
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: Ymv48HUStMgT4rHbI2m54LEDXdwM0fgQ+7XqqWufNF4=
Subject key identifier: 5F:D3:AD:CA:F6:38:B6:F1:CF:D6:1F:67:C2:F1:4A:5A:D1:D5:D4:13
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 0198D5F14D6DDA5AF8C0FFA1F2B42EEFFB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0B01
Signing time: Sat 23 Aug 2025 08:00:17 +0000
Manifest this update: Sat 23 Aug 2025 08:00:17 +0000
Manifest next update: Sun 24 Aug 2025 08:00:17 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: AF0jViuLMe2oFim9Uuab89zoW91dDATHJebELbwi63Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:4d:6d:da:5a:f8:c0:ff:a1:f2:b4:2e:ef:fb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Aug 23 08:00:17 2025 GMT
Not After : Aug 24 08:00:17 2025 GMT
Subject: CN=5fd3adcaf638b6f1cfd61f67c2f14a5ad1d5d413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:04:3f:41:79:b1:ec:0c:3d:fb:e0:b1:59:1f:
b0:4c:07:a5:74:95:2f:a5:3b:48:db:7b:58:49:0f:
96:f1:a5:eb:69:f0:64:05:04:00:c7:7a:d1:de:4d:
f7:b3:c5:26:89:c6:c2:a1:48:fc:4e:1f:c3:c0:d2:
87:d3:57:93:81:0d:7d:b5:74:e0:56:a0:ee:30:40:
7f:9d:0f:59:b3:3d:18:33:0a:26:34:36:ae:bd:87:
14:91:13:d8:46:6a:cd:1a:03:2a:f6:2b:33:bb:34:
8f:9a:9e:b7:a3:31:9e:03:89:fa:0a:35:ed:27:92:
05:f8:ee:00:78:15:3b:68:05:66:48:a5:fb:fd:05:
6d:2c:d5:8c:68:ef:ce:33:3b:42:eb:64:95:0f:f8:
43:69:b5:11:92:56:a5:f3:52:e1:91:c8:a5:70:78:
e4:8b:6d:5e:81:56:bd:97:65:b0:cd:d3:6f:71:16:
ca:0f:82:a3:fc:f6:b7:f6:8e:27:c7:81:1c:23:e3:
1e:d4:cc:6e:dc:d8:0b:95:bb:ce:75:60:4b:72:63:
09:96:ed:88:13:d6:21:27:04:f7:eb:22:68:cf:da:
6e:a7:62:01:6b:08:6c:e3:9e:6e:89:29:85:47:95:
86:a3:fb:68:4b:2e:d5:bc:31:ab:5a:b4:d6:83:02:
25:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D3:AD:CA:F6:38:B6:F1:CF:D6:1F:67:C2:F1:4A:5A:D1:D5:D4:13
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:59:9d:f8:a8:28:3f:1d:ca:7f:d5:b4:45:3a:a4:d1:30:46:
3f:6e:eb:d5:a5:df:c3:ab:dd:28:43:98:49:4a:5c:d5:89:14:
33:a9:17:72:0d:04:11:a9:a0:f8:d5:11:dc:38:d8:2a:99:28:
d7:d1:f5:4e:99:9a:d0:0d:b3:32:8c:53:17:49:f8:af:48:30:
83:5c:6d:12:66:80:36:dd:5b:c4:da:0b:d4:98:0b:ca:25:17:
f0:94:09:bc:a4:17:63:5b:a2:44:99:8d:52:d8:28:cb:68:e2:
86:06:a5:31:1c:c3:d8:95:b4:f1:43:3d:69:6b:5a:b1:b6:16:
7d:33:ab:61:48:44:75:0e:6c:0c:69:9f:55:f8:f6:97:ad:20:
d7:df:20:49:1c:33:ce:77:b9:5f:6a:f4:0a:5b:99:e8:3d:cf:
72:ba:d3:9e:4b:c2:a1:5d:26:a7:52:5b:2d:7c:dc:45:eb:3c:
44:d5:88:c0:ff:1a:3b:1b:2a:5b:6f:8a:ce:cd:8c:fe:95:d0:
2a:5c:a8:7e:a6:22:0c:79:54:00:cf:62:b9:63:10:d9:5d:0f:
a2:3f:7c:f8:95:0f:bc:13:f2:74:cc:83:5d:48:78:0b:13:c5:
d0:7a:22:60:98:90:eb:b2:cf:33:83:fc:8b:76:90:81:d7:73:
6a:2e:d1:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8U1t2lr4wP+h8rQu7/sZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjMjc1YjIxN2RmMWRlOTg4Y2EyMTkyYTgzYWUxMWRkZjQy
M2E0NGYwHhcNMjUwODIzMDgwMDE3WhcNMjUwODI0MDgwMDE3WjAzMTEwLwYDVQQD
Eyg1ZmQzYWRjYWY2MzhiNmYxY2ZkNjFmNjdjMmYxNGE1YWQxZDVkNDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQQ/QXmx7Aw9++CxWR+wTAeldJUv
pTtI23tYSQ+W8aXrafBkBQQAx3rR3k33s8UmicbCoUj8Th/DwNKH01eTgQ19tXTg
VqDuMEB/nQ9Zsz0YMwomNDauvYcUkRPYRmrNGgMq9iszuzSPmp63ozGeA4n6CjXt
J5IF+O4AeBU7aAVmSKX7/QVtLNWMaO/OMztC62SVD/hDabURklal81LhkcilcHjk
i21egVa9l2WwzdNvcRbKD4Kj/Pa39o4nx4EcI+Me1Mxu3NgLlbvOdWBLcmMJlu2I
E9YhJwT36yJoz9pup2IBawhs455uiSmFR5WGo/toSy7VvDGrWrTWgwIlYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/Trcr2OLbxz9YfZ8LxSlrR1dQTMB8GA1UdIwQY
MBaAFMwnWyF98d6YjKIZKoOuEd30I6RPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81MTI0ZDAtMmIzZi00ZGFiLTg1N2Qt
MmU2MzlmY2E0NjQwLzEvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81MTI0ZDAtMmIzZi00ZGFiLTg1N2QtMmU2MzlmY2E0NjQw
LzEvekNkYklYM3gzcGlNb2hrcWc2NFIzZlFqcEU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPFmd+Kgo
Px3Kf9W0RTqk0TBGP27r1aXfw6vdKEOYSUpc1YkUM6kXcg0EEamg+NUR3DjYKpko
19H1Tpma0A2zMoxTF0n4r0gwg1xtEmaANt1bxNoL1JgLyiUX8JQJvKQXY1uiRJmN
Utgoy2jihgalMRzD2JW08UM9aWtasbYWfTOrYUhEdQ5sDGmfVfj2l60g198gSRwz
zne5X2r0CluZ6D3PcrrTnkvCoV0mp1JbLXzcRes8RNWIwP8aOxsqW2+Kzs2M/pXQ
KlyofqYiDHlUAM9iuWMQ2V0Poj98+JUPvBPydMyDXUh4CxPF0HoiYJiQ67LPM4P8
i3aQgddzai7RJQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:02:04 2025 by rpki-client