
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: kczVZbLORjUzTmbC2Oc5QQFHO+TW+ydOnI/FyCpGSOA=
Subject key identifier: 5B:DA:3D:38:91:BB:73:A3:3F:3E:AF:0F:15:F7:87:BD:DE:FE:53:A1
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 0198D6981B208ECA215D4830646F0AC156E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 155A
Signing time: Sat 23 Aug 2025 11:02:29 +0000
Manifest this update: Sat 23 Aug 2025 11:02:29 +0000
Manifest next update: Sun 24 Aug 2025 11:02:29 +0000
Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: WcPi5moOk4UUiwqoHQOVHDddU2Z4phEasThQWKi0Tck=)
2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:1b:20:8e:ca:21:5d:48:30:64:6f:0a:c1:56:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Aug 23 11:02:29 2025 GMT
Not After : Aug 24 11:02:29 2025 GMT
Subject: CN=5bda3d3891bb73a33f3eaf0f15f787bddefe53a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:cf:8e:01:09:64:c0:b6:f7:ba:ad:ca:71:
ac:5b:aa:a2:01:44:8b:0c:e0:c2:ea:32:f0:28:b0:
f1:da:5e:09:1e:cb:88:91:8d:aa:d2:cf:02:ed:99:
da:73:c4:87:61:52:9b:a0:78:91:95:c5:f0:dc:7b:
63:35:42:b1:a1:cc:5e:45:de:b8:9b:fb:3c:be:e6:
0a:94:4d:a1:c1:a8:47:ba:83:7c:b1:2f:d2:4b:49:
a8:2a:a6:d5:11:f7:19:b7:99:ec:97:4e:4d:57:4a:
d7:63:85:08:a9:14:38:71:16:41:85:fa:9d:2c:40:
92:33:c0:4f:3a:50:0e:51:be:c4:49:6a:60:6d:81:
05:f8:56:5a:ab:f9:bd:30:a8:11:f8:64:8a:7f:91:
6d:ad:e6:e1:8f:c0:6e:25:47:da:42:7b:1b:0b:a7:
fe:25:ec:12:fe:eb:06:98:e8:22:9a:71:2b:c5:0d:
82:68:dc:31:d0:33:4d:35:34:2f:71:6f:66:89:ae:
82:55:65:2c:e4:be:1e:a2:c8:39:29:ba:e0:84:f1:
d6:fa:ee:6a:b9:d6:3b:4b:e7:30:d9:00:83:f9:79:
de:92:2c:53:9c:72:8c:da:30:d7:90:d8:6d:82:ec:
e8:74:e1:84:08:0a:11:7b:2e:04:16:a9:48:83:44:
2c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DA:3D:38:91:BB:73:A3:3F:3E:AF:0F:15:F7:87:BD:DE:FE:53:A1
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:22:c6:15:58:34:fa:32:de:f5:dc:37:96:e1:4c:2f:39:08:
4c:b6:72:e7:20:d1:03:d6:23:f4:26:0c:02:b0:bf:4e:6f:14:
83:10:c1:95:3e:b2:6b:56:94:b6:d5:32:59:fe:fc:e2:d1:1c:
ba:be:68:27:f1:b6:24:47:0c:2d:b3:70:5b:9f:d0:ed:d2:91:
e3:3f:68:73:41:bf:c2:00:78:3e:8e:7e:a4:70:e5:8c:96:d0:
46:c0:19:90:99:b7:d5:21:4c:91:ac:7a:c3:db:39:39:fc:41:
c5:13:d9:ea:2a:6c:dd:4e:7a:0f:25:fd:75:5a:6c:47:a6:e2:
05:95:e0:a7:22:d6:9d:5e:bf:ff:02:8d:7d:3f:f4:ca:df:03:
de:bf:e5:dd:35:9f:0c:0f:71:d4:51:6d:81:2d:44:09:9f:71:
50:ba:2c:d0:fb:0a:c6:c0:ae:5b:19:7b:77:a9:5f:e0:50:53:
d2:95:b4:bb:13:8c:5c:f9:78:e7:75:01:7c:72:ea:ae:65:e9:
f9:4e:6c:2b:cd:7e:fd:8d:3c:f2:2b:e1:b0:c4:51:27:74:8b:
8a:75:87:4e:00:54:84:2a:9d:1b:7a:33:8f:9d:9a:51:bc:d0:
92:a1:08:73:90:48:6e:5c:9c:c5:e5:c7:ba:bf:32:d9:86:50:
83:20:34:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:40 2025 by rpki-client