Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: hajLO46RjsQFiwiPkB5s6JFiSMaccmutaPzVBKFvhYI=
Subject key identifier: 80:50:B8:46:C4:C6:FA:D9:4F:3A:59:4A:69:DF:DF:43:04:9D:D5:06
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 0199FBEB3F6B2D206F8E98AFFCEA31F3402D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 1673
Signing time: Sun 19 Oct 2025 10:02:02 +0000
Manifest this update: Sun 19 Oct 2025 10:02:02 +0000
Manifest next update: Mon 20 Oct 2025 10:02:02 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: rpCByHMEhovZ0ZP0pGUfF7nDtJPeNa2/fk9a4b+6fNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:3f:6b:2d:20:6f:8e:98:af:fc:ea:31:f3:40:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Oct 19 10:02:02 2025 GMT
Not After : Oct 20 10:02:02 2025 GMT
Subject: CN=8050b846c4c6fad94f3a594a69dfdf43049dd506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cc:5f:7c:88:e3:f6:4d:ab:1f:95:29:01:b0:
be:af:ff:45:f6:1d:c4:2c:d2:98:14:fd:d6:e4:68:
0e:b2:20:a0:12:0a:a6:2e:95:96:dd:cf:23:fa:2a:
fe:45:fe:f6:44:88:a3:7a:1b:b6:c6:5d:7d:5d:19:
3f:14:20:17:25:9f:ec:a5:27:64:fa:35:dc:be:53:
b2:4b:30:b6:06:6d:8c:eb:f8:65:3b:a3:0e:b6:31:
77:ab:85:8c:fd:90:31:cc:84:b1:15:32:1b:cf:96:
5d:72:19:22:8c:7c:52:e1:a0:fe:18:90:ad:cc:47:
9e:dc:e6:6e:a1:b4:a3:e8:3b:f0:89:04:73:6a:d1:
7d:68:f5:29:e2:28:da:5d:18:ac:4e:da:61:62:02:
2b:ac:bd:31:08:fd:a3:20:13:29:54:41:72:ba:a3:
6b:fa:03:dc:4a:d9:0f:8b:a5:32:f5:e3:8d:19:2b:
08:d6:d7:18:bf:85:62:e3:63:a8:1c:0f:a4:65:88:
75:81:29:f7:75:34:d0:6b:22:a5:37:84:10:a7:c6:
36:cb:c3:04:35:91:09:8b:04:79:53:1f:0e:60:cc:
8d:5f:e2:52:49:93:50:2b:6a:a4:b7:7b:c0:48:7d:
d4:88:03:41:d9:be:e8:d0:f0:ec:30:cd:08:54:d5:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:50:B8:46:C4:C6:FA:D9:4F:3A:59:4A:69:DF:DF:43:04:9D:D5:06
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f0:4c:f6:7f:b1:55:59:f9:d0:d2:e0:38:8a:a5:0c:5c:33:
5f:15:d3:71:a8:62:8e:48:d8:42:a3:89:a9:bf:0d:cb:88:98:
4a:3b:a9:0a:18:a3:2b:1e:a4:e5:3e:35:b1:a6:96:de:3b:4b:
ee:b4:df:6c:ca:77:3d:a9:37:c7:70:17:51:15:72:52:69:0e:
99:44:c8:48:50:dd:e1:ac:9e:c4:ca:88:d7:38:f3:de:32:45:
a6:46:81:65:ea:30:5b:13:c6:7b:df:64:f0:28:73:57:1f:ca:
8c:35:73:6e:e8:bf:83:79:7e:44:44:da:e9:7a:20:c3:e3:d6:
92:6f:43:8c:81:2d:fc:35:a3:49:b2:4e:cb:d4:7b:50:0a:be:
f3:f1:94:f3:2f:13:b0:48:3d:d2:74:4c:de:67:8b:c3:97:ee:
bf:f9:de:d8:d8:36:66:ac:3e:87:85:fa:d3:bf:2d:cd:84:cb:
31:66:a6:d1:cd:8c:b2:b6:4e:9c:d9:ad:91:e1:0d:65:11:fd:
1a:48:8f:77:10:83:ba:75:7e:93:ce:43:77:87:5c:36:44:67:
3a:19:f8:8a:2c:d4:38:12:a2:86:00:2e:2b:ce:69:2f:5e:12:
c8:90:a8:f6:95:cc:11:20:c0:ba:6a:8e:cf:90:59:6a:48:9d:
98:e5:3e:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76z9rLSBvjpiv/Oox80AtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5OTI4MWU4N2Q1ZTliODc1OGYyNDBlNzhlZWY3MTAyYzQw
MTIxODkwHhcNMjUxMDE5MTAwMjAyWhcNMjUxMDIwMTAwMjAyWjAzMTEwLwYDVQQD
Eyg4MDUwYjg0NmM0YzZmYWQ5NGYzYTU5NGE2OWRmZGY0MzA0OWRkNTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcxffIjj9k2rH5UpAbC+r/9F9h3E
LNKYFP3W5GgOsiCgEgqmLpWW3c8j+ir+Rf72RIijehu2xl19XRk/FCAXJZ/spSdk
+jXcvlOySzC2Bm2M6/hlO6MOtjF3q4WM/ZAxzISxFTIbz5ZdchkijHxS4aD+GJCt
zEee3OZuobSj6DvwiQRzatF9aPUp4ijaXRisTtphYgIrrL0xCP2jIBMpVEFyuqNr
+gPcStkPi6Uy9eONGSsI1tcYv4Vi42OoHA+kZYh1gSn3dTTQayKlN4QQp8Y2y8ME
NZEJiwR5Ux8OYMyNX+JSSZNQK2qkt3vASH3UiANB2b7o0PDsMM0IVNXNCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIBQuEbExvrZTzpZSmnf30MEndUGMB8GA1UdIwQY
MBaAFJmSgeh9XpuHWPJA547vcQLEASGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjIt
YTBmMDBiZTNiY2UxLzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjItYTBmMDBiZTNiY2Ux
LzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALvBM9n+x
VVn50NLgOIqlDFwzXxXTcahijkjYQqOJqb8Ny4iYSjupChijKx6k5T41saaW3jtL
7rTfbMp3Pak3x3AXURVyUmkOmUTISFDd4ayexMqI1zjz3jJFpkaBZeowWxPGe99k
8ChzVx/KjDVzbui/g3l+RETa6Xogw+PWkm9DjIEt/DWjSbJOy9R7UAq+8/GU8y8T
sEg90nRM3meLw5fuv/ne2Ng2Zqw+h4X6078tzYTLMWam0c2MsrZOnNmtkeENZRH9
GkiPdxCDunV+k85Dd4dcNkRnOhn4iizUOBKihgAuK85pL14SyJCo9pXMESDAumqO
z5BZakidmOU+xA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:05 2025 by rpki-client