Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: dJDg4Es2qaVPktMvogvJ4x+kgdBcqc5YG0fT0yizWLY=
Subject key identifier: CF:B3:64:54:5D:47:71:45:93:3F:84:90:0F:12:86:2A:8C:7F:FF:C7
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 0199FBEA7D35F90C07D9F8641CAC5FA00FC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 141E
Signing time: Sun 19 Oct 2025 10:01:12 +0000
Manifest this update: Sun 19 Oct 2025 10:01:12 +0000
Manifest next update: Mon 20 Oct 2025 10:01:12 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: WSxzEgXNzx4WI1CXw9INZ4oKKiQuQLKL3Akpmf5VK/M=)
2: WGiFR-bGPm6J5ZNuq_i5kJB6Nzw.roa (hash: 74v2TFsnggZrqZFnVMwJ7ZEDqgCLlK+dkXL3Ua1EXV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:7d:35:f9:0c:07:d9:f8:64:1c:ac:5f:a0:0f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: Oct 19 10:01:12 2025 GMT
Not After : Oct 20 10:01:12 2025 GMT
Subject: CN=cfb364545d477145933f84900f12862a8c7fffc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1f:49:99:99:7a:9d:e0:31:35:a3:0e:d2:2f:
a2:17:97:97:03:2d:6f:a3:05:66:92:71:60:a3:fb:
16:ce:20:24:cf:ec:98:6c:9b:5c:d8:71:fd:0d:ed:
4b:81:f9:63:ca:5d:94:bd:f1:7d:be:07:16:16:e9:
78:47:b6:ee:4f:9c:48:7e:e2:99:76:1f:04:f5:c6:
a4:26:bf:72:55:2d:ce:82:8d:e6:29:bb:2c:9e:36:
10:55:1b:7f:06:3b:0e:c3:c3:ee:5f:e9:c6:e9:fe:
e8:e2:e2:c8:11:37:0d:de:25:df:31:07:25:2e:c7:
6a:2b:2d:1c:a0:5c:99:70:e7:a6:81:16:61:5a:71:
52:48:f6:79:cb:da:7d:af:48:a1:3d:c4:c1:c5:fe:
65:fd:00:01:3e:7a:5e:10:40:93:85:59:3e:c0:ad:
2e:fd:85:7f:36:e1:d9:4f:93:2c:4a:3c:4c:20:b9:
b8:e5:e8:1f:af:e6:e4:8a:ed:9b:e5:b1:4d:ac:e9:
41:e7:5a:cc:b2:f0:e4:2e:cc:3e:d5:6b:75:e0:ae:
c2:95:99:3b:cf:63:49:4f:80:ca:ec:c5:6d:f1:6f:
01:f1:ef:2a:df:02:f3:9d:83:96:80:99:bc:66:37:
45:78:a6:c1:33:e3:6e:a7:6d:fe:f0:f6:0b:f8:ec:
34:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B3:64:54:5D:47:71:45:93:3F:84:90:0F:12:86:2A:8C:7F:FF:C7
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:c8:5c:5c:a1:8f:ce:38:9e:54:02:2e:eb:4d:d3:63:7c:32:
a0:cb:d1:6e:9a:ee:5c:59:76:65:a6:07:4c:75:c0:87:74:a4:
0f:cf:f7:33:aa:a6:40:55:73:98:1a:9d:2f:ed:ff:03:b8:f0:
4e:65:d3:95:dd:9d:20:80:7d:bc:14:ff:a6:36:fe:48:8f:03:
09:b4:e4:e1:35:69:69:72:3b:97:8b:7d:98:8f:e9:92:08:5c:
e6:36:80:e2:3a:05:da:a8:e3:a8:e6:c0:29:ed:6a:95:d7:97:
12:30:41:c4:95:17:d8:fe:3a:6c:bc:89:a6:d2:aa:cf:d7:50:
fa:21:b9:4e:fd:fe:25:11:65:8c:03:c7:50:b3:2b:23:c8:36:
54:03:9b:6b:07:55:42:8b:cb:01:72:dd:67:b3:e1:30:d1:e1:
dd:db:f5:ef:85:0d:d4:31:a8:36:01:97:fe:5d:1f:5c:0d:e1:
82:fe:91:14:d2:9a:5e:2f:e4:44:61:97:a4:4c:10:90:2a:1c:
ea:4c:76:a2:57:4a:96:a5:37:b3:6b:41:7d:1c:65:e2:b9:54:
43:f9:f6:dc:e4:24:0f:fb:47:96:6f:c5:fb:d2:30:37:e0:ea:
76:c2:c1:eb:1a:1d:52:a6:78:a5:19:b1:7c:17:04:71:e9:86:
1b:be:d0:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76n01+QwH2fhkHKxfoA/AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkOWUzNGIxNDk0NzdkNTVlZjBiNTk2MmE1ZTVlMDBjZGZi
NTg0ODkwHhcNMjUxMDE5MTAwMTEyWhcNMjUxMDIwMTAwMTEyWjAzMTEwLwYDVQQD
EyhjZmIzNjQ1NDVkNDc3MTQ1OTMzZjg0OTAwZjEyODYyYThjN2ZmZmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0x9JmZl6neAxNaMO0i+iF5eXAy1v
owVmknFgo/sWziAkz+yYbJtc2HH9De1Lgfljyl2UvfF9vgcWFul4R7buT5xIfuKZ
dh8E9cakJr9yVS3Ogo3mKbssnjYQVRt/BjsOw8PuX+nG6f7o4uLIETcN3iXfMQcl
LsdqKy0coFyZcOemgRZhWnFSSPZ5y9p9r0ihPcTBxf5l/QABPnpeEECThVk+wK0u
/YV/NuHZT5MsSjxMILm45egfr+bkiu2b5bFNrOlB51rMsvDkLsw+1Wt14K7ClZk7
z2NJT4DK7MVt8W8B8e8q3wLznYOWgJm8ZjdFeKbBM+Nup23+8PYL+Ow0wwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+zZFRdR3FFkz+EkA8ShiqMf//HMB8GA1UdIwQY
MBaAFA2eNLFJR31V7wtZYqXl4AzftYSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQt
NDFkNDlhOGZmYzgxLzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQtNDFkNDlhOGZmYzgx
LzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG8hcXKGP
zjieVAIu603TY3wyoMvRbpruXFl2ZaYHTHXAh3SkD8/3M6qmQFVzmBqdL+3/A7jw
TmXTld2dIIB9vBT/pjb+SI8DCbTk4TVpaXI7l4t9mI/pkghc5jaA4joF2qjjqObA
Ke1qldeXEjBBxJUX2P46bLyJptKqz9dQ+iG5Tv3+JRFljAPHULMrI8g2VAObawdV
QovLAXLdZ7PhMNHh3dv174UN1DGoNgGX/l0fXA3hgv6RFNKaXi/kRGGXpEwQkCoc
6kx2oldKlqU3s2tBfRxl4rlUQ/n23OQkD/tHlm/F+9IwN+DqdsLB6xodUqZ4pRmx
fBcEcemGG77QSw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:20 2025 by rpki-client