Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
File: z1PAwqcKnguguGDSKQTbsOkrkgs.mft (raw, json)
Hash identifier: 2sbHLdkzKpq5OUUcCRL15Mq3pW5F8gyo/PGA5D+X7mU=
Subject key identifier: 5E:71:F1:D2:5D:B2:23:DB:09:F3:33:2C:D7:D4:DA:3A:04:27:5D:85
Authority key identifier: CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
Certificate issuer: /CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Certificate serial: 0199FDD9182F816CAB3A8ACB8A277C4166C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
Manifest number: 0651
Signing time: Sun 19 Oct 2025 19:01:27 +0000
Manifest this update: Sun 19 Oct 2025 19:01:27 +0000
Manifest next update: Mon 20 Oct 2025 19:01:27 +0000
Files and hashes: 1: PYhNNzuk9SlKthV_33iOWNORmCM.roa (hash: 8PTIGwrPsJPGQk8kIZHLm7NCCrY0xp7lDA1kLSNWPlg=)
2: z1PAwqcKnguguGDSKQTbsOkrkgs.crl (hash: iltcZ2XftG3E2ywKAT1//W9rqr8TygvYa6uF0Z3Z5Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:18:2f:81:6c:ab:3a:8a:cb:8a:27:7c:41:66:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Validity
Not Before: Oct 19 19:01:27 2025 GMT
Not After : Oct 20 19:01:27 2025 GMT
Subject: CN=5e71f1d25db223db09f3332cd7d4da3a04275d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:39:f8:b5:4a:b2:11:ad:c3:43:20:c7:46:
56:a5:46:56:c7:80:3e:a8:d9:27:d7:0c:c3:04:7e:
a5:e5:8c:e4:67:b9:cd:a8:b7:09:d7:5c:10:8c:03:
a7:94:9e:b9:89:54:1f:af:3c:6c:b3:96:69:60:ba:
1d:45:f4:1e:dc:1e:6b:e9:9b:ee:89:37:c4:82:ec:
0b:b1:f2:12:17:b8:e7:17:55:51:d8:ae:aa:8d:d7:
92:69:c1:1f:84:fd:59:84:c8:11:07:ba:dd:1b:2e:
d3:4d:78:07:b4:d9:d2:9e:1d:22:4b:84:af:d0:14:
bb:04:c4:2b:d3:93:8e:57:e6:e6:5b:fd:0c:e7:62:
77:9a:5a:cf:3b:a9:f2:38:79:5a:a7:e9:d7:75:bb:
27:aa:a0:e5:1d:e6:6f:d4:ae:b4:bc:b7:7a:16:1f:
41:18:31:71:14:0b:e8:15:be:da:24:4a:e7:87:34:
b0:46:48:24:d3:ff:78:d9:dd:92:b8:50:75:75:1a:
c4:20:2f:af:0d:76:50:6a:01:f1:e7:47:e9:56:aa:
34:cc:45:73:c1:58:4a:a0:7f:c5:03:33:e7:ab:c3:
cb:d7:53:ab:68:f3:04:c9:46:cc:8c:c7:ce:00:6e:
b9:c1:6b:55:7f:86:d7:a7:46:94:06:91:cd:f1:15:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:71:F1:D2:5D:B2:23:DB:09:F3:33:2C:D7:D4:DA:3A:04:27:5D:85
X509v3 Authority Key Identifier:
keyid:CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:57:bb:32:dd:7e:d5:d8:08:7d:be:7a:c4:8f:88:f8:2b:b3:
9e:13:07:76:b0:32:be:7c:4e:f8:2b:1b:13:fd:ba:56:ae:f3:
9e:75:80:6b:47:e1:c9:87:a7:1d:36:15:87:1e:2a:01:63:4c:
9c:7a:49:e3:0d:3e:c9:d1:ce:2b:de:94:bb:12:f9:c4:b4:4f:
3b:fb:58:ec:cf:13:7f:c1:ae:12:98:56:08:a2:c3:62:7c:29:
f7:f1:bd:54:57:a5:a5:da:b3:fe:7e:f9:bc:9b:e1:ef:81:9d:
4a:87:b7:f6:6b:9f:71:39:d7:c5:ee:ab:60:0c:3d:36:e1:8c:
6c:b0:1b:8f:4b:4a:e5:ec:f6:61:15:1c:78:22:7d:57:d2:a7:
b0:07:6b:8d:cb:ac:ce:10:60:70:7f:8e:4e:3a:fb:77:65:63:
08:24:63:72:21:13:1e:64:ec:0a:46:3b:43:53:b3:75:ad:1c:
1f:44:65:01:ab:b6:51:7a:2e:09:4f:7c:18:2f:5d:64:57:55:
d9:e4:21:12:13:7a:5e:3e:93:e5:01:28:54:28:30:a9:77:37:
a3:9d:34:b6:d5:4c:02:6e:ee:32:8d:8f:b9:a2:05:2e:88:db:
15:0a:1e:66:aa:67:56:1a:f7:6c:42:de:33:4c:8a:c7:6c:79:
40:5f:54:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:04:07 2025 by rpki-client