Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: KCsVtAXV6a2Eyj+TQuWjOBtaLjAQltJsEjnJqL0bXsE=
Subject key identifier: 61:CD:20:8F:54:E0:A5:D9:44:18:F8:DB:63:DE:54:9E:11:38:38:48
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 0199FC216C436EBE0345765DA9DCDD5FFD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 11:01:12 +0000
Manifest this update: Sun 19 Oct 2025 11:01:12 +0000
Manifest next update: Mon 20 Oct 2025 11:01:12 +0000
Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: u7FCRmJhdjuipZswxW+ZAjaTmHkx8pddawx89UWgXkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6c:43:6e:be:03:45:76:5d:a9:dc:dd:5f:fd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Oct 19 11:01:12 2025 GMT
Not After : Oct 20 11:01:12 2025 GMT
Subject: CN=61cd208f54e0a5d94418f8db63de549e11383848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d2:b3:7c:5a:d2:cd:81:c7:2d:65:6c:8e:91:
66:cd:95:f6:4a:e2:a9:16:89:0b:59:40:d1:1e:51:
22:dd:ac:e6:6d:ac:f5:1b:a8:4d:c3:5a:25:bf:4d:
6f:76:c9:74:b8:e8:f3:5f:74:4f:59:af:c3:bf:25:
4e:92:6b:ae:4e:0a:ac:4f:b3:57:3e:db:b2:8f:e0:
1c:bb:63:69:f7:eb:f8:98:39:d0:fd:98:89:3a:ca:
50:c1:c5:47:1c:a5:bf:53:56:11:f2:83:02:c2:22:
58:f1:82:01:16:ac:c8:dd:fe:80:70:f7:85:10:2e:
6f:ed:a9:81:a1:5e:9b:d0:53:cb:8e:65:76:ed:11:
1f:c5:cb:e1:66:55:e8:e8:35:57:e3:d1:3e:61:59:
0d:5e:7f:16:81:66:89:cb:49:6a:76:14:22:c6:ef:
e2:d1:d5:5f:0c:03:33:f6:ef:5b:f0:d3:32:c6:71:
b0:6b:ac:65:63:e2:ae:2b:f6:a3:28:b5:34:55:f0:
0c:84:ae:47:ef:ab:e9:fd:de:6e:2b:40:68:a0:23:
5c:a8:bd:12:bc:93:6f:b4:c7:ef:c7:52:6c:3b:73:
6e:e4:08:e4:13:71:a1:d4:67:7b:d8:62:7b:82:ad:
06:ec:cf:7b:65:50:f8:3e:5f:d4:67:c1:24:5c:24:
1b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CD:20:8F:54:E0:A5:D9:44:18:F8:DB:63:DE:54:9E:11:38:38:48
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:db:f3:ac:8d:67:e4:82:72:58:a0:34:0f:8e:4b:a9:e8:36:
b9:92:af:3c:62:7b:5d:37:1c:bf:6a:4e:c0:b4:af:05:c5:25:
34:23:86:31:d1:b9:13:21:e5:3c:92:28:f6:1c:c7:75:dc:1b:
2f:0b:db:ea:7b:ae:90:67:7c:52:11:10:dd:7a:9f:7e:af:e5:
4c:00:ff:f4:a2:60:b0:c1:eb:e3:8c:4d:7e:c1:2c:8e:fd:bc:
6b:15:86:7c:94:32:d6:8f:84:cc:fe:51:d0:5d:49:8d:75:c2:
65:4f:03:79:6e:e6:18:2a:cd:ec:ec:e5:e6:c1:2b:84:ae:e8:
29:0d:e7:c2:ac:d3:2a:41:c3:4c:0f:3d:2c:c3:c7:6a:41:eb:
9b:aa:2e:2a:99:92:08:9c:ef:ef:c7:29:46:5f:c0:c5:79:f1:
5e:85:51:fa:50:15:99:fa:c4:8b:e9:52:ca:f9:53:7d:ed:54:
8a:96:8a:f0:0b:7d:51:99:c3:e7:3f:c8:84:55:f8:15:9e:a0:
12:8d:55:5f:af:dc:f1:08:ae:a0:f7:30:80:28:be:c8:e3:80:
d9:f5:55:54:b5:c6:89:fe:f4:47:36:a8:34:32:42:75:66:f8:
3c:f1:d7:6d:9d:32:f7:c2:d6:eb:4a:34:c7:87:2f:d9:82:b8:
4d:fa:7b:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IWxDbr4DRXZdqdzdX/0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMzAzOGE3MTdiMTU0ZTFjZmE0NzExNjgzMmRhMjZmMjhi
MmEzMDQwHhcNMjUxMDE5MTEwMTEyWhcNMjUxMDIwMTEwMTEyWjAzMTEwLwYDVQQD
Eyg2MWNkMjA4ZjU0ZTBhNWQ5NDQxOGY4ZGI2M2RlNTQ5ZTExMzgzODQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9KzfFrSzYHHLWVsjpFmzZX2SuKp
FokLWUDRHlEi3azmbaz1G6hNw1olv01vdsl0uOjzX3RPWa/DvyVOkmuuTgqsT7NX
Ptuyj+Acu2Np9+v4mDnQ/ZiJOspQwcVHHKW/U1YR8oMCwiJY8YIBFqzI3f6AcPeF
EC5v7amBoV6b0FPLjmV27REfxcvhZlXo6DVX49E+YVkNXn8WgWaJy0lqdhQixu/i
0dVfDAMz9u9b8NMyxnGwa6xlY+KuK/ajKLU0VfAMhK5H76vp/d5uK0BooCNcqL0S
vJNvtMfvx1JsO3Nu5AjkE3Gh1Gd72GJ7gq0G7M97ZVD4Pl/UZ8EkXCQb8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGHNII9U4KXZRBj422PeVJ4RODhIMB8GA1UdIwQY
MBaAFK8wOKcXsVThz6RxFoMtom8osqMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMt
ODYwYzQ5ZDBlYjZhLzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMtODYwYzQ5ZDBlYjZh
LzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAANvzrI1n
5IJyWKA0D45Lqeg2uZKvPGJ7XTccv2pOwLSvBcUlNCOGMdG5EyHlPJIo9hzHddwb
Lwvb6nuukGd8UhEQ3Xqffq/lTAD/9KJgsMHr44xNfsEsjv28axWGfJQy1o+EzP5R
0F1JjXXCZU8DeW7mGCrN7Ozl5sErhK7oKQ3nwqzTKkHDTA89LMPHakHrm6ouKpmS
CJzv78cpRl/AxXnxXoVR+lAVmfrEi+lSyvlTfe1UipaK8At9UZnD5z/IhFX4FZ6g
Eo1VX6/c8QiuoPcwgCi+yOOA2fVVVLXGif70RzaoNDJCdWb4PPHXbZ0y98LW60o0
x4cv2YK4Tfp7gA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:21 2025 by rpki-client