Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json)
Hash identifier: QD9o1fO11gMdz94BVID+FwHybwRItBYcKDQAsf6a1DU=
Subject key identifier: E9:67:A1:77:5B:11:6D:5B:45:F6:35:33:2A:19:EC:19:CA:CB:80:C8
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 0199FF598968B22321D2EA94EFCD70570845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
Manifest number: 10B6
Signing time: Mon 20 Oct 2025 02:01:21 +0000
Manifest this update: Mon 20 Oct 2025 02:01:21 +0000
Manifest next update: Tue 21 Oct 2025 02:01:21 +0000
Files and hashes: 1: AIRZFXDpY9mQ7Mvu8kYb8OBEtUo.roa (hash: d5gxdyXpVK75f5B2dssNKeXHA5IUThR6PGmkaU8utQY=)
2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: WfUGnMNtj1SWuOF9gt2fUXwuQmxbxpEK82jQBX8X6fA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:89:68:b2:23:21:d2:ea:94:ef:cd:70:57:08:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: Oct 20 02:01:21 2025 GMT
Not After : Oct 21 02:01:21 2025 GMT
Subject: CN=e967a1775b116d5b45f635332a19ec19cacb80c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:32:9c:44:da:af:da:d3:e1:e3:69:fc:5d:d3:
d4:d9:b6:c5:3d:3f:2f:a4:b4:87:26:3c:b1:59:2c:
3b:a8:d4:48:79:d6:18:5b:b6:86:a8:2f:b6:61:d6:
1a:87:6b:6d:e5:a3:b8:4f:1c:20:fc:ea:69:bf:c1:
1a:c9:32:77:ff:30:0c:a8:39:16:32:b0:cc:dd:ab:
59:98:a6:10:3b:d9:c0:ae:52:99:82:20:a1:0f:d4:
42:ea:eb:8b:f6:11:a9:03:7a:24:38:7f:75:4b:55:
67:38:3e:91:91:04:29:b6:a7:0c:f6:1f:dc:67:05:
92:31:fd:ff:43:27:b5:58:7a:ec:58:a3:e6:32:21:
b1:b3:6e:55:d9:d2:51:c6:bc:00:ca:b3:18:03:67:
19:f8:72:f8:41:f4:3b:85:75:d1:4b:6f:6c:57:4b:
af:dc:4f:e5:cd:a5:b2:a5:0e:af:53:3d:06:1d:0c:
52:ae:4f:71:68:c8:ee:87:e6:b8:aa:a3:85:e5:80:
2f:9d:43:65:ff:5e:6a:df:98:a1:a4:64:e1:47:9d:
9d:d2:6e:b3:50:9a:88:a1:1c:97:cc:0a:08:91:ed:
fc:60:2a:4b:1e:02:51:14:27:85:c0:9b:4a:c8:b0:
4f:52:12:49:fb:fb:ea:5b:fe:22:f9:99:5d:48:85:
ed:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:67:A1:77:5B:11:6D:5B:45:F6:35:33:2A:19:EC:19:CA:CB:80:C8
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:b8:a9:58:42:ae:00:d7:86:1f:3a:20:54:65:f1:8a:9e:da:
bd:e5:77:75:1f:b9:e6:ac:7a:04:e2:3d:d0:97:ad:ce:e2:cb:
72:44:04:3c:58:8e:81:86:c6:e3:d7:dd:91:f4:3d:d4:fe:ca:
88:85:27:19:61:46:3b:90:a9:5d:c8:91:cf:ce:0c:12:a1:e6:
2c:72:5b:99:5a:d5:58:86:e2:3b:3c:d4:09:0a:d2:03:8d:49:
eb:17:b5:bd:90:19:1f:b8:fc:6f:84:59:2a:11:50:15:fb:7b:
ba:9b:8f:ff:88:e7:39:99:e5:38:6b:d2:ac:4b:03:06:61:b9:
41:f3:d8:03:a1:0d:1a:13:81:e5:2a:4a:33:22:da:a7:9c:41:
56:25:43:99:22:11:fe:36:91:6c:a4:d2:e6:8e:5a:2f:26:22:
2f:74:7a:63:11:e3:c2:0b:91:ec:fd:95:30:72:27:91:61:2a:
cd:c9:4c:49:75:2c:76:22:90:d2:35:21:27:a9:ba:8b:01:87:
27:c8:2c:a5:9a:70:79:83:38:e9:a2:38:4e:c0:35:2d:01:3f:
bb:74:7a:ae:dc:18:26:49:f7:ed:3a:51:19:63:2c:3e:92:92:
ea:ef:18:f3:43:e1:66:45:f3:9f:71:45:fb:98:d2:01:36:23:
6e:01:31:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/WYlosiMh0uqU781wVwhFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1OThkNzVlOGUzMmQ1ZTg0N2RmNGFhMWEzNWMyOTM0NGM5
NzZlMjYwHhcNMjUxMDIwMDIwMTIxWhcNMjUxMDIxMDIwMTIxWjAzMTEwLwYDVQQD
EyhlOTY3YTE3NzViMTE2ZDViNDVmNjM1MzMyYTE5ZWMxOWNhY2I4MGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDKcRNqv2tPh42n8XdPU2bbFPT8v
pLSHJjyxWSw7qNRIedYYW7aGqC+2YdYah2tt5aO4Txwg/Oppv8EayTJ3/zAMqDkW
MrDM3atZmKYQO9nArlKZgiChD9RC6uuL9hGpA3okOH91S1VnOD6RkQQptqcM9h/c
ZwWSMf3/Qye1WHrsWKPmMiGxs25V2dJRxrwAyrMYA2cZ+HL4QfQ7hXXRS29sV0uv
3E/lzaWypQ6vUz0GHQxSrk9xaMjuh+a4qqOF5YAvnUNl/15q35ihpGThR52d0m6z
UJqIoRyXzAoIke38YCpLHgJRFCeFwJtKyLBPUhJJ+/vqW/4i+ZldSIXt6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOlnoXdbEW1bRfY1MyoZ7BnKy4DIMB8GA1UdIwQY
MBaAFBWY116OMtXoR99KoaNcKTRMl24mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC84MjZhNWItNjM4Zi00NjFiLWEyNGIt
M2JjNmJjMzA2Zjg5LzEvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC84MjZhNWItNjM4Zi00NjFiLWEyNGItM2JjNmJjMzA2Zjg5
LzEvRlpqWFhvNHkxZWhIMzBxaG8xd3BORXlYYmlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfbipWEKu
ANeGHzogVGXxip7aveV3dR+55qx6BOI90JetzuLLckQEPFiOgYbG49fdkfQ91P7K
iIUnGWFGO5CpXciRz84MEqHmLHJbmVrVWIbiOzzUCQrSA41J6xe1vZAZH7j8b4RZ
KhFQFft7upuP/4jnOZnlOGvSrEsDBmG5QfPYA6ENGhOB5SpKMyLap5xBViVDmSIR
/jaRbKTS5o5aLyYiL3R6YxHjwguR7P2VMHInkWEqzclMSXUsdiKQ0jUhJ6m6iwGH
J8gspZpweYM46aI4TsA1LQE/u3R6rtwYJkn37TpRGWMsPpKS6u8Y80PhZkXzn3FF
+5jSATYjbgExaw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:24:45 2025 by rpki-client