Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json)
Hash identifier: WzLmOiIaahfz7W3li+dHdU8pkLGlmT+BYblrexWNq5Y=
Subject key identifier: 15:18:F1:9C:5E:B2:37:5C:EC:BE:13:1F:4D:C1:92:F7:A3:D5:66:4E
Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Certificate serial: 0198D705DF8CDE8944E592FAF53033535920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
Manifest number: 0C3E
Signing time: Sat 23 Aug 2025 13:02:23 +0000
Manifest this update: Sat 23 Aug 2025 13:02:23 +0000
Manifest next update: Sun 24 Aug 2025 13:02:23 +0000
Files and hashes: 1: ZIl-tGPYsmILe8aUvhHfFRisBTg.roa (hash: ELX+nfW5VdhOFYsiqhpPo4rEHXv1DoXfvUrKNYNv+iU=)
2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: OrM4JrwvaDDm4NzzyW0X8bxiqxeKxQ2ML8HHGE6xAnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:df:8c:de:89:44:e5:92:fa:f5:30:33:53:59:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Validity
Not Before: Aug 23 13:02:23 2025 GMT
Not After : Aug 24 13:02:23 2025 GMT
Subject: CN=1518f19c5eb2375cecbe131f4dc192f7a3d5664e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7b:22:2f:5f:b4:aa:24:6c:3d:a9:42:db:08:
b6:68:9a:d8:8f:27:47:1c:9a:3c:30:19:4a:d9:42:
ca:7e:d1:e7:fe:b1:5b:8b:2a:88:75:bc:f2:8b:62:
d9:81:bf:47:1f:c3:bd:29:07:3a:76:7a:a3:24:3c:
9f:eb:11:54:29:b2:05:35:1f:c8:ec:9d:16:13:94:
b9:a1:70:37:6f:9e:ac:c2:ed:b0:29:0c:5f:c4:5b:
9d:d6:91:74:f4:62:99:5a:b0:11:df:9f:30:f8:7a:
2a:48:e4:f6:03:de:fa:7e:04:1c:2b:a7:b2:59:35:
50:44:e5:12:a4:df:4e:db:06:63:a2:20:c8:b1:7d:
dc:13:12:8d:99:54:50:4c:de:65:c9:81:17:5b:3e:
c5:04:d6:dc:50:fd:50:8b:47:88:93:8a:75:28:f0:
04:ac:43:97:0e:9f:28:b9:f8:5a:92:47:c2:a3:ea:
4a:dd:83:a8:32:6e:8c:fe:33:af:6d:dd:65:df:f5:
2f:3c:7e:d0:c3:7f:85:d8:a2:74:99:b1:79:2a:f6:
2a:16:1d:82:b0:59:71:98:1c:4e:d0:1e:56:2b:74:
80:d5:26:50:81:37:5b:17:d6:a4:07:3b:89:f0:ad:
ef:0e:ba:9a:3c:27:c9:ea:cb:4c:eb:ba:e5:8d:1b:
5c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:18:F1:9C:5E:B2:37:5C:EC:BE:13:1F:4D:C1:92:F7:A3:D5:66:4E
X509v3 Authority Key Identifier:
keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9f:5b:d8:66:90:75:76:9b:a6:3b:86:eb:c8:0f:b5:fb:7e:
9e:9d:6d:d9:78:48:9a:d3:0d:ac:f4:8b:9d:bb:8f:d4:1c:8b:
8b:38:d8:04:0d:b3:6b:a9:ed:7b:49:55:93:a1:a4:f2:55:86:
f7:a1:2c:b1:d7:ee:7f:17:c6:46:33:7c:55:2b:2d:68:56:37:
0f:fc:f8:b7:ca:50:f7:3e:8b:16:db:c3:a7:aa:b0:33:a0:3c:
b5:24:c9:46:16:3f:ea:5f:ff:c5:9e:cd:08:7c:8e:d7:28:aa:
47:f5:3d:e5:87:30:cc:c5:ac:fe:a1:65:ab:4d:77:d9:7d:b6:
e8:01:9d:93:29:7d:3c:12:9a:dc:c9:6c:e8:0d:af:16:68:63:
4a:9f:88:63:96:c1:12:c8:66:b8:ef:52:7b:0e:0f:45:84:46:
9b:5f:6f:73:70:53:00:69:96:bb:50:9b:db:be:c2:e7:ff:59:
24:02:7d:1d:48:35:03:a3:af:84:b5:bf:7e:ae:f2:c1:3c:b9:
f8:04:a5:d7:fc:00:12:e6:ba:f4:03:e5:1f:8c:ac:2b:33:85:
90:54:d8:6b:4a:88:b3:97:16:68:0e:0c:f9:2d:cd:d7:56:c1:
0d:f3:c0:ad:77:ab:6e:72:6b:87:77:85:7d:3a:6f:24:90:22:
83:3d:e1:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBd+M3olE5ZL69TAzU1kgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNzQxZTdkZTY1N2U0YTEwZjkzY2E5MmM1MTdhODFiMmMw
YjI1MWUwHhcNMjUwODIzMTMwMjIzWhcNMjUwODI0MTMwMjIzWjAzMTEwLwYDVQQD
EygxNTE4ZjE5YzVlYjIzNzVjZWNiZTEzMWY0ZGMxOTJmN2EzZDU2NjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4nsiL1+0qiRsPalC2wi2aJrYjydH
HJo8MBlK2ULKftHn/rFbiyqIdbzyi2LZgb9HH8O9KQc6dnqjJDyf6xFUKbIFNR/I
7J0WE5S5oXA3b56swu2wKQxfxFud1pF09GKZWrAR358w+HoqSOT2A976fgQcK6ey
WTVQROUSpN9O2wZjoiDIsX3cExKNmVRQTN5lyYEXWz7FBNbcUP1Qi0eIk4p1KPAE
rEOXDp8oufhakkfCo+pK3YOoMm6M/jOvbd1l3/UvPH7Qw3+F2KJ0mbF5KvYqFh2C
sFlxmBxO0B5WK3SA1SZQgTdbF9akBzuJ8K3vDrqaPCfJ6stM67rljRtcawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBUY8Zxesjdc7L4TH03Bkvej1WZOMB8GA1UdIwQY
MBaAFM50Hn3mV+ShD5PKksUXqBssCyUeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9jOWE5ZDEtYjEzYy00MDNkLWJkMWMt
ZDEyYTM3MmY1MTczLzEvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9jOWE5ZDEtYjEzYy00MDNkLWJkMWMtZDEyYTM3MmY1MTcz
LzEvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI59b2GaQ
dXabpjuG68gPtft+np1t2XhImtMNrPSLnbuP1ByLizjYBA2za6nte0lVk6Gk8lWG
96EssdfufxfGRjN8VSstaFY3D/z4t8pQ9z6LFtvDp6qwM6A8tSTJRhY/6l//xZ7N
CHyO1yiqR/U95YcwzMWs/qFlq0132X226AGdkyl9PBKa3Mls6A2vFmhjSp+IY5bB
EshmuO9Sew4PRYRGm19vc3BTAGmWu1Cb277C5/9ZJAJ9HUg1A6OvhLW/fq7ywTy5
+ASl1/wAEua69APlH4ysKzOFkFTYa0qIs5cWaA4M+S3N11bBDfPArXerbnJrh3eF
fTpvJJAigz3hFw==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:23:25 2025 by rpki-client