Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
File: ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft (raw, json)
Hash identifier: t3LDoh3etQBPXYqpu/Zf0ZRCGsC2ebiLwz7eksbGSLY=
Subject key identifier: AF:62:F3:F4:DB:44:A0:27:E4:10:98:7B:10:EF:6E:8C:68:1A:C8:B5
Authority key identifier: 64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
Certificate issuer: /CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Certificate serial: 0198D697EE0D022D262EAE897CA0263A6FD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
Manifest number: 1651
Signing time: Sat 23 Aug 2025 11:02:17 +0000
Manifest this update: Sat 23 Aug 2025 11:02:17 +0000
Manifest next update: Sun 24 Aug 2025 11:02:17 +0000
Files and hashes: 1: O6yhVl-p8zPN_CcTQWHTkGKQoq0.roa (hash: HphO2Xf8amyd/7vc+hBrhD7m5RPblIsLscX8rs+h9y4=)
2: ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl (hash: tyHudK9yYs0WtPgEPgES4ff/WkfiJr4aJJ/G/+3mG5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:ee:0d:02:2d:26:2e:ae:89:7c:a0:26:3a:6f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Validity
Not Before: Aug 23 11:02:17 2025 GMT
Not After : Aug 24 11:02:17 2025 GMT
Subject: CN=af62f3f4db44a027e410987b10ef6e8c681ac8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:24:2d:a3:2e:c1:13:9e:a8:11:7d:f0:f3:a7:
d3:bb:15:15:c9:7d:e4:88:19:c0:64:14:3c:ba:10:
6f:f0:20:59:3a:4c:d9:64:ce:85:e6:e0:81:55:3c:
75:3c:9a:ac:79:51:b6:d1:c8:4d:93:a7:c9:1e:41:
0f:bd:0d:d9:1e:9e:2b:c2:8f:84:7a:bc:d7:a7:97:
00:e6:2e:78:0d:a1:de:50:bf:4d:20:f3:73:50:2c:
2b:03:27:b4:37:48:f7:1a:ab:4b:25:b8:eb:dd:88:
b2:c3:f5:98:e0:08:20:27:58:61:b0:4d:ed:50:67:
ca:f1:d3:de:c3:22:09:9e:b9:f1:c7:88:b6:83:8e:
d8:68:51:c5:68:08:28:d2:66:50:6a:13:da:32:cb:
44:f4:cb:54:a2:57:3e:93:2a:03:54:af:b9:06:78:
17:67:92:56:65:7d:4c:8d:bf:ca:6d:a2:3e:15:27:
b4:66:46:0e:b8:ad:84:3d:ae:5e:ea:50:f1:d9:d5:
1d:f4:2b:6c:1f:45:66:e4:1f:00:72:7d:ef:17:ca:
b5:ca:13:89:89:b3:55:d0:58:21:61:54:8d:25:c8:
6f:51:2a:0c:da:e8:a4:50:1b:f3:9b:20:53:e0:42:
7a:b9:ff:57:50:ad:43:b4:ef:1b:ff:7e:ef:e4:ae:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:62:F3:F4:DB:44:A0:27:E4:10:98:7B:10:EF:6E:8C:68:1A:C8:B5
X509v3 Authority Key Identifier:
keyid:64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:93:d7:db:c4:b3:c3:95:81:f0:24:99:6c:c9:c5:80:ca:18:
15:03:95:df:ff:ff:00:e2:b3:e5:3f:8c:c0:6a:3a:c3:43:fc:
4a:89:68:4b:e4:88:87:65:f5:5a:6d:26:0c:7b:d4:7f:38:27:
b9:d2:3a:f3:73:c6:b7:2f:1c:df:b3:5f:1c:5b:1b:e7:56:f6:
b5:04:74:bc:ea:09:19:02:7a:90:11:0a:54:01:f4:f8:ff:d5:
73:54:92:04:06:73:3a:70:d9:a1:40:9a:cd:4b:9c:96:79:17:
60:2e:69:9b:f4:4d:3f:f1:3d:45:db:a5:10:c3:e9:72:6d:10:
b2:d1:15:ea:ca:ae:ae:fb:60:4a:70:7c:0e:b2:f5:f2:01:a1:
0b:66:62:0b:0f:a5:90:c4:89:f7:a5:eb:14:48:ad:0b:69:bd:
42:2e:0d:de:55:fb:a1:3f:d6:a2:5d:a5:82:c0:3e:73:22:1d:
12:42:78:b8:a5:55:e0:a7:89:13:e5:f8:9f:48:de:73:17:96:
b5:96:1a:ca:c1:16:42:79:f2:e5:37:36:38:3a:b3:2f:82:67:
63:0a:2c:49:c8:56:1c:79:32:e4:49:48:9b:8d:f5:f4:02:cc:
1b:52:66:73:20:3a:b1:68:9a:bd:50:41:ea:04:69:d0:ef:03:
48:92:83:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWl+4NAi0mLq6JfKAmOm/WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZWY5OGFkYmY0MmQ1YmFjZDI0Y2FkYjBhZGYwOTJjNDU3
NmRhZjMwHhcNMjUwODIzMTEwMjE3WhcNMjUwODI0MTEwMjE3WjAzMTEwLwYDVQQD
EyhhZjYyZjNmNGRiNDRhMDI3ZTQxMDk4N2IxMGVmNmU4YzY4MWFjOGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8yQtoy7BE56oEX3w86fTuxUVyX3k
iBnAZBQ8uhBv8CBZOkzZZM6F5uCBVTx1PJqseVG20chNk6fJHkEPvQ3ZHp4rwo+E
erzXp5cA5i54DaHeUL9NIPNzUCwrAye0N0j3GqtLJbjr3Yiyw/WY4AggJ1hhsE3t
UGfK8dPewyIJnrnxx4i2g47YaFHFaAgo0mZQahPaMstE9MtUolc+kyoDVK+5BngX
Z5JWZX1Mjb/KbaI+FSe0ZkYOuK2EPa5e6lDx2dUd9CtsH0Vm5B8Acn3vF8q1yhOJ
ibNV0FghYVSNJchvUSoM2uikUBvzmyBT4EJ6uf9XUK1DtO8b/37v5K531wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9i8/TbRKAn5BCYexDvboxoGsi1MB8GA1UdIwQY
MBaAFGTvmK2/QtW6zSTK2wrfCSxFdtrzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lNDliYzUtNjhjNS00Y2UyLWE5Yjkt
MDNjNmZlYWYxZDlmLzEvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9lNDliYzUtNjhjNS00Y2UyLWE5YjktMDNjNmZlYWYxZDlm
LzEvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY5PX28Sz
w5WB8CSZbMnFgMoYFQOV3///AOKz5T+MwGo6w0P8SoloS+SIh2X1Wm0mDHvUfzgn
udI683PGty8c37NfHFsb51b2tQR0vOoJGQJ6kBEKVAH0+P/Vc1SSBAZzOnDZoUCa
zUuclnkXYC5pm/RNP/E9RdulEMPpcm0QstEV6squrvtgSnB8DrL18gGhC2ZiCw+l
kMSJ96XrFEitC2m9Qi4N3lX7oT/Wol2lgsA+cyIdEkJ4uKVV4KeJE+X4n0jecxeW
tZYaysEWQnny5Tc2ODqzL4JnYwosSchWHHky5ElIm4319ALMG1JmcyA6sWiavVBB
6gRp0O8DSJKDTg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:30:48 2025 by rpki-client