
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
File: jzztMLKFLlUseDdGcAPxdepZ3nM.mft (raw, json)
Hash identifier: HAqaJRPpr0qtw3uuezncq/XVBxX9blJjlSIIZ1ZRXdM=
Subject key identifier: 48:C2:2C:7E:CC:4D:B4:CC:AA:B1:0B:5A:E0:DB:29:BE:C9:A6:56:F5
Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73
Certificate serial: 0199FC58FF3BA8ADF1C0FBEB24639271F4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
Manifest number: 0BEA
Signing time: Sun 19 Oct 2025 12:01:54 +0000
Manifest this update: Sun 19 Oct 2025 12:01:54 +0000
Manifest next update: Mon 20 Oct 2025 12:01:54 +0000
Files and hashes: 1: jzztMLKFLlUseDdGcAPxdepZ3nM.crl (hash: h7dp/EfzqQRkAPzlLQG+fM3YpbeNkzQKYPj/clPbV4I=)
2: zFUJjDGEsZJOucFbVCUxDXzsMU8.roa (hash: 2ZiCqHTVImshB2FLBBPRqOl/4XNJLXBYYXR20S0fJAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:ff:3b:a8:ad:f1:c0:fb:eb:24:63:92:71:f4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73
Validity
Not Before: Oct 19 12:01:54 2025 GMT
Not After : Oct 20 12:01:54 2025 GMT
Subject: CN=48c22c7ecc4db4ccaab10b5ae0db29bec9a656f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2a:38:e1:66:2f:2f:ca:24:1b:7a:15:e4:a0:
8e:5d:51:e2:65:73:5d:b7:31:36:1e:65:62:60:e5:
6b:fd:67:67:82:58:c4:4e:ab:c6:61:6f:e1:8c:2e:
91:b0:91:f0:a2:5e:79:4b:ff:0f:bf:b7:7a:2f:fd:
b1:aa:d1:14:63:63:56:6b:37:db:e5:9e:e5:e9:ad:
90:19:ec:84:ed:eb:88:0d:53:d7:eb:c7:aa:20:d1:
cf:c0:c1:60:25:03:d4:b0:3e:02:80:21:38:6b:4d:
f4:e8:24:79:7f:3b:b2:e2:2c:31:61:fb:06:e3:b9:
3e:e8:7b:c8:54:1a:17:01:02:a0:4c:d3:f3:2b:29:
c2:f0:cb:2d:74:17:43:e9:db:8e:09:c1:e5:86:e9:
ff:a1:8e:ec:09:2f:d6:a4:35:68:6a:09:bb:a9:43:
1b:b2:ab:73:0d:d5:1c:68:49:3b:00:0a:12:91:1d:
10:0f:ec:80:31:47:aa:04:32:55:cc:a4:c9:13:c0:
f9:81:37:38:75:95:7c:c0:b3:ad:e2:09:5d:bb:0c:
5d:17:44:03:31:ab:46:22:7d:8e:18:25:3e:95:05:
f0:e3:72:b2:91:d0:49:45:85:80:90:21:34:99:64:
6c:67:cc:75:1e:d4:8b:16:95:75:76:71:4e:20:86:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C2:2C:7E:CC:4D:B4:CC:AA:B1:0B:5A:E0:DB:29:BE:C9:A6:56:F5
X509v3 Authority Key Identifier:
keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:d2:9e:b5:b2:f8:a8:03:a0:a9:14:e1:1b:1e:06:5e:b0:d4:
a9:d8:df:d7:67:ee:84:be:6f:55:cf:ac:54:2b:50:e6:d0:d3:
97:f0:75:6f:74:c0:23:91:58:77:67:55:30:96:bf:ec:fb:c8:
bd:0d:e9:a0:01:26:61:6d:63:57:03:ce:43:00:d5:c3:05:60:
22:62:68:41:40:4a:36:11:e0:6e:9f:26:e3:f2:a5:49:88:9e:
98:7f:11:5b:ed:ac:8f:bd:93:df:00:8b:bd:a2:a9:75:7d:a6:
27:3e:a6:7f:d8:66:5d:d1:ab:ab:4e:93:87:1c:9d:98:9e:ff:
33:d2:f3:bf:6a:87:1a:79:6d:18:cd:63:8a:45:25:de:1f:76:
f5:d1:0b:83:ba:af:85:5f:03:67:6c:93:f5:b5:ef:e3:c2:d2:
cf:b3:16:0f:ef:b0:41:26:b8:c9:2f:64:49:b8:19:e4:70:34:
19:ee:23:2f:06:75:32:2d:37:c7:51:58:31:68:09:cf:93:b2:
32:c9:23:3e:aa:f6:2f:d1:b7:c2:ef:ef:f0:99:dc:9a:e8:77:
c9:22:a9:55:08:92:82:47:de:83:e4:36:e3:e1:3a:ba:7f:45:
3f:c5:b5:08:12:92:69:1f:f3:b0:dd:c0:be:14:e0:d0:58:34:
a5:e6:19:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WP87qK3xwPvrJGOScfTkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmM2NlZDMwYjI4NTJlNTUyYzc4Mzc0NjcwMDNmMTc1ZWE1
OWRlNzMwHhcNMjUxMDE5MTIwMTU0WhcNMjUxMDIwMTIwMTU0WjAzMTEwLwYDVQQD
Eyg0OGMyMmM3ZWNjNGRiNGNjYWFiMTBiNWFlMGRiMjliZWM5YTY1NmY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySo44WYvL8okG3oV5KCOXVHiZXNd
tzE2HmViYOVr/WdngljETqvGYW/hjC6RsJHwol55S/8Pv7d6L/2xqtEUY2NWazfb
5Z7l6a2QGeyE7euIDVPX68eqINHPwMFgJQPUsD4CgCE4a0306CR5fzuy4iwxYfsG
47k+6HvIVBoXAQKgTNPzKynC8MstdBdD6duOCcHlhun/oY7sCS/WpDVoagm7qUMb
sqtzDdUcaEk7AAoSkR0QD+yAMUeqBDJVzKTJE8D5gTc4dZV8wLOt4glduwxdF0QD
MatGIn2OGCU+lQXw43KykdBJRYWAkCE0mWRsZ8x1HtSLFpV1dnFOIIZg4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEjCLH7MTbTMqrELWuDbKb7Jplb1MB8GA1UdIwQY
MBaAFI887TCyhS5VLHg3RnAD8XXqWd5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYt
ZTM0NGZkYjcyMmEzLzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYtZTM0NGZkYjcyMmEz
LzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdtKetbL4
qAOgqRThGx4GXrDUqdjf12fuhL5vVc+sVCtQ5tDTl/B1b3TAI5FYd2dVMJa/7PvI
vQ3poAEmYW1jVwPOQwDVwwVgImJoQUBKNhHgbp8m4/KlSYiemH8RW+2sj72T3wCL
vaKpdX2mJz6mf9hmXdGrq06ThxydmJ7/M9Lzv2qHGnltGM1jikUl3h929dELg7qv
hV8DZ2yT9bXv48LSz7MWD++wQSa4yS9kSbgZ5HA0Ge4jLwZ1Mi03x1FYMWgJz5Oy
MskjPqr2L9G3wu/v8Jncmuh3ySKpVQiSgkfeg+Q24+E6un9FP8W1CBKSaR/zsN3A
vhTg0Fg0peYZ6A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:47:10 2025 by rpki-client