Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
File: ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft (raw, json)
Hash identifier: vWBJK98CtUJTpqaIQZ58Yt6dFKaeKDPqoRiAwmfcm4E=
Subject key identifier: 19:4A:FA:6E:BF:C8:92:E4:13:C9:44:B1:C2:69:01:D0:BC:01:BA:26
Authority key identifier: 64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
Certificate issuer: /CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Certificate serial: 0198D5BB9EE09F342B49F9D1E63724E65CC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 07:01:39 +0000
Manifest this update: Sat 23 Aug 2025 07:01:39 +0000
Manifest next update: Sun 24 Aug 2025 07:01:39 +0000
Files and hashes: 1: ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl (hash: D/BkhSPl4UrN8Isc6fb68nXi2H2BQj2fHlQ9XnzJQ9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:9e:e0:9f:34:2b:49:f9:d1:e6:37:24:e6:5c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Validity
Not Before: Aug 23 07:01:39 2025 GMT
Not After : Aug 24 07:01:39 2025 GMT
Subject: CN=194afa6ebfc892e413c944b1c26901d0bc01ba26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6e:2a:cf:b8:bd:2e:21:b2:a2:85:00:6a:13:
09:28:88:e0:a3:ed:8c:e1:58:85:54:bd:19:63:1f:
f5:b3:01:12:be:44:8d:a3:c4:30:c0:2b:ec:d1:83:
17:04:b5:65:02:c5:b7:ce:9f:e4:9b:40:0a:8f:ca:
eb:78:8b:a3:e1:ae:f8:33:78:b1:fe:d7:b6:45:eb:
a9:84:b8:a3:68:35:d4:59:67:03:2b:5d:79:ab:fc:
dc:48:38:3d:0d:aa:51:5a:a4:b8:fb:01:34:86:bd:
c6:6e:74:97:3f:81:91:9c:fd:6b:cc:bf:d0:86:19:
ac:6a:7e:76:3e:68:b5:0e:bf:24:6c:2a:15:09:f2:
47:bb:2a:7e:7d:91:6d:e8:3a:d7:a3:c8:8b:24:73:
5c:b4:f9:e3:b1:d4:05:49:a7:57:07:cb:50:ad:f8:
1e:ae:66:ed:b6:eb:fe:18:a0:81:35:21:8a:d6:cf:
0b:cf:6f:b8:11:15:e2:84:73:27:ae:46:05:24:3f:
1d:d6:fb:20:1c:0e:1d:0b:69:ff:7e:1b:32:3d:a7:
a7:46:a8:36:33:5d:2a:3c:a8:c2:6c:ab:25:61:44:
ef:4b:03:c8:f7:8e:ac:f5:6f:1e:7f:da:8c:38:68:
45:39:3d:de:3f:65:40:44:55:30:06:08:9f:49:f5:
a4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4A:FA:6E:BF:C8:92:E4:13:C9:44:B1:C2:69:01:D0:BC:01:BA:26
X509v3 Authority Key Identifier:
keyid:64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:47:4d:06:d8:57:c7:e6:07:76:53:46:3c:67:ab:62:c5:34:
98:46:2d:9e:29:e5:a1:ff:1c:aa:61:c9:be:47:bd:c9:50:9f:
1e:20:dd:f4:ec:80:c5:bb:1e:80:56:92:a1:a8:f2:62:75:68:
97:3f:51:44:ed:fc:10:c9:8e:68:e1:b8:6f:06:d3:53:7a:fc:
a3:ff:0c:e9:ba:d4:09:4a:6b:c6:93:43:8c:fb:73:6a:51:15:
67:13:73:4c:dd:7d:6e:47:08:83:ca:0b:2a:bb:cd:39:5f:52:
cb:25:61:16:47:52:1b:c1:47:20:23:f5:3e:66:12:5c:bd:19:
89:e4:82:24:9a:d2:02:fd:85:85:44:57:df:a7:b6:76:b2:0d:
22:91:04:96:9e:42:cb:7a:6a:52:bd:6c:64:df:d8:77:39:e6:
db:64:6b:eb:df:78:09:7f:d8:5d:00:f3:d6:91:00:65:f1:43:
b7:d2:c7:9e:9b:cb:41:29:da:24:73:57:23:9f:05:f7:3d:a3:
4d:c2:b5:05:6b:7f:90:ca:11:a6:5f:fc:e5:cb:37:43:4a:38:
9e:7d:a1:0e:fa:4c:53:3d:77:93:df:0e:99:54:1a:87:a0:03:
b1:60:6d:56:53:68:f7:25:95:fc:08:cd:b4:db:ac:1b:8f:f5:
06:1c:89:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu57gnzQrSfnR5jck5lzBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZDdmN2UxNzQxNzlhMTMzZTMwYzY2MGVkZmE4NmU3NGE0
MGRkOTUwHhcNMjUwODIzMDcwMTM5WhcNMjUwODI0MDcwMTM5WjAzMTEwLwYDVQQD
EygxOTRhZmE2ZWJmYzg5MmU0MTNjOTQ0YjFjMjY5MDFkMGJjMDFiYTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtm4qz7i9LiGyooUAahMJKIjgo+2M
4ViFVL0ZYx/1swESvkSNo8QwwCvs0YMXBLVlAsW3zp/km0AKj8rreIuj4a74M3ix
/te2ReuphLijaDXUWWcDK115q/zcSDg9DapRWqS4+wE0hr3GbnSXP4GRnP1rzL/Q
hhmsan52Pmi1Dr8kbCoVCfJHuyp+fZFt6DrXo8iLJHNctPnjsdQFSadXB8tQrfge
rmbttuv+GKCBNSGK1s8Lz2+4ERXihHMnrkYFJD8d1vsgHA4dC2n/fhsyPaenRqg2
M10qPKjCbKslYUTvSwPI946s9W8ef9qMOGhFOT3eP2VARFUwBgifSfWk6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBlK+m6/yJLkE8lEscJpAdC8AbomMB8GA1UdIwQY
MBaAFGTX9+F0F5oTPjDGYO36hudKQN2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS85ODNjYWEtZWYwNS00NjBmLWEyMGEt
NDE2MjQ2NWI5ODgwLzEvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS85ODNjYWEtZWYwNS00NjBmLWEyMGEtNDE2MjQ2NWI5ODgw
LzEvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI0dNBthX
x+YHdlNGPGerYsU0mEYtninlof8cqmHJvke9yVCfHiDd9OyAxbsegFaSoajyYnVo
lz9RRO38EMmOaOG4bwbTU3r8o/8M6brUCUprxpNDjPtzalEVZxNzTN19bkcIg8oL
KrvNOV9SyyVhFkdSG8FHICP1PmYSXL0ZieSCJJrSAv2FhURX36e2drINIpEElp5C
y3pqUr1sZN/Ydznm22Rr6994CX/YXQDz1pEAZfFDt9LHnpvLQSnaJHNXI58F9z2j
TcK1BWt/kMoRpl/85cs3Q0o4nn2hDvpMUz13k98OmVQah6ADsWBtVlNo9yWV/AjN
tNusG4/1BhyJhQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:09 2025 by rpki-client