Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: e50tshqmsnQdjVSNAIwEsD6eokH22vIyObU52/JO27I=
Subject key identifier: 5B:59:F0:68:5A:98:C2:07:98:25:E1:F5:4D:AE:D2:A4:77:69:6B:A3
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 0198D54EA4EE48AD7221427C1ACD25CBDF5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 05:02:37 +0000
Manifest this update: Sat 23 Aug 2025 05:02:37 +0000
Manifest next update: Sun 24 Aug 2025 05:02:37 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: N6OQVEqBcnbxVQXh/IrGMC0bxbXz4ue2ktnSsBiiRVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:a4:ee:48:ad:72:21:42:7c:1a:cd:25:cb:df:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Aug 23 05:02:37 2025 GMT
Not After : Aug 24 05:02:37 2025 GMT
Subject: CN=5b59f0685a98c2079825e1f54daed2a477696ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:78:8f:37:b5:90:9c:9e:00:d9:65:80:6a:d0:
8e:12:2c:97:e2:46:37:18:0f:7a:79:c4:2f:8b:49:
e2:8b:d5:e1:9d:1d:9e:39:78:90:ea:a6:06:84:f7:
5a:b0:86:52:e2:f4:95:81:14:ec:89:aa:99:46:28:
27:06:e6:cb:ca:aa:02:85:88:cc:0b:62:84:1f:0d:
fc:08:f2:a8:fa:69:30:44:e4:d3:7c:da:79:c8:18:
e2:f1:4a:00:d3:3c:21:75:7b:2e:49:b3:2b:09:f9:
be:e2:c2:3b:65:6a:16:d2:d7:05:26:76:41:8a:c4:
84:50:71:de:f3:56:8c:3e:8d:80:f3:07:49:b3:b4:
7c:d9:e0:2f:de:9e:74:8a:be:59:ee:9a:ec:0d:19:
c9:26:33:6f:a9:b9:0d:99:41:4e:32:6e:75:34:4c:
84:ab:eb:8e:f4:d4:b5:f9:c2:2f:06:8d:48:e5:63:
81:fd:c9:45:69:be:89:c3:83:b3:8e:b6:bd:b1:0b:
fc:aa:24:91:e7:43:9b:ba:4c:62:a9:40:7f:56:96:
c1:92:3d:eb:d9:6d:97:e9:e4:c9:1f:53:1b:e4:92:
60:e0:a5:f2:73:db:d8:70:ea:c4:cc:87:8b:a2:cc:
fa:0e:f0:36:b4:7e:1b:a8:26:d1:fa:79:c1:07:78:
c4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:59:F0:68:5A:98:C2:07:98:25:E1:F5:4D:AE:D2:A4:77:69:6B:A3
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:f9:bc:77:d0:39:ee:25:72:97:ba:8a:ad:9d:95:61:7d:06:
cf:f3:55:5a:78:5d:12:f0:d6:c8:75:61:6c:7f:2a:ab:da:d3:
ce:71:72:96:d7:6a:72:98:42:1c:4e:95:14:fa:46:23:66:f2:
0b:4c:70:d8:f6:6d:8f:97:a2:c0:28:e6:d6:dc:ad:1d:6c:c9:
e5:7d:8c:27:a3:1d:a5:e5:19:c1:f5:fd:c5:8e:27:b2:70:c2:
dc:fd:03:26:d4:76:ae:27:64:83:98:5d:de:b1:28:7f:34:bd:
3d:ce:10:e7:c8:ab:00:81:19:11:3e:c8:dc:71:01:c0:b3:14:
fe:5a:8f:83:33:39:51:82:c4:c8:6c:46:ff:f0:3d:4b:44:fb:
5a:a4:20:8f:91:56:6b:d3:53:a0:10:58:91:43:c2:66:af:f2:
07:80:16:c2:5b:e7:77:9e:a5:8c:29:a5:3f:68:aa:6f:d8:7a:
37:c7:de:de:b4:14:4f:51:a0:88:3e:4d:c0:22:09:7c:1b:42:
bd:25:92:37:e2:2b:10:3d:65:ba:23:0c:98:d2:c4:f7:20:cf:
76:6d:96:94:74:9b:8c:40:7c:85:53:ce:0a:6e:28:d2:d4:c2:
e3:b7:16:4e:28:48:99:19:32:77:b8:27:6c:7a:d2:8f:8e:95:
5c:e8:59:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTqTuSK1yIUJ8Gs0ly99eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MGFhMmMwNzlmZGU4N2E1NDUxNWQwMWRlMjFiYzJlODVk
ZTEzMWEwHhcNMjUwODIzMDUwMjM3WhcNMjUwODI0MDUwMjM3WjAzMTEwLwYDVQQD
Eyg1YjU5ZjA2ODVhOThjMjA3OTgyNWUxZjU0ZGFlZDJhNDc3Njk2YmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XiPN7WQnJ4A2WWAatCOEiyX4kY3
GA96ecQvi0nii9XhnR2eOXiQ6qYGhPdasIZS4vSVgRTsiaqZRignBubLyqoChYjM
C2KEHw38CPKo+mkwROTTfNp5yBji8UoA0zwhdXsuSbMrCfm+4sI7ZWoW0tcFJnZB
isSEUHHe81aMPo2A8wdJs7R82eAv3p50ir5Z7prsDRnJJjNvqbkNmUFOMm51NEyE
q+uO9NS1+cIvBo1I5WOB/clFab6Jw4Ozjra9sQv8qiSR50ObukxiqUB/VpbBkj3r
2W2X6eTJH1Mb5JJg4KXyc9vYcOrEzIeLosz6DvA2tH4bqCbR+nnBB3jELQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFtZ8GhamMIHmCXh9U2u0qR3aWujMB8GA1UdIwQY
MBaAFGQKosB5/eh6VFFdAd4hvC6F3hMaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQt
M2E5ODk2NmY1ZTMxLzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQtM2E5ODk2NmY1ZTMx
LzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASvm8d9A5
7iVyl7qKrZ2VYX0Gz/NVWnhdEvDWyHVhbH8qq9rTznFyltdqcphCHE6VFPpGI2by
C0xw2PZtj5eiwCjm1tytHWzJ5X2MJ6MdpeUZwfX9xY4nsnDC3P0DJtR2ridkg5hd
3rEofzS9Pc4Q58irAIEZET7I3HEBwLMU/lqPgzM5UYLEyGxG//A9S0T7WqQgj5FW
a9NToBBYkUPCZq/yB4AWwlvnd56ljCmlP2iqb9h6N8fe3rQUT1GgiD5NwCIJfBtC
vSWSN+IrED1luiMMmNLE9yDPdm2WlHSbjEB8hVPOCm4o0tTC47cWTihImRkyd7gn
bHrSj46VXOhZtg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:36 2025 by rpki-client