Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: 17Nmcru+ih1XO9ekvsFJ8MoWbV9DudZNGUSU3q2DQao=
Subject key identifier: F1:62:6B:89:4C:BA:28:F5:B9:A8:F8:26:2A:29:42:E4:05:FA:4B:87
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 0199FCC69E50CDF2567C5BF18B6ACB6021D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 14:01:39 +0000
Manifest this update: Sun 19 Oct 2025 14:01:39 +0000
Manifest next update: Mon 20 Oct 2025 14:01:39 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: xS3CCPKnj5lXyPb/W5yDLK5179hYS97VcjSel2c2PzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:9e:50:cd:f2:56:7c:5b:f1:8b:6a:cb:60:21:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Oct 19 14:01:39 2025 GMT
Not After : Oct 20 14:01:39 2025 GMT
Subject: CN=f1626b894cba28f5b9a8f8262a2942e405fa4b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:30:ac:14:55:e9:d5:24:74:1c:ff:8f:05:5a:
08:4c:65:6f:2d:d4:42:16:ed:cd:ea:24:a3:c8:25:
ed:3c:82:23:27:a2:3c:7f:f1:bd:4c:e0:7f:a7:b4:
94:91:29:b3:11:7e:56:65:50:ae:07:d0:15:76:48:
ea:31:1f:43:0f:7e:4d:99:c6:54:cb:68:9a:15:b4:
ba:ba:fc:8c:f6:17:22:e3:ae:3d:b8:68:b4:4a:ee:
e1:30:98:75:be:7d:31:d2:8b:f2:34:87:eb:83:86:
f3:01:ee:4c:89:70:40:07:3f:b3:bd:b6:3d:a9:97:
71:ef:91:e4:69:4f:ca:ae:40:40:6b:d2:7f:91:92:
c0:d6:fd:73:9d:70:90:4d:82:63:7b:c8:c1:54:cd:
37:62:f7:2f:9a:34:c7:c5:e9:46:8b:dd:c6:7f:7a:
0e:38:1a:bc:fc:eb:6f:0e:09:7c:e1:6f:4d:13:c6:
9f:91:eb:9c:75:03:f8:79:12:fa:3c:95:64:fd:e5:
fd:f4:f7:b2:bb:2a:d7:a9:29:6f:36:d7:31:63:89:
bf:4b:e8:92:4f:4e:17:f8:24:99:7c:05:4d:bb:a5:
0b:84:f9:a8:87:d0:f2:57:67:01:e1:43:5c:c2:8b:
06:fa:45:81:01:f6:fe:22:ea:6b:b3:75:60:fe:77:
87:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:62:6B:89:4C:BA:28:F5:B9:A8:F8:26:2A:29:42:E4:05:FA:4B:87
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:00:a2:68:63:0e:0a:1e:7b:13:78:9c:57:44:13:e5:d6:7d:
d0:74:8e:25:c8:d7:07:87:44:88:49:fe:44:a2:15:bb:1c:c4:
aa:c9:38:df:ed:c9:9c:00:2a:33:9e:70:84:f1:2c:1e:16:30:
ed:f2:a7:a9:d5:c2:c8:f3:71:ba:15:78:17:bc:1c:fc:9f:49:
83:ee:94:80:72:4b:24:b7:9d:70:74:70:50:7d:20:6a:60:e2:
41:cd:d9:93:a9:ab:a3:e9:3b:0d:16:b3:36:68:a8:1e:e4:3d:
d4:84:c2:d2:7c:fa:f5:4a:03:44:70:8b:60:8b:2c:d6:f8:f6:
70:ee:9d:52:9c:43:60:ff:d5:b7:e7:00:59:f0:6c:ca:ec:59:
2d:88:36:07:b0:98:41:ee:99:1b:c8:10:c3:20:a8:10:24:92:
67:76:d4:6a:c3:d3:fe:23:b7:eb:d7:ad:6e:7f:24:14:f6:91:
fe:88:99:b3:c7:44:15:06:77:da:35:8d:2c:01:aa:48:a4:51:
0a:34:7b:f1:c9:43:46:ac:15:17:97:d9:8a:33:55:10:44:b0:
0b:55:94:ea:ca:9a:b5:90:e4:5d:51:54:a2:5f:a9:92:90:cc:
ea:b3:ab:5d:8b:f2:8e:3f:ab:a6:04:b5:19:76:cc:64:da:ae:
38:ac:14:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:42 2025 by rpki-client