
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: Y8Lxx2KnTmcXMDVyTeC1nTgLeE3ky9fiLELjHDL1r9c=
Subject key identifier: 93:88:46:CB:A5:18:8A:D3:D9:41:49:40:78:25:C5:38:CF:61:04:26
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 0199FB0F1D27B28C5654C6DC5BB1E3E33A26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0BFE
Signing time: Sun 19 Oct 2025 06:01:35 +0000
Manifest this update: Sun 19 Oct 2025 06:01:35 +0000
Manifest next update: Mon 20 Oct 2025 06:01:35 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: /jsDnS6eXQTzugkN2OZreitigav45wDDgJAKoYmiaKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:1d:27:b2:8c:56:54:c6:dc:5b:b1:e3:e3:3a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Oct 19 06:01:35 2025 GMT
Not After : Oct 20 06:01:35 2025 GMT
Subject: CN=938846cba5188ad3d94149407825c538cf610426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:24:fd:33:e4:b9:69:0e:d5:11:76:87:ae:13:
dd:47:7c:c1:bb:65:b6:df:2a:84:2f:2a:ad:fa:a6:
28:94:0e:7e:03:ab:d5:67:48:4c:f2:5c:c4:05:69:
6a:07:0f:a5:42:bb:59:a6:75:8f:28:f2:dd:1a:e7:
ce:23:21:9f:9c:7a:dc:0b:f4:03:c6:20:85:f4:1a:
b9:e1:90:03:74:07:f9:b2:21:8b:1e:c2:9b:cf:3d:
70:dd:2a:90:66:9e:98:38:60:07:b3:c0:59:70:3c:
43:62:fe:ad:8e:b5:36:f9:ac:65:4c:68:a8:4c:8b:
dd:ce:62:76:78:6d:b8:f9:cf:f8:47:07:c9:8e:f7:
1e:1f:70:ed:92:e9:d4:43:69:48:ad:20:3b:dc:18:
22:14:e7:61:c0:4d:9a:c6:45:80:6f:7e:2a:69:7b:
35:eb:4e:0d:4e:75:41:5f:65:cb:bd:45:1e:aa:0c:
db:f0:56:9a:eb:52:e7:a3:7d:02:aa:9f:e3:3d:f0:
8d:2f:61:b3:08:8e:4b:5a:98:c7:0d:ae:c7:52:7c:
52:a2:cd:1e:c5:9f:b2:a2:a7:5e:a9:ea:87:0f:11:
7f:92:6a:01:26:f4:f6:7e:a1:9c:f6:b2:91:4d:e9:
0e:c6:f9:41:ef:32:2c:a3:48:1d:62:d2:a2:d2:93:
df:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:88:46:CB:A5:18:8A:D3:D9:41:49:40:78:25:C5:38:CF:61:04:26
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:dd:1a:3e:67:40:79:d2:1e:f6:5b:c7:fd:d1:33:ef:00:b6:
8c:d5:cc:57:95:dc:e7:35:17:8e:20:c0:ab:95:fe:b8:b3:7d:
be:77:8f:04:53:20:8e:d8:59:d1:5b:e2:ed:f2:8e:7c:48:c3:
4d:8b:82:cc:1e:03:a3:6a:ba:bb:41:a2:f5:45:8d:98:ac:c4:
e3:71:d1:3d:00:f1:16:60:f9:d3:64:74:84:46:bb:ad:26:90:
a5:5c:f8:c0:53:5a:b7:fd:1c:b0:ac:df:92:01:62:e1:c7:6c:
20:3f:70:10:4a:66:27:29:b5:6d:15:fd:35:3d:11:88:c3:fd:
89:7b:6e:79:57:98:5a:2e:29:79:45:ed:1b:c0:7f:1d:bf:9c:
3e:a4:4c:ff:4f:db:5e:55:77:91:f3:4c:bf:8c:28:0f:c6:38:
a7:c0:4d:2c:d8:c7:da:9b:92:0a:8a:c1:68:c6:8c:6b:6e:34:
79:9a:8b:ab:82:a9:19:9a:38:bd:8f:8d:cb:bc:ba:ce:8c:cc:
3e:cc:30:8e:93:f1:09:2a:fb:73:a1:27:12:4d:0a:12:72:5d:
77:d3:fd:f1:bc:0a:ec:36:db:d6:23:44:81:32:3d:e6:7d:9d:
c8:29:cf:c3:41:15:3d:38:e7:ec:fc:9b:5d:d2:9a:8d:7e:67:
8f:6c:f1:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7Dx0nsoxWVMbcW7Hj4zomMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOTRkZjY1YTNiZGRkZmI1NTYwOWYxODUwZTE0OWY4MmJl
YTc4ZjcwHhcNMjUxMDE5MDYwMTM1WhcNMjUxMDIwMDYwMTM1WjAzMTEwLwYDVQQD
Eyg5Mzg4NDZjYmE1MTg4YWQzZDk0MTQ5NDA3ODI1YzUzOGNmNjEwNDI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7yT9M+S5aQ7VEXaHrhPdR3zBu2W2
3yqELyqt+qYolA5+A6vVZ0hM8lzEBWlqBw+lQrtZpnWPKPLdGufOIyGfnHrcC/QD
xiCF9Bq54ZADdAf5siGLHsKbzz1w3SqQZp6YOGAHs8BZcDxDYv6tjrU2+axlTGio
TIvdzmJ2eG24+c/4RwfJjvceH3DtkunUQ2lIrSA73BgiFOdhwE2axkWAb34qaXs1
604NTnVBX2XLvUUeqgzb8Faa61Lno30Cqp/jPfCNL2GzCI5LWpjHDa7HUnxSos0e
xZ+yoqdeqeqHDxF/kmoBJvT2fqGc9rKRTekOxvlB7zIso0gdYtKi0pPfmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJOIRsulGIrT2UFJQHglxTjPYQQmMB8GA1UdIwQY
MBaAFD2U32Wjvd37VWCfGFDhSfgr6nj3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9kYTljNjItOGUxNi00NmRmLWJlMmIt
MDZiOWVkOTlmMTZjLzEvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9kYTljNjItOGUxNi00NmRmLWJlMmItMDZiOWVkOTlmMTZj
LzEvUFpUZlphTzkzZnRWWUo4WVVPRkotQ3ZxZVBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjN0aPmdA
edIe9lvH/dEz7wC2jNXMV5Xc5zUXjiDAq5X+uLN9vnePBFMgjthZ0Vvi7fKOfEjD
TYuCzB4Do2q6u0Gi9UWNmKzE43HRPQDxFmD502R0hEa7rSaQpVz4wFNat/0csKzf
kgFi4cdsID9wEEpmJym1bRX9NT0RiMP9iXtueVeYWi4peUXtG8B/Hb+cPqRM/0/b
XlV3kfNMv4woD8Y4p8BNLNjH2puSCorBaMaMa240eZqLq4KpGZo4vY+Ny7y6zozM
PswwjpPxCSr7c6EnEk0KEnJdd9P98bwK7Dbb1iNEgTI95n2dyCnPw0EVPTjn7Pyb
XdKajX5nj2zxkQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:13:20 2025 by rpki-client