Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json)
Hash identifier: 9M1Vo4aewtpLNp23JtegdIQGNOmER3rguyyzeFzaBmU=
Subject key identifier: C5:5F:DF:DD:02:84:B5:8A:B1:A9:4A:33:22:39:07:FE:96:43:7C:78
Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Certificate serial: 0198D5BB98DABBE8F622903EB5819DA0ABAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:01:38 +0000
Manifest this update: Sat 23 Aug 2025 07:01:38 +0000
Manifest next update: Sun 24 Aug 2025 07:01:38 +0000
Files and hashes: 1: apVhYj18Bs_r1Q931zVqcqi5yvI.roa (hash: /gXE2P6qUcVxgRclWTrINQ6lVlcjG0089HciFUVuRsI=)
2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: rkYjwH1qnDsGgPclOus19Ohnf0vGPQ8gt+0gE79Qw90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:98:da:bb:e8:f6:22:90:3e:b5:81:9d:a0:ab:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Validity
Not Before: Aug 23 07:01:38 2025 GMT
Not After : Aug 24 07:01:38 2025 GMT
Subject: CN=c55fdfdd0284b58ab1a94a33223907fe96437c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:08:57:32:bb:d5:33:06:22:f2:a3:c9:17:22:
dc:19:c7:d0:42:7b:05:fb:07:96:be:8d:cb:b8:fa:
fb:b7:f9:80:b3:34:61:de:3d:17:79:8b:37:0a:85:
f3:43:f0:59:1e:6b:d2:8d:ba:7b:d7:7c:f7:48:02:
ed:be:24:c7:b3:9a:40:be:3e:77:df:a7:99:cc:27:
a3:83:c0:44:02:b9:00:ee:ca:5a:64:f2:a7:cc:5c:
7e:53:74:63:2a:10:d6:e5:76:a1:85:94:0c:09:04:
7d:41:3a:8b:98:c1:f5:7b:6d:24:fe:17:08:8d:5c:
6a:9f:60:b5:55:ff:bf:cb:81:90:85:7a:82:90:62:
af:ba:61:8f:ce:00:7b:e3:2d:52:0f:74:61:d4:1a:
26:57:37:4e:b9:ce:e4:b0:96:92:ee:af:8d:6b:e2:
fa:45:b9:38:0b:e7:d2:c2:04:7d:3a:ee:71:0a:85:
67:6a:ac:9e:bf:59:05:a9:75:d1:2d:4c:0f:a4:42:
8f:b5:9d:3b:33:8b:bb:41:1f:be:da:28:c9:8b:e8:
75:c1:e2:5f:ca:c3:e6:86:fb:6f:24:a4:cf:44:ef:
23:75:d2:e8:3f:8a:db:20:a8:df:c1:09:e4:09:21:
2d:01:25:6f:6b:e4:2e:74:b7:7e:23:34:c5:c4:38:
ca:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5F:DF:DD:02:84:B5:8A:B1:A9:4A:33:22:39:07:FE:96:43:7C:78
X509v3 Authority Key Identifier:
keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:63:c7:82:80:cd:7f:d5:de:7a:aa:c3:04:1a:a6:aa:3c:60:
6a:62:c9:a3:11:fb:07:07:7c:93:83:ea:43:d4:97:c5:80:f9:
de:b2:6d:bd:68:dc:78:0f:c6:73:32:c7:44:8d:ae:4f:d7:7f:
01:10:70:4e:17:ba:49:0d:e9:2d:5f:9d:fd:a5:4a:24:e1:a9:
59:94:1e:ff:13:7c:45:7f:67:2d:48:d5:ff:45:d8:18:be:c6:
d3:60:f5:f0:a7:f7:57:ad:13:95:2f:6f:8e:14:cd:f6:90:67:
41:1c:17:56:d6:10:90:d0:99:93:61:7a:6d:19:0f:0c:2f:62:
ef:72:4d:77:f7:12:5e:a3:c5:32:fc:0f:6b:a8:5f:a1:9f:eb:
3c:b7:99:f3:71:a2:99:26:6b:21:9c:d5:a4:10:64:c3:37:e3:
15:64:8e:6f:ae:43:49:32:95:6d:61:f8:a5:3d:14:36:86:54:
f2:b3:19:4d:6d:0f:6f:95:2a:af:8b:50:48:ac:b5:33:e5:82:
a5:5d:d7:8d:8c:fc:5a:8f:cf:6f:a3:61:6c:1d:f4:c4:de:45:
bb:5b:38:ee:72:13:18:0a:08:20:e2:10:18:f6:54:58:25:a6:
cb:63:ae:9f:11:57:0f:3c:ca:98:9d:5c:bb:a4:d4:9a:67:86:
fe:5c:3a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:57 2025 by rpki-client