Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: /keyHaTblWN++t3hGeMqZMapuprN1f4SaT30wIfVdM8=
Subject key identifier: 3B:7D:A0:C6:F6:4A:92:76:19:2D:99:1D:D8:CA:C6:4D:61:0D:41:E2
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 0199FCFD4CC4F350EFB518F096E70A9806F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 0756
Signing time: Sun 19 Oct 2025 15:01:22 +0000
Manifest this update: Sun 19 Oct 2025 15:01:22 +0000
Manifest next update: Mon 20 Oct 2025 15:01:22 +0000
Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: M1GrzaekmSmMmSfW7Rnl9wDESZwXg9uuG2ZtoPI2HQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4c:c4:f3:50:ef:b5:18:f0:96:e7:0a:98:06:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Oct 19 15:01:22 2025 GMT
Not After : Oct 20 15:01:22 2025 GMT
Subject: CN=3b7da0c6f64a9276192d991dd8cac64d610d41e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9d:05:43:b2:e8:30:34:ef:3c:4d:2e:31:9c:
02:a6:2c:c6:74:0f:a6:92:55:f9:fa:b6:d7:e8:fc:
08:4a:ed:f9:e5:02:74:a5:32:e2:ce:fb:bf:3c:e0:
50:ff:0b:b8:d7:cc:4e:99:5f:09:42:fb:53:16:6a:
d8:30:05:35:a9:d3:39:f9:17:6d:12:9f:6e:56:47:
42:00:c6:95:04:15:27:96:3a:7f:a2:41:ad:23:2c:
84:4d:c1:d4:d1:a7:17:ab:64:00:92:fc:2f:a8:5c:
7d:e4:f6:5d:72:d7:d2:f4:28:d5:1e:13:08:61:16:
7f:9c:2d:ee:46:9d:a4:aa:2e:b1:2a:0f:48:7c:e9:
db:30:e1:1c:c4:37:4b:f3:b8:ba:0a:27:26:0e:e4:
15:57:47:ad:ec:b6:70:c4:9b:de:cb:cb:9d:3f:65:
67:d2:cc:2f:82:74:92:cf:d6:ba:48:dc:2d:0d:10:
51:ae:33:65:eb:e2:3d:14:73:d2:30:21:da:0e:34:
19:04:de:6d:2c:0d:b1:e3:a0:0e:08:ad:1d:f6:47:
54:53:51:54:0d:55:c4:81:8f:4c:5e:c7:45:75:34:
c2:96:9b:fc:30:80:bb:55:f7:71:01:75:93:30:35:
db:03:3f:aa:8e:59:8d:75:f5:22:1c:7e:8c:f3:95:
f6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7D:A0:C6:F6:4A:92:76:19:2D:99:1D:D8:CA:C6:4D:61:0D:41:E2
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:bb:dc:1c:a2:65:39:49:b2:8a:85:1a:13:53:17:ac:f8:43:
1f:4c:5a:0d:be:b1:c7:1d:f2:95:8d:e2:c9:f7:27:fa:f3:47:
75:8f:d4:5f:2b:b2:b2:01:8e:cc:17:9c:3d:67:de:6f:1a:7e:
6c:67:22:13:93:5c:db:c8:88:4a:93:58:52:54:9e:99:9c:48:
97:58:eb:19:d8:fb:3a:0b:41:60:44:f7:33:4c:51:ec:af:33:
47:bb:ac:a7:ef:ec:83:61:65:53:71:5e:2e:93:9f:e2:f9:92:
c8:d5:8e:c7:3f:2c:fd:7a:15:56:d8:5e:13:12:96:37:9b:db:
9f:a6:fe:f2:82:95:a4:e1:9d:4a:64:2d:82:e6:50:01:44:6b:
dc:41:d3:13:72:a3:83:68:8d:65:97:1c:ea:37:71:9a:66:78:
47:c3:2d:18:3d:18:43:32:4c:49:a0:3c:70:f0:37:e1:6c:27:
db:08:80:32:7c:4e:ef:6b:ee:92:c2:56:8b:3b:0f:ce:79:41:
61:32:ce:cc:17:df:37:b5:4c:d6:43:ed:e3:cb:aa:6a:de:1b:
e7:d5:44:b3:3e:46:d5:d7:13:db:cb:70:e4:21:71:21:8e:30:
80:d9:1a:91:5e:c2:4b:ae:af:88:d2:7b:31:ad:a4:e1:99:de:
63:df:f6:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/UzE81DvtRjwlucKmAb0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0
NGVjZTcwHhcNMjUxMDE5MTUwMTIyWhcNMjUxMDIwMTUwMTIyWjAzMTEwLwYDVQQD
EygzYjdkYTBjNmY2NGE5Mjc2MTkyZDk5MWRkOGNhYzY0ZDYxMGQ0MWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAip0FQ7LoMDTvPE0uMZwCpizGdA+m
klX5+rbX6PwISu355QJ0pTLizvu/POBQ/wu418xOmV8JQvtTFmrYMAU1qdM5+Rdt
Ep9uVkdCAMaVBBUnljp/okGtIyyETcHU0acXq2QAkvwvqFx95PZdctfS9CjVHhMI
YRZ/nC3uRp2kqi6xKg9IfOnbMOEcxDdL87i6CicmDuQVV0et7LZwxJvey8udP2Vn
0swvgnSSz9a6SNwtDRBRrjNl6+I9FHPSMCHaDjQZBN5tLA2x46AOCK0d9kdUU1FU
DVXEgY9MXsdFdTTClpv8MIC7VfdxAXWTMDXbAz+qjlmNdfUiHH6M85X2UQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDt9oMb2SpJ2GS2ZHdjKxk1hDUHiMB8GA1UdIwQY
MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt
NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz
LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa7vcHKJl
OUmyioUaE1MXrPhDH0xaDb6xxx3ylY3iyfcn+vNHdY/UXyuysgGOzBecPWfebxp+
bGciE5Nc28iISpNYUlSemZxIl1jrGdj7OgtBYET3M0xR7K8zR7usp+/sg2FlU3Fe
LpOf4vmSyNWOxz8s/XoVVtheExKWN5vbn6b+8oKVpOGdSmQtguZQAURr3EHTE3Kj
g2iNZZcc6jdxmmZ4R8MtGD0YQzJMSaA8cPA34Wwn2wiAMnxO72vuksJWizsPznlB
YTLOzBffN7VM1kPt48uqat4b59VEsz5G1dcT28tw5CFxIY4wgNkakV7CS66viNJ7
Ma2k4ZneY9/28Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:06 2025 by rpki-client