Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: 9a9eavriEEbrTgvnZrsu7Uep/2rIHuKqMbpRaIOT6fA=
Subject key identifier: C1:4C:DB:25:7F:C2:49:EF:14:B5:B7:EA:4B:7E:F6:32:97:1E:77:80
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 019A4DE1AF7A8B13C3D7C0325D7778850FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 08:00:27 +0000
Manifest this update: Tue 04 Nov 2025 08:00:27 +0000
Manifest next update: Wed 05 Nov 2025 08:00:27 +0000
Files and hashes: 1: KWbEbWMWx8GsR8Asb1Hi7iVj3A8.roa (hash: w7QiyqZy99cacAStF09i7GMZP3QKH24tEZwntPEoeMs=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: HkJl138NKQuL4wbxss/ksveDYjNvEBySSXVjEoRwaDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:af:7a:8b:13:c3:d7:c0:32:5d:77:78:85:0f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Nov 4 08:00:27 2025 GMT
Not After : Nov 5 08:00:27 2025 GMT
Subject: CN=c14cdb257fc249ef14b5b7ea4b7ef632971e7780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:49:82:65:7c:61:f8:c0:39:55:be:9e:33:9a:
27:6d:fd:5c:7f:be:ab:0d:ba:7c:bd:15:05:55:07:
7e:ad:7c:dd:05:3f:2a:7f:ac:0f:8f:47:f0:03:21:
2a:58:6c:fe:13:f8:93:2d:4a:9f:9f:47:da:16:80:
35:ad:7d:6a:14:2b:33:08:45:f4:3c:8f:a3:b0:de:
b7:20:06:03:30:f2:09:8f:6d:fd:be:ec:d0:4c:fc:
e9:54:de:1d:73:6c:36:1c:6c:60:52:40:57:56:53:
73:07:48:c8:0e:fa:af:71:df:26:33:c9:02:d4:12:
3d:12:9f:95:ee:b5:61:4e:0b:e5:33:25:fe:30:0e:
2b:02:56:04:0a:84:55:09:a9:34:d8:75:28:59:99:
48:2a:f9:46:3e:f7:fc:85:5b:6b:a1:40:6f:a6:af:
36:42:11:32:83:2f:73:c9:0b:4a:a5:d5:98:f2:b3:
a8:e0:cb:f7:54:89:72:61:e5:4c:51:39:e6:44:f4:
38:8e:34:81:59:4c:a9:57:94:24:ff:30:e0:c2:65:
c3:6a:bf:1b:a1:2c:80:9b:e1:de:13:bf:d3:06:c5:
c7:5b:8d:37:74:ba:13:02:f6:c0:b0:5f:43:da:24:
c2:15:5e:4f:cb:48:ba:04:40:fe:a5:44:ce:06:77:
bc:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4C:DB:25:7F:C2:49:EF:14:B5:B7:EA:4B:7E:F6:32:97:1E:77:80
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b5:41:8d:ae:77:c5:9c:99:06:40:7f:f6:b1:a4:25:1f:d7:
5b:cc:65:e6:57:2d:3e:21:9c:11:1d:2e:cc:96:27:99:46:3e:
dd:64:13:34:34:e5:b6:bf:a7:69:34:a0:09:a4:d6:8c:15:78:
6d:e2:45:ad:60:c7:2f:5e:a0:58:8d:bd:dd:24:93:23:78:d9:
31:80:20:e2:bd:5e:51:bb:f2:58:55:76:b9:86:82:4a:3d:07:
2a:aa:55:fa:df:2e:fe:e1:a6:03:81:b4:53:4d:c5:c7:d5:8e:
17:64:b5:83:ed:8b:ce:8b:a3:a7:97:5f:24:45:4b:a1:71:1f:
0f:21:8a:c9:15:9d:ab:d5:ce:b2:21:e6:9f:c9:16:e7:d9:e3:
2f:5c:10:32:3c:0b:64:b7:cc:4c:90:df:28:02:7f:2d:ab:e0:
35:2b:5c:b2:48:0c:b2:f5:11:d7:d4:48:59:20:8e:8f:d2:60:
fd:c6:ab:91:34:5a:65:a7:91:69:6f:23:2b:0d:bb:62:b4:de:
34:0e:19:b8:44:d0:bd:77:93:38:ce:d4:34:6e:cc:b8:4b:d5:
9c:99:86:88:f8:1c:6d:9c:c9:b3:ce:93:63:80:80:6e:68:e3:
f5:4a:49:28:18:d0:ba:9a:03:e5:e7:9f:ea:63:5b:3b:1f:76:
e9:63:a5:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4a96ixPD18AyXXd4hQ+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1YWI0ODVhZjkyM2QxYjQ2YzVhMzIxZmM3YTNmODU2YzA0
ZmI2ZmMwHhcNMjUxMTA0MDgwMDI3WhcNMjUxMTA1MDgwMDI3WjAzMTEwLwYDVQQD
EyhjMTRjZGIyNTdmYzI0OWVmMTRiNWI3ZWE0YjdlZjYzMjk3MWU3NzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5UmCZXxh+MA5Vb6eM5onbf1cf76r
Dbp8vRUFVQd+rXzdBT8qf6wPj0fwAyEqWGz+E/iTLUqfn0faFoA1rX1qFCszCEX0
PI+jsN63IAYDMPIJj239vuzQTPzpVN4dc2w2HGxgUkBXVlNzB0jIDvqvcd8mM8kC
1BI9Ep+V7rVhTgvlMyX+MA4rAlYECoRVCak02HUoWZlIKvlGPvf8hVtroUBvpq82
QhEygy9zyQtKpdWY8rOo4Mv3VIlyYeVMUTnmRPQ4jjSBWUypV5Qk/zDgwmXDar8b
oSyAm+HeE7/TBsXHW403dLoTAvbAsF9D2iTCFV5Py0i6BED+pUTOBne8yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFM2yV/wknvFLW36kt+9jKXHneAMB8GA1UdIwQY
MBaAFGWrSFr5I9G0bFoyH8ej+FbAT7b8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmF0SVd2a2owYlJzV2pJZng2UDRWc0JQdHZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8xNjRkOGQtNDFhYy00NTIyLWJiMjUt
ODk4NjM0OTQyMjg1LzEvWmF0SVd2a2owYlJzV2pJZng2UDRWc0JQdHZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8xNjRkOGQtNDFhYy00NTIyLWJiMjUtODk4NjM0OTQyMjg1
LzEvWmF0SVd2a2owYlJzV2pJZng2UDRWc0JQdHZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYrVBja53
xZyZBkB/9rGkJR/XW8xl5lctPiGcER0uzJYnmUY+3WQTNDTltr+naTSgCaTWjBV4
beJFrWDHL16gWI293SSTI3jZMYAg4r1eUbvyWFV2uYaCSj0HKqpV+t8u/uGmA4G0
U03Fx9WOF2S1g+2Lzoujp5dfJEVLoXEfDyGKyRWdq9XOsiHmn8kW59njL1wQMjwL
ZLfMTJDfKAJ/LavgNStcskgMsvUR19RIWSCOj9Jg/carkTRaZaeRaW8jKw27YrTe
NA4ZuETQvXeTOM7UNG7MuEvVnJmGiPgcbZzJs86TY4CAbmjj9UpJKBjQupoD5eef
6mNbOx926WOluQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:02 2025 by rpki-client