Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: E/WHevZ+B94xs1wf7LuCVMFgWfenaeWqfl4QJxSvvfY=
Subject key identifier: 15:DB:04:85:C0:43:B6:3B:08:36:74:62:5D:F3:7E:1A:FB:5E:53:03
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 01987E2F0512EDD6707B8610057663D463AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 161C
Signing time: Wed 06 Aug 2025 07:01:07 +0000
Manifest this update: Wed 06 Aug 2025 07:01:07 +0000
Manifest next update: Thu 07 Aug 2025 07:01:07 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: EOPTSp3o11z7AwskJKYKhPJljt5PiDFjo1SnavYHxHc=)
2: J2pjS99ea6SMp7lb4ewsQffNh8c.roa (hash: 704wqH0ujui7TKq+2h1aj9AcNsB+Fn+EgZ7FOUmvebI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2f:05:12:ed:d6:70:7b:86:10:05:76:63:d4:63:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Aug 6 07:01:07 2025 GMT
Not After : Aug 7 07:01:07 2025 GMT
Subject: CN=15db0485c043b63b083674625df37e1afb5e5303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:48:1b:72:7f:f8:0b:62:a4:16:48:0e:04:ac:
46:e6:91:a2:a1:a1:87:e4:2f:0a:fb:b4:0e:3e:77:
8b:ae:03:57:2b:d2:bc:f3:39:31:3d:f3:4d:21:87:
15:f9:c8:7a:49:55:db:77:c8:ae:af:0a:d4:0e:09:
a8:4c:76:a2:0b:df:9e:cd:d2:0f:92:7d:85:6a:3d:
2c:a2:77:d5:ab:2b:af:99:29:de:27:ae:be:d5:04:
36:68:27:47:6d:e4:d2:76:4e:71:cd:c8:38:78:91:
f4:5a:e8:9a:1f:70:d1:36:ad:84:5e:79:66:7a:f2:
97:ef:cb:21:c9:49:a6:0b:b8:af:38:df:87:c2:ec:
3c:63:9d:3b:fd:5e:29:36:fb:dc:68:04:85:a5:7c:
f3:87:bf:60:7e:17:d4:b8:8a:81:63:22:71:04:d5:
11:e1:5f:f3:36:a1:cf:41:16:ec:cb:da:ce:51:ba:
6b:e6:45:8f:09:c9:30:26:30:7c:8f:a6:fe:e1:20:
b6:e8:95:4b:54:8a:75:b4:ef:cd:38:31:46:bf:96:
96:2c:32:fc:99:5c:97:0b:19:0e:bb:c9:98:d6:81:
6b:b5:df:c4:69:d1:77:b9:b0:54:90:79:60:2e:51:
1c:13:fd:ab:9f:2b:e5:96:74:17:46:42:f5:96:c6:
4e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DB:04:85:C0:43:B6:3B:08:36:74:62:5D:F3:7E:1A:FB:5E:53:03
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:18:96:91:6b:1d:61:ea:7d:98:5f:11:b2:13:e0:67:42:9f:
14:1d:94:40:e1:ea:0a:04:bc:3f:69:af:92:ee:57:b0:65:31:
14:a4:6a:db:ec:12:82:e6:5d:0b:1f:72:1b:a3:7a:46:ac:a4:
61:88:c1:a3:cc:c5:63:c0:ab:c3:3d:50:9b:e1:7e:f8:7d:38:
86:5f:9a:4e:f1:86:ea:32:0d:d4:c3:cc:0b:c7:c3:cd:23:04:
e3:65:1c:19:ea:7a:71:69:1b:42:3a:e8:ac:95:03:b3:2c:8e:
07:0d:de:6d:40:a7:74:e2:ed:91:ef:4c:ed:16:01:d8:84:66:
50:d3:6f:a4:17:f6:37:36:51:1d:0d:39:a6:e7:c1:b2:05:05:
93:cb:e0:21:09:6d:26:cf:bc:53:f0:c6:ed:07:f3:20:50:a1:
5a:cd:bd:45:81:a9:f2:6e:6d:8d:f3:eb:aa:96:44:37:16:90:
fa:69:56:e1:f6:77:54:5a:7f:25:b3:5a:82:e7:06:ef:f4:cb:
11:ed:a3:6c:80:ae:55:04:75:50:ca:d3:9b:3c:65:b5:7a:bd:
62:c3:6e:36:90:60:22:e9:a5:1c:1a:9c:ef:d6:86:50:e0:bc:
aa:f1:98:14:f6:dd:01:29:e5:5e:60:a8:28:ed:7a:09:46:39:
03:1a:12:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh+LwUS7dZwe4YQBXZj1GOvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MzBhMjk5NDFlZmJjN2E3OTI3ZjAyOTQ4MWUyYzcyNWEx
YTY3MTEwHhcNMjUwODA2MDcwMTA3WhcNMjUwODA3MDcwMTA3WjAzMTEwLwYDVQQD
EygxNWRiMDQ4NWMwNDNiNjNiMDgzNjc0NjI1ZGYzN2UxYWZiNWU1MzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0gbcn/4C2KkFkgOBKxG5pGioaGH
5C8K+7QOPneLrgNXK9K88zkxPfNNIYcV+ch6SVXbd8iurwrUDgmoTHaiC9+ezdIP
kn2Faj0sonfVqyuvmSneJ66+1QQ2aCdHbeTSdk5xzcg4eJH0WuiaH3DRNq2EXnlm
evKX78shyUmmC7ivON+Hwuw8Y507/V4pNvvcaASFpXzzh79gfhfUuIqBYyJxBNUR
4V/zNqHPQRbsy9rOUbpr5kWPCckwJjB8j6b+4SC26JVLVIp1tO/NODFGv5aWLDL8
mVyXCxkOu8mY1oFrtd/EadF3ubBUkHlgLlEcE/2rnyvllnQXRkL1lsZOpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBXbBIXAQ7Y7CDZ0Yl3zfhr7XlMDMB8GA1UdIwQY
MBaAFNcwoplB77x6eSfwKUgeLHJaGmcRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2Et
M2MwZmExOGM1OGNiLzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2EtM2MwZmExOGM1OGNi
LzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIRiWkWsd
Yep9mF8RshPgZ0KfFB2UQOHqCgS8P2mvku5XsGUxFKRq2+wSguZdCx9yG6N6Rqyk
YYjBo8zFY8Crwz1Qm+F++H04hl+aTvGG6jIN1MPMC8fDzSME42UcGep6cWkbQjro
rJUDsyyOBw3ebUCndOLtke9M7RYB2IRmUNNvpBf2NzZRHQ05pufBsgUFk8vgIQlt
Js+8U/DG7QfzIFChWs29RYGp8m5tjfPrqpZENxaQ+mlW4fZ3VFp/JbNagucG7/TL
Ee2jbICuVQR1UMrTmzxltXq9YsNuNpBgIumlHBqc79aGUOC8qvGYFPbdASnlXmCo
KO16CUY5AxoSrg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 12:40:17 2025 by rpki-client