Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
File: ZhPZyFZESnCW46hQjK4wf968DNQ.mft (raw, json)
Hash identifier: oBAVBKu0SyGEFlztrxTeKFexVMwE7Zb//8toKliiS2Y=
Subject key identifier: 20:2F:E3:82:5E:66:89:9B:5D:52:AF:FA:A5:19:80:EC:21:97:9E:32
Authority key identifier: 66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
Certificate issuer: /CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Certificate serial: 019A4EF4F99A98B28BE47C7974099156C33F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 13:01:08 +0000
Manifest this update: Tue 04 Nov 2025 13:01:08 +0000
Manifest next update: Wed 05 Nov 2025 13:01:08 +0000
Files and hashes: 1: 4D_rZ45BYofG_PKX7NdD5oQoUdM.roa (hash: 8wujCBX6hI1Ut+YVGttUi2MlgiyCoDf/nLWfLC5wQhA=)
2: ZhPZyFZESnCW46hQjK4wf968DNQ.crl (hash: MsxEoLMOd7cPWwwMegvlLDHhcz4eoRVVlRkS6EUGP78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:f9:9a:98:b2:8b:e4:7c:79:74:09:91:56:c3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Validity
Not Before: Nov 4 13:01:08 2025 GMT
Not After : Nov 5 13:01:08 2025 GMT
Subject: CN=202fe3825e66899b5d52affaa51980ec21979e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fc:da:5d:f0:1f:81:93:6b:d4:48:b7:b2:c7:
7b:98:5e:5c:90:29:2d:71:44:4c:ee:22:4e:41:c0:
b0:52:f2:84:24:4b:1c:d6:c3:02:27:ba:c6:82:97:
8f:b8:67:d1:57:cc:4e:d9:3b:b5:3a:a6:bb:e5:78:
5d:67:48:2b:b0:92:cb:c7:af:25:97:2f:18:51:d9:
cc:33:89:2d:b8:7c:c0:3d:3b:05:a0:94:07:c8:03:
86:f7:f2:02:0b:95:13:7d:5c:f0:78:88:d0:7f:7e:
9a:9c:b0:51:97:66:5b:df:3e:2d:26:c4:7c:91:c6:
f6:d2:7c:5e:0b:16:59:1f:df:64:b7:82:7e:4e:e3:
43:19:97:ac:13:d1:64:97:38:9d:09:ff:fa:8e:0f:
b0:91:eb:b1:02:44:aa:cb:ce:57:52:28:45:03:b0:
5b:4f:f5:7d:92:0d:74:07:d1:ba:5e:34:b1:37:90:
e8:10:7e:25:2b:3e:50:1d:95:b9:71:c3:69:15:3e:
6b:c1:1e:7a:bd:20:a8:6b:d4:5c:ae:6e:ac:5d:a2:
d6:dd:2d:86:20:74:11:86:23:cd:ba:30:c3:ba:52:
ec:1d:0c:d3:bd:fa:ea:25:00:90:d2:3c:0e:70:b1:
73:19:fc:77:15:12:e8:6c:99:cd:b9:bc:cb:bb:ab:
b8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2F:E3:82:5E:66:89:9B:5D:52:AF:FA:A5:19:80:EC:21:97:9E:32
X509v3 Authority Key Identifier:
keyid:66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f5:9b:f4:8b:bb:a8:f0:18:3f:d8:ff:4c:aa:06:67:ea:3f:
a9:b2:8b:78:cc:93:03:f8:1e:db:2a:df:55:78:6a:6f:d2:18:
83:39:fb:f0:e1:c2:c5:df:69:4e:23:58:f3:b8:bd:19:6f:36:
b2:ba:97:bd:cd:53:60:b0:0f:4f:45:56:d2:dc:40:98:a8:88:
f5:84:dc:06:c5:cb:c4:89:af:c4:f0:95:96:1e:ac:b0:c1:7c:
1d:e5:ca:50:44:63:cb:36:7c:ba:34:47:26:08:b9:64:ee:4b:
e8:c6:cc:e4:43:73:b9:0a:1c:8d:f4:86:f3:12:29:6b:95:f6:
5b:7d:ae:0d:b4:c0:07:77:27:89:3c:2b:76:e1:19:45:08:2c:
00:bf:7f:37:ff:fe:22:73:76:b0:d8:cb:ae:89:37:a0:ae:1f:
eb:5f:81:05:53:5f:8f:10:c2:e3:aa:a9:17:51:e7:ec:31:e9:
50:92:b8:a8:a3:51:53:2b:d5:ec:e4:fe:a1:d5:61:72:cb:10:
6c:ae:f9:e4:c9:22:df:a3:69:8d:38:22:d7:7e:25:ba:e9:c9:
ba:5d:d9:88:2a:58:08:7a:c0:1c:7e:f2:3c:b4:b3:1a:c5:39:
59:71:e8:f8:0a:ce:05:e8:cf:91:ce:51:d6:bd:a6:c8:15:62:
8d:f8:7b:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9PmamLKL5Hx5dAmRVsM/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTNkOWM4NTY0NDRhNzA5NmUzYTg1MDhjYWUzMDdmZGVi
YzBjZDQwHhcNMjUxMTA0MTMwMTA4WhcNMjUxMTA1MTMwMTA4WjAzMTEwLwYDVQQD
EygyMDJmZTM4MjVlNjY4OTliNWQ1MmFmZmFhNTE5ODBlYzIxOTc5ZTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPzaXfAfgZNr1Ei3ssd7mF5ckCkt
cURM7iJOQcCwUvKEJEsc1sMCJ7rGgpePuGfRV8xO2Tu1Oqa75XhdZ0grsJLLx68l
ly8YUdnMM4ktuHzAPTsFoJQHyAOG9/ICC5UTfVzweIjQf36anLBRl2Zb3z4tJsR8
kcb20nxeCxZZH99kt4J+TuNDGZesE9FklzidCf/6jg+wkeuxAkSqy85XUihFA7Bb
T/V9kg10B9G6XjSxN5DoEH4lKz5QHZW5ccNpFT5rwR56vSCoa9Rcrm6sXaLW3S2G
IHQRhiPNujDDulLsHQzTvfrqJQCQ0jwOcLFzGfx3FRLobJnNubzLu6u4fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCAv44JeZombXVKv+qUZgOwhl54yMB8GA1UdIwQY
MBaAFGYT2chWREpwluOoUIyuMH/evAzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUt
N2QwNWY5ODg4ZTk4LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUtN2QwNWY5ODg4ZTk4
LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/Wb9Iu7
qPAYP9j/TKoGZ+o/qbKLeMyTA/ge2yrfVXhqb9IYgzn78OHCxd9pTiNY87i9GW82
srqXvc1TYLAPT0VW0txAmKiI9YTcBsXLxImvxPCVlh6ssMF8HeXKUERjyzZ8ujRH
Jgi5ZO5L6MbM5ENzuQocjfSG8xIpa5X2W32uDbTAB3cniTwrduEZRQgsAL9/N//+
InN2sNjLrok3oK4f61+BBVNfjxDC46qpF1Hn7DHpUJK4qKNRUyvV7OT+odVhcssQ
bK755Mki36NpjTgi134luunJul3ZiCpYCHrAHH7yPLSzGsU5WXHo+ArOBejPkc5R
1r2myBVijfh7Ow==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:09:10 2025 by rpki-client