEwLwYDVQQD
EyhhYmRiMDQzOTg5NDZlODVmYTgxZGM2ODYwMGY3Y2IzZTk3NjYyMWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmxGttDce0RTkVlI3FaZ33tNLoO/
fIWGowXD0I1omVjB4s7HWaoiHUZrWLSLzNuJ0miMT1l+XQhawIC8/yswxiMRqy9v
HpqO21pCYE3aF7d5gVKmnrObdYwmfNwZj2FFdhJNa81cQH+UMiDJHEcHfyvY3SEa
4yum2YrGI3OsHlF5pabiS0hsPQqGRqrT7aA4gdo8oAImySqiS3p0rMQ2gnWZF7QE
Ln3AWbDYQippfFhI82702mp0Cmfg/1e9FF+fNsdWCR4+f0H8sB4nQF4Tx7Yzy79/
0meuElQf1dwc5CkG3fn84QyXzKD73dIezJVmCXGJM3IB41GPoa4+SwEdDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKvbBDmJRuhfqB3GhgD3yz6XZiGgMB8GA1UdIwQY
MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt
MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl
LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVIZTGPem
VuoSLBCWoGoQ5rEIf77AWDStlyG7g4x3WCyAB2sMAHs8mqBEv9vejWSHsDa0V9FC
r4JW0o2SjkBHXpqOEtLseHxYgKq6qI2wvjYAEm6D1k8HGQ1ycNaw921lgrK0biCY
WE4hxx/8qe5Nn0pb6iD3ozIf0O/P42il6MVLDzGe99EaOnnoi9jm5Ef67dX1/XGu
SyH0lylgUpzWNaJNhvB2avv8hHY75dj44ndexNZaqlyXatyZHoTK8hbGme8XWbjU
w2+ANrRGmIzzv3viqiP4W9TMe4ozeBWepP4I/ty9Xcx9+WrJXZtYuYtN1eNxuyXb
Wjopn3T+f7sJSw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:55:30 2025 by rpki-client