Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
File: z1PAwqcKnguguGDSKQTbsOkrkgs.mft (raw, json)
Hash identifier: L6TSfz7YAWVjl25+pWrJo6p3pob3Os7DlZ2SaQKmoeo=
Subject key identifier: 4E:A0:A3:89:07:C5:7F:17:B3:2F:7E:18:38:4E:9A:C2:BC:E6:15:C1
Authority key identifier: CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
Certificate issuer: /CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Certificate serial: 0198D660D65ABBAAB80C7B14398A026DD56C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
Manifest number: 05B8
Signing time: Sat 23 Aug 2025 10:02:06 +0000
Manifest this update: Sat 23 Aug 2025 10:02:06 +0000
Manifest next update: Sun 24 Aug 2025 10:02:06 +0000
Files and hashes: 1: PYhNNzuk9SlKthV_33iOWNORmCM.roa (hash: 8PTIGwrPsJPGQk8kIZHLm7NCCrY0xp7lDA1kLSNWPlg=)
2: z1PAwqcKnguguGDSKQTbsOkrkgs.crl (hash: eFCTPbTlScLazkpZUo3Dgief9E5K1Oibxr4unGl1k+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:d6:5a:bb:aa:b8:0c:7b:14:39:8a:02:6d:d5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Validity
Not Before: Aug 23 10:02:06 2025 GMT
Not After : Aug 24 10:02:06 2025 GMT
Subject: CN=4ea0a38907c57f17b32f7e18384e9ac2bce615c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c0:0a:c5:0c:65:10:0b:3c:76:0d:8d:37:69:
f7:e2:98:f8:6c:3e:88:3d:dd:20:37:01:51:a2:e6:
5d:a6:c2:58:c1:10:45:91:a0:e8:f9:a1:33:cb:bb:
50:4b:74:e2:09:87:be:a5:93:51:19:bb:89:6a:26:
6d:e9:f6:bc:5b:bb:91:68:3f:d2:8a:f8:f7:f7:e2:
8b:01:8b:f6:91:66:ec:1b:01:1a:ff:bc:b3:ba:f0:
d2:d9:b2:d6:ee:f5:be:b5:d5:82:9a:c8:17:19:ea:
7b:c1:75:06:b7:2e:f6:f7:a2:38:af:7d:3e:39:f0:
14:6a:34:83:67:b3:af:d4:48:b5:5e:e7:8c:7a:ea:
db:17:53:a8:ea:1e:0d:96:25:25:8e:0f:c3:7c:d4:
48:21:f3:fd:05:38:cf:1e:13:35:64:8d:88:ef:92:
66:45:c8:fd:73:26:00:f0:81:7b:9e:01:59:c2:8f:
4b:ef:d0:8b:66:a8:65:e2:4b:c4:43:cf:fc:c7:3d:
09:8d:0b:a7:4d:83:fb:47:d3:c0:ef:18:42:79:25:
70:5f:fe:14:34:e9:81:ec:5c:48:7b:07:c8:a8:ee:
b5:4e:4b:82:66:d3:23:9d:fa:02:95:88:e9:9d:ed:
64:44:af:39:65:2a:1c:11:06:f0:1e:d2:e0:bf:91:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A0:A3:89:07:C5:7F:17:B3:2F:7E:18:38:4E:9A:C2:BC:E6:15:C1
X509v3 Authority Key Identifier:
keyid:CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:f7:ed:4e:a6:2d:6a:b6:ae:36:83:70:b4:21:59:3c:ab:0f:
14:cd:8c:18:50:1b:92:1a:43:3c:ae:60:73:69:28:3a:04:65:
23:8f:f3:48:3d:8d:fa:60:ff:b3:19:b7:87:b9:cb:b9:44:ae:
e4:ad:f6:fb:25:88:56:95:2c:be:64:2b:41:14:fa:16:f0:78:
f2:fc:90:74:89:93:a7:16:dd:f2:a0:a5:f3:50:82:5c:c4:e6:
b2:0f:ff:f8:fd:55:11:1f:0c:b4:87:47:7a:eb:46:a4:59:2f:
45:da:44:d7:4c:49:60:d9:2c:71:1b:f5:fe:4b:3c:91:d4:51:
23:9f:01:3c:d7:da:82:f8:a2:d5:fe:28:31:aa:67:80:4c:36:
70:01:04:22:d3:1d:b2:fb:0c:6f:af:a7:6e:f5:6b:b0:29:01:
7f:79:0a:a8:66:2e:98:2f:ae:12:6e:4d:4b:c9:ef:b8:ce:b8:
ae:53:35:c0:73:9d:bb:45:6a:1b:17:c2:08:99:4f:7a:42:16:
24:00:34:52:ea:61:1b:bf:8f:9e:bd:01:7c:83:83:99:79:42:
c3:51:1e:b6:2e:d4:2c:24:c7:1b:41:07:31:a7:da:af:07:52:
98:70:df:b0:23:5a:36:ee:13:c8:5d:f2:88:53:0b:a0:79:a7:
48:56:de:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYNZau6q4DHsUOYoCbdVsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNTNjMGMyYTcwYTllMGJhMGI4NjBkMjI5MDRkYmIwZTky
YjkyMGIwHhcNMjUwODIzMTAwMjA2WhcNMjUwODI0MTAwMjA2WjAzMTEwLwYDVQQD
Eyg0ZWEwYTM4OTA3YzU3ZjE3YjMyZjdlMTgzODRlOWFjMmJjZTYxNWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsAKxQxlEAs8dg2NN2n34pj4bD6I
Pd0gNwFRouZdpsJYwRBFkaDo+aEzy7tQS3TiCYe+pZNRGbuJaiZt6fa8W7uRaD/S
ivj39+KLAYv2kWbsGwEa/7yzuvDS2bLW7vW+tdWCmsgXGep7wXUGty7296I4r30+
OfAUajSDZ7Ov1Ei1XueMeurbF1Oo6h4NliUljg/DfNRIIfP9BTjPHhM1ZI2I75Jm
Rcj9cyYA8IF7ngFZwo9L79CLZqhl4kvEQ8/8xz0JjQunTYP7R9PA7xhCeSVwX/4U
NOmB7FxIewfIqO61TkuCZtMjnfoClYjpne1kRK85ZSocEQbwHtLgv5E5eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE6go4kHxX8Xsy9+GDhOmsK85hXBMB8GA1UdIwQY
MBaAFM9TwMKnCp4LoLhg0ikE27DpK5ILMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9iZGE3Y2MtNjQ1Yy00ODIxLWFkMjIt
M2U0NGZjYWMzYmM1LzEvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9iZGE3Y2MtNjQ1Yy00ODIxLWFkMjItM2U0NGZjYWMzYmM1
LzEvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq/ftTqYt
arauNoNwtCFZPKsPFM2MGFAbkhpDPK5gc2koOgRlI4/zSD2N+mD/sxm3h7nLuUSu
5K32+yWIVpUsvmQrQRT6FvB48vyQdImTpxbd8qCl81CCXMTmsg//+P1VER8MtIdH
eutGpFkvRdpE10xJYNkscRv1/ks8kdRRI58BPNfagvii1f4oMapngEw2cAEEItMd
svsMb6+nbvVrsCkBf3kKqGYumC+uEm5NS8nvuM64rlM1wHOdu0VqGxfCCJlPekIW
JAA0UuphG7+Pnr0BfIODmXlCw1Eeti7ULCTHG0EHMafarwdSmHDfsCNaNu4TyF3y
iFMLoHmnSFbeIw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:18:17 2025 by rpki-client