Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: j2e4lZhuJufxQZ0NOhuQ1KSkqIJevEyEjJ3hyEdsMZg=
Subject key identifier: A4:D5:73:C0:C8:4A:5D:89:F7:BC:F1:E7:36:9A:98:12:2E:39:7F:58
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 0199FBEA93B741478B13343548C4A1E64FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0852
Signing time: Sun 19 Oct 2025 10:01:18 +0000
Manifest this update: Sun 19 Oct 2025 10:01:18 +0000
Manifest next update: Mon 20 Oct 2025 10:01:18 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: 8CDRVouJhtjPgZLRmLaI/fdUNQYJLU4NdraJ6jU69KU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:93:b7:41:47:8b:13:34:35:48:c4:a1:e6:4f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Oct 19 10:01:18 2025 GMT
Not After : Oct 20 10:01:18 2025 GMT
Subject: CN=a4d573c0c84a5d89f7bcf1e7369a98122e397f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:04:c0:1e:ae:3f:23:33:a2:69:0e:31:69:
cc:c9:3e:42:47:b2:60:4e:c8:ea:1b:2d:f1:8e:0a:
48:58:31:95:16:87:05:82:21:dd:41:e5:88:be:93:
51:70:71:f1:73:a4:27:6b:13:74:77:25:93:b2:ce:
50:f1:57:f1:04:76:ef:81:c2:12:54:2e:48:9d:93:
34:97:e2:33:07:f1:85:63:4e:34:c6:90:f5:98:19:
63:11:73:d7:8b:98:43:cc:ef:d9:dc:51:dd:10:dd:
e7:61:48:a8:e7:36:c5:81:d0:1d:6f:cc:1e:28:f0:
4c:55:77:3f:06:6d:ed:9b:6f:1f:fc:dd:5c:fe:69:
7e:5c:cf:d3:7a:4c:d3:b3:5f:42:98:47:92:1a:5b:
f4:96:f6:f6:e8:50:2c:58:e6:68:36:86:9a:89:7a:
61:80:50:5b:35:44:28:53:d6:f7:95:2c:fa:02:8a:
52:1f:56:94:69:1b:4c:ca:f7:20:0b:fc:db:89:e7:
e8:0e:7d:58:ae:87:e1:4c:67:d5:88:09:5b:b6:bf:
11:00:71:c3:f6:85:a8:8c:74:eb:23:bc:62:f4:6e:
22:9a:fb:f8:c7:40:1d:60:f3:89:d2:33:67:47:ba:
82:c2:e9:29:ef:42:71:e4:00:ac:83:90:68:d5:de:
b1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D5:73:C0:C8:4A:5D:89:F7:BC:F1:E7:36:9A:98:12:2E:39:7F:58
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:15:7b:89:76:f2:02:c8:03:c4:27:ef:8d:36:6d:87:b1:47:
42:bf:9e:04:b5:d6:98:e5:99:ea:94:86:f7:d4:2c:1f:be:0d:
86:59:de:c7:e6:86:e8:b5:a6:60:6b:91:2a:ae:d3:25:ef:9f:
6b:d1:ef:45:d3:41:83:a9:73:df:d7:f0:30:e0:cc:74:c1:01:
32:cd:bd:ba:2f:5d:92:db:86:e7:34:50:61:b6:d5:61:1c:15:
8c:5d:12:4e:3f:e3:03:d7:d5:9a:00:37:75:66:0a:af:83:51:
e4:e6:5f:af:5d:53:b2:3b:85:6e:b5:50:45:5e:bb:19:36:18:
b7:28:e8:02:f1:9f:da:a1:7b:18:41:af:37:2f:ce:9e:2c:0c:
c2:ac:60:88:f0:f9:2b:8e:0d:a5:16:06:70:0a:19:24:2e:88:
ad:5b:92:35:b1:19:31:b2:3d:15:06:e0:82:8a:70:fd:ef:f0:
b6:1d:23:79:e5:40:01:ea:3d:b9:c0:e5:09:3f:1f:80:55:c2:
93:67:00:31:2a:36:ff:d7:b7:99:2c:db:d6:08:96:42:27:15:
fc:31:be:32:8d:4f:41:17:bb:3e:71:0b:20:98:69:ab:6d:c1:
ec:a3:9d:76:10:8b:53:13:9a:d8:a4:b3:f5:2b:49:47:19:13:
8f:ac:e7:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76pO3QUeLEzQ1SMSh5k/sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjYWQ2OGY3ZThhYmFkZjQ0NzI2MjMzNDNhMzI1NjE1MDcy
MjQxODkwHhcNMjUxMDE5MTAwMTE4WhcNMjUxMDIwMTAwMTE4WjAzMTEwLwYDVQQD
EyhhNGQ1NzNjMGM4NGE1ZDg5ZjdiY2YxZTczNjlhOTgxMjJlMzk3ZjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQgEwB6uPyMzomkOMWnMyT5CR7Jg
TsjqGy3xjgpIWDGVFocFgiHdQeWIvpNRcHHxc6QnaxN0dyWTss5Q8VfxBHbvgcIS
VC5InZM0l+IzB/GFY040xpD1mBljEXPXi5hDzO/Z3FHdEN3nYUio5zbFgdAdb8we
KPBMVXc/Bm3tm28f/N1c/ml+XM/TekzTs19CmEeSGlv0lvb26FAsWOZoNoaaiXph
gFBbNUQoU9b3lSz6AopSH1aUaRtMyvcgC/zbiefoDn1YrofhTGfViAlbtr8RAHHD
9oWojHTrI7xi9G4imvv4x0AdYPOJ0jNnR7qCwukp70Jx5ACsg5Bo1d6xOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTVc8DISl2J97zx5zaamBIuOX9YMB8GA1UdIwQY
MBaAFMytaPfoq630RyYjNDoyVhUHIkGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMt
NjM1OWY5MmUxZDJmLzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMtNjM1OWY5MmUxZDJm
LzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJRV7iXby
AsgDxCfvjTZth7FHQr+eBLXWmOWZ6pSG99QsH74Nhlnex+aG6LWmYGuRKq7TJe+f
a9HvRdNBg6lz39fwMODMdMEBMs29ui9dktuG5zRQYbbVYRwVjF0STj/jA9fVmgA3
dWYKr4NR5OZfr11TsjuFbrVQRV67GTYYtyjoAvGf2qF7GEGvNy/OniwMwqxgiPD5
K44NpRYGcAoZJC6IrVuSNbEZMbI9FQbggopw/e/wth0jeeVAAeo9ucDlCT8fgFXC
k2cAMSo2/9e3mSzb1giWQicV/DG+Mo1PQRe7PnELIJhpq23B7KOddhCLUxOa2KSz
9StJRxkTj6znww==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:43 2025 by rpki-client