Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: EprtXbWaenPbzBDJ8j5V7cP2FZQ31ghKrWlgPXGZ1/g=
Subject key identifier: 54:32:2F:F2:32:BD:D5:6A:14:E1:03:06:23:86:4D:6A:F1:19:1A:29
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 0199FBEB1267AB0A58C44E8932DC47AC906B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1260
Signing time: Sun 19 Oct 2025 10:01:50 +0000
Manifest this update: Sun 19 Oct 2025 10:01:50 +0000
Manifest next update: Mon 20 Oct 2025 10:01:50 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: gPTM1zVJuoHp0hHnxQxsxVyx5apqb9O8X8KVMaZja5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:12:67:ab:0a:58:c4:4e:89:32:dc:47:ac:90:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Oct 19 10:01:50 2025 GMT
Not After : Oct 20 10:01:50 2025 GMT
Subject: CN=54322ff232bdd56a14e1030623864d6af1191a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:05:74:dd:03:d7:00:80:33:2f:cc:7f:c0:30:
05:e7:31:ee:9e:fa:98:ea:4f:73:94:bc:54:ac:9f:
6c:58:19:f5:d1:81:61:3b:38:c1:90:89:3c:cd:17:
37:f8:d8:93:a7:dd:c1:33:b5:96:e6:11:58:e5:64:
74:60:b7:29:35:5d:c6:79:06:c8:7a:27:67:93:a4:
5e:4d:df:f1:94:bb:04:3c:d0:15:40:ab:a9:08:b4:
2d:8f:32:90:df:12:7c:a9:c0:98:d3:4f:03:bf:fa:
48:d3:a4:6c:09:1d:f9:cd:48:5e:f0:54:5d:d4:8d:
72:ee:c2:26:88:06:66:5b:ae:f3:e9:7f:7e:b1:1b:
99:b5:f3:b6:ce:c5:b3:ed:3b:17:b7:78:b1:9b:70:
9c:25:cd:5b:a6:5f:f8:9a:0b:4b:a3:8b:dc:1f:14:
f0:a7:8b:5a:64:3d:34:a6:b0:bf:84:ce:23:e1:bd:
03:9c:45:b4:6c:63:7c:48:de:0b:b2:e0:63:2a:63:
a3:d0:49:f0:21:c6:2b:0d:af:9f:e2:a6:d7:06:39:
a4:c1:9f:3e:28:53:53:ab:77:d6:05:c9:62:2d:96:
c5:a8:70:dc:37:fb:15:44:ad:ff:2e:20:3d:5a:79:
0a:c3:26:39:d6:14:b3:90:05:ac:84:8f:0d:4e:c7:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:32:2F:F2:32:BD:D5:6A:14:E1:03:06:23:86:4D:6A:F1:19:1A:29
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:1f:24:7e:9d:e5:89:bd:31:35:d4:66:90:cc:21:ab:ef:3f:
33:52:4c:07:0f:08:1d:d3:97:c3:11:db:b8:b3:9e:d4:a4:d7:
8c:de:23:4f:53:32:73:a3:ff:13:6d:d7:70:2f:ec:7e:7c:85:
5d:17:2c:56:d4:0c:b8:fb:b8:cd:7a:c4:76:37:20:32:91:18:
ff:27:ea:de:80:cd:e0:e3:82:fc:16:ec:ba:72:32:8d:8a:64:
4a:54:0b:9a:4a:6f:dd:73:a9:4c:b2:fd:14:a8:c3:f3:ad:8f:
64:a6:65:72:17:f1:a4:de:5b:c8:64:19:d1:06:3e:91:0a:c7:
f0:cb:e8:12:1c:3b:8a:66:8b:25:55:f5:d8:d9:b7:d7:03:12:
28:2a:0d:f1:f5:3c:f5:c4:42:4b:77:bf:83:fd:a8:c8:f4:29:
b9:ed:81:fa:d7:27:e8:9e:54:c1:c4:96:17:41:4b:b7:64:a9:
19:cb:6b:50:c1:64:65:65:bc:cd:69:eb:f7:01:45:8d:f3:a8:
ed:ac:88:17:fb:da:8c:54:5a:c7:b4:28:19:14:f5:27:09:8f:
8c:03:99:c3:39:8f:5d:8b:f8:14:55:d7:43:34:ad:1e:94:b1:
b3:ab:a0:ed:aa:f4:07:08:64:90:4b:e4:e0:3b:36:44:60:7b:
3f:99:e6:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76xJnqwpYxE6JMtxHrJBrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMzQwZmQ3YjNjMjg1NjM3YWRjMDBmMWU2MWUyYjhlNDAy
NjU4ZjMwHhcNMjUxMDE5MTAwMTUwWhcNMjUxMDIwMTAwMTUwWjAzMTEwLwYDVQQD
Eyg1NDMyMmZmMjMyYmRkNTZhMTRlMTAzMDYyMzg2NGQ2YWYxMTkxYTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAV03QPXAIAzL8x/wDAF5zHunvqY
6k9zlLxUrJ9sWBn10YFhOzjBkIk8zRc3+NiTp93BM7WW5hFY5WR0YLcpNV3GeQbI
eidnk6ReTd/xlLsEPNAVQKupCLQtjzKQ3xJ8qcCY008Dv/pI06RsCR35zUhe8FRd
1I1y7sImiAZmW67z6X9+sRuZtfO2zsWz7TsXt3ixm3CcJc1bpl/4mgtLo4vcHxTw
p4taZD00prC/hM4j4b0DnEW0bGN8SN4LsuBjKmOj0EnwIcYrDa+f4qbXBjmkwZ8+
KFNTq3fWBcliLZbFqHDcN/sVRK3/LiA9WnkKwyY51hSzkAWshI8NTsdaiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQyL/IyvdVqFOEDBiOGTWrxGRopMB8GA1UdIwQY
MBaAFHM0D9ezwoVjetwA8eYeK45AJljzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3pRUDE3UENoV042M0FEeDVoNHJqa0FtV1BNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8wYjRkYmEtMDc0Ny00ZTBmLTgwMzYt
ZjIyMjM2MDZjNTM4LzEvY3pRUDE3UENoV042M0FEeDVoNHJqa0FtV1BNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC8wYjRkYmEtMDc0Ny00ZTBmLTgwMzYtZjIyMjM2MDZjNTM4
LzEvY3pRUDE3UENoV042M0FEeDVoNHJqa0FtV1BNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmh8kfp3l
ib0xNdRmkMwhq+8/M1JMBw8IHdOXwxHbuLOe1KTXjN4jT1Myc6P/E23XcC/sfnyF
XRcsVtQMuPu4zXrEdjcgMpEY/yfq3oDN4OOC/BbsunIyjYpkSlQLmkpv3XOpTLL9
FKjD862PZKZlchfxpN5byGQZ0QY+kQrH8MvoEhw7imaLJVX12Nm31wMSKCoN8fU8
9cRCS3e/g/2oyPQpue2B+tcn6J5UwcSWF0FLt2SpGctrUMFkZWW8zWnr9wFFjfOo
7ayIF/vajFRax7QoGRT1JwmPjAOZwzmPXYv4FFXXQzStHpSxs6ug7ar0BwhkkEvk
4Ds2RGB7P5nmmw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:12 2025 by rpki-client