Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: XovxjVd5YkEAkJ55NaHNOyCsu2YXnQ/itfsjbulfEIw=
Subject key identifier: 43:B5:C9:D4:04:F5:43:0C:44:94:1E:13:B9:9B:D0:F3:32:83:2A:F7
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 0199FDD99C4FE2385F7160AEC9B3924B70FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 12C6
Signing time: Sun 19 Oct 2025 19:02:00 +0000
Manifest this update: Sun 19 Oct 2025 19:02:00 +0000
Manifest next update: Mon 20 Oct 2025 19:02:00 +0000
Files and hashes: 1: 8P_S0IiROCk_5OYQ6mxMJ_E_ykg.roa (hash: hKXKA4mluIkjfh1vqK/elg6N0eojlwBUTy51lDcZmFo=)
2: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: RH+tHZ+Ykv59lMX+SplA+u3AL4Ey3DTKe1v7Ob4niho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:9c:4f:e2:38:5f:71:60:ae:c9:b3:92:4b:70:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: Oct 19 19:02:00 2025 GMT
Not After : Oct 20 19:02:00 2025 GMT
Subject: CN=43b5c9d404f5430c44941e13b99bd0f332832af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3c:5d:ea:34:a6:7a:42:ed:6c:3d:1f:c4:a2:
eb:e6:9d:40:41:1a:3f:92:be:65:cb:09:f4:73:4b:
1b:77:ef:78:d5:7a:7f:f7:ab:8f:85:30:f7:37:a3:
7f:d4:a1:23:6f:b1:fb:3e:34:4e:98:7c:31:68:21:
ea:e0:8b:b1:ea:7d:c5:ef:76:3c:6a:92:3c:72:05:
f1:d5:6b:be:a8:72:4b:90:e4:3f:a8:76:eb:25:4d:
38:95:0e:f1:7c:e5:63:aa:ab:bb:25:ca:c7:a3:44:
41:b0:21:8f:d3:0c:0d:7e:b2:84:d5:48:d5:12:e5:
06:8e:18:36:73:a8:f3:b7:ea:dc:f6:30:83:ad:28:
17:f7:65:a0:0d:68:1e:11:35:f6:25:74:e3:07:e3:
e2:83:72:2a:ac:ac:b6:e3:b1:e0:35:81:e4:47:27:
7b:10:c7:86:de:10:63:86:49:4d:5d:63:98:2a:2e:
13:45:05:25:65:51:c3:7f:ba:63:06:3d:e4:51:78:
45:35:9d:db:77:79:af:a8:ae:3e:69:8a:c2:9a:f5:
d3:e9:3e:56:a7:c7:ce:24:78:8f:cc:30:70:97:82:
f4:8e:83:12:f3:65:99:3c:52:46:f3:49:ca:62:14:
8d:cd:6f:9c:14:62:cc:9d:3e:46:0c:9f:19:3d:3c:
6e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B5:C9:D4:04:F5:43:0C:44:94:1E:13:B9:9B:D0:F3:32:83:2A:F7
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:60:2c:78:1a:08:d3:a3:b5:aa:7c:1b:86:0d:6f:1f:8f:94:
00:c8:4c:0d:ec:89:5d:ef:b2:ea:d6:87:f8:92:dc:39:a6:b6:
19:d6:5a:90:56:b1:1c:ec:4a:3c:cf:62:a5:5f:24:a6:69:5d:
56:7e:05:43:af:40:da:ac:20:d4:5e:1d:66:b7:66:70:4f:5a:
75:e4:f2:32:ba:6e:93:04:c4:ba:ce:85:84:2d:46:1b:ce:c4:
4b:66:ee:c4:20:23:85:33:cf:09:c1:d7:d1:68:04:ac:76:b4:
0d:8d:4c:48:e2:2a:52:3e:86:b9:21:11:28:9e:88:6e:f1:31:
91:2d:5f:fe:c5:bb:11:ad:4a:44:09:2d:5a:fd:f3:e4:df:be:
ba:5f:0d:7a:47:99:cf:92:ba:92:0a:4f:4b:21:23:21:18:21:
ef:8d:f3:8e:70:b2:59:76:93:39:5e:fc:26:16:74:56:80:12:
3c:b8:53:0a:52:26:39:08:32:5f:3b:cf:fe:0b:58:6d:e5:78:
4b:bc:0b:3b:11:18:4f:b9:e2:25:cc:27:cf:69:45:e7:61:1f:
dd:f3:1e:a7:d3:4a:01:02:35:f1:7d:47:0d:71:9e:aa:61:b5:
be:14:81:82:8b:05:b9:9f:17:d7:60:5d:6a:ae:3b:68:e6:29:
12:fa:fd:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92ZxP4jhfcWCuybOSS3D8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2NzI5ZjlkMDc4NmY2OGExZWNkNWM1YTkyYmMzOTJkODY5
MTk3NWUwHhcNMjUxMDE5MTkwMjAwWhcNMjUxMDIwMTkwMjAwWjAzMTEwLwYDVQQD
Eyg0M2I1YzlkNDA0ZjU0MzBjNDQ5NDFlMTNiOTliZDBmMzMyODMyYWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zxd6jSmekLtbD0fxKLr5p1AQRo/
kr5lywn0c0sbd+941Xp/96uPhTD3N6N/1KEjb7H7PjROmHwxaCHq4Iux6n3F73Y8
apI8cgXx1Wu+qHJLkOQ/qHbrJU04lQ7xfOVjqqu7JcrHo0RBsCGP0wwNfrKE1UjV
EuUGjhg2c6jzt+rc9jCDrSgX92WgDWgeETX2JXTjB+Pig3IqrKy247HgNYHkRyd7
EMeG3hBjhklNXWOYKi4TRQUlZVHDf7pjBj3kUXhFNZ3bd3mvqK4+aYrCmvXT6T5W
p8fOJHiPzDBwl4L0joMS82WZPFJG80nKYhSNzW+cFGLMnT5GDJ8ZPTxupQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEO1ydQE9UMMRJQeE7mb0PMygyr3MB8GA1UdIwQY
MBaAFGZyn50HhvaKHs1cWpK8OS2GkZdeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zODRkMDMtZjQ3OS00YmIyLWE4YWQt
YWQ1MTBlMDVkYTkyLzEvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8zODRkMDMtZjQ3OS00YmIyLWE4YWQtYWQ1MTBlMDVkYTky
LzEvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE2AseBoI
06O1qnwbhg1vH4+UAMhMDeyJXe+y6taH+JLcOaa2GdZakFaxHOxKPM9ipV8kpmld
Vn4FQ69A2qwg1F4dZrdmcE9adeTyMrpukwTEus6FhC1GG87ES2buxCAjhTPPCcHX
0WgErHa0DY1MSOIqUj6GuSERKJ6IbvExkS1f/sW7Ea1KRAktWv3z5N++ul8NekeZ
z5K6kgpPSyEjIRgh743zjnCyWXaTOV78JhZ0VoASPLhTClImOQgyXzvP/gtYbeV4
S7wLOxEYT7niJcwnz2lF52Ef3fMep9NKAQI18X1HDXGeqmG1vhSBgosFuZ8X12Bd
aq47aOYpEvr9+g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:36 2025 by rpki-client