Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: BhbRPEcVMjIAvjTY6Y4NGOSckjT9Fek1/1FXEUsPHqQ=
Subject key identifier: 17:7E:AA:5A:9F:13:FA:2B:FB:B8:69:A8:34:28:00:2C:BD:E7:FA:3D
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 0199FAA15ABBE4661F3B28CE923BCCFDA5D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 1530
Signing time: Sun 19 Oct 2025 04:01:42 +0000
Manifest this update: Sun 19 Oct 2025 04:01:42 +0000
Manifest next update: Mon 20 Oct 2025 04:01:42 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: 7CFZXloT7FndyKtCqIBJS3PhCyDkpSU5gz4rwBFFvgM=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:5a:bb:e4:66:1f:3b:28:ce:92:3b:cc:fd:a5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Oct 19 04:01:42 2025 GMT
Not After : Oct 20 04:01:42 2025 GMT
Subject: CN=177eaa5a9f13fa2bfbb869a83428002cbde7fa3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:3c:2f:0e:f1:e1:0a:fe:69:10:6b:de:7e:
4e:3f:f2:c2:c3:b5:88:63:88:1e:53:75:38:06:73:
82:87:b4:5e:e2:e8:1b:02:98:21:3e:a7:44:09:23:
d1:99:d1:3f:de:53:d4:2a:a5:a7:33:fb:31:06:38:
86:c7:21:ef:b3:6b:23:76:00:12:9c:a3:3e:da:19:
b9:39:da:85:e1:af:02:04:d7:d0:68:c0:0f:7f:c9:
10:2b:e9:36:78:2c:fd:6a:2e:04:3b:1c:21:4c:6d:
64:d4:88:01:b8:eb:55:4b:a4:ff:1f:0c:e0:be:e5:
8a:86:45:ae:a4:94:f5:9e:1c:fd:fd:54:0c:13:36:
64:41:64:b8:ca:3f:e0:1d:d0:bd:a4:a2:93:26:24:
50:9e:a4:e2:6a:f5:50:27:ce:dc:78:74:a0:5e:45:
ae:79:2f:c2:77:6d:c5:14:7e:c3:25:b4:0d:88:3e:
36:79:b9:90:22:9d:bf:e6:76:9c:bd:fd:d1:1b:5e:
5e:32:0a:2c:28:b9:77:22:d4:31:95:b3:11:d7:80:
d6:dc:99:2f:87:10:f3:b8:3f:33:79:e6:6a:b8:25:
b5:d8:b6:3e:6d:af:35:6e:49:6b:d4:b3:c9:6a:94:
9a:07:1c:7d:2e:62:67:45:e0:5e:81:53:24:f5:c4:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7E:AA:5A:9F:13:FA:2B:FB:B8:69:A8:34:28:00:2C:BD:E7:FA:3D
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:d6:b8:d0:df:28:f1:e2:ae:26:55:85:31:f4:a8:ab:ff:59:
eb:2e:20:4f:79:8f:44:75:49:08:c0:f9:48:04:cd:76:64:0e:
ec:31:2f:2f:94:78:da:84:21:5f:1b:e4:60:15:a9:67:52:4b:
29:94:12:35:af:7c:ac:a5:e6:44:24:c4:c2:50:11:40:c3:7a:
3e:d1:96:ae:4b:9d:09:d5:e0:aa:48:c4:e4:01:af:39:f4:e7:
3d:a8:f8:49:b3:99:d6:ea:b7:84:4f:8f:aa:68:17:ce:3c:7d:
4e:0e:cf:54:07:fd:09:6c:a2:35:22:b5:b3:a8:d9:cd:dc:a0:
c6:7d:71:a2:b5:6f:71:86:38:3b:61:52:aa:93:8e:12:df:78:
17:6f:4d:82:df:3f:2b:29:a1:69:be:75:8f:db:74:70:f5:9c:
85:35:39:c4:3f:78:29:af:71:ad:78:5b:32:d9:59:08:25:ab:
74:60:74:4c:7a:a5:ac:fc:ee:2b:09:9d:5f:60:07:48:04:5f:
0a:78:51:56:07:07:49:be:c0:7a:1a:16:f6:20:13:f6:e0:02:
d2:cb:d7:f5:a3:64:e8:5c:ba:c1:76:86:af:3d:63:08:a1:f6:
31:72:6d:af:ed:21:4a:58:cc:0d:54:01:71:f5:4e:96:e3:9c:
03:e9:69:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6oVq75GYfOyjOkjvM/aXSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk
ZWRhZTQwHhcNMjUxMDE5MDQwMTQyWhcNMjUxMDIwMDQwMTQyWjAzMTEwLwYDVQQD
EygxNzdlYWE1YTlmMTNmYTJiZmJiODY5YTgzNDI4MDAyY2JkZTdmYTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArac8Lw7x4Qr+aRBr3n5OP/LCw7WI
Y4geU3U4BnOCh7Re4ugbApghPqdECSPRmdE/3lPUKqWnM/sxBjiGxyHvs2sjdgAS
nKM+2hm5OdqF4a8CBNfQaMAPf8kQK+k2eCz9ai4EOxwhTG1k1IgBuOtVS6T/Hwzg
vuWKhkWupJT1nhz9/VQMEzZkQWS4yj/gHdC9pKKTJiRQnqTiavVQJ87ceHSgXkWu
eS/Cd23FFH7DJbQNiD42ebmQIp2/5nacvf3RG15eMgosKLl3ItQxlbMR14DW3Jkv
hxDzuD8zeeZquCW12LY+ba81bklr1LPJapSaBxx9LmJnReBegVMk9cSg8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBd+qlqfE/or+7hpqDQoACy95/o9MB8GA1UdIwQY
MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt
NjIzZTE5OWZkYmU5LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5
LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANta40N8o
8eKuJlWFMfSoq/9Z6y4gT3mPRHVJCMD5SATNdmQO7DEvL5R42oQhXxvkYBWpZ1JL
KZQSNa98rKXmRCTEwlARQMN6PtGWrkudCdXgqkjE5AGvOfTnPaj4SbOZ1uq3hE+P
qmgXzjx9Tg7PVAf9CWyiNSK1s6jZzdygxn1xorVvcYY4O2FSqpOOEt94F29Ngt8/
Kymhab51j9t0cPWchTU5xD94Ka9xrXhbMtlZCCWrdGB0THqlrPzuKwmdX2AHSARf
CnhRVgcHSb7AehoW9iAT9uAC0svX9aNk6Fy6wXaGrz1jCKH2MXJtr+0hSljMDVQB
cfVOluOcA+lp9g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:01:11 2025 by rpki-client