Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: 4GbldIAQk8y0KlDU3qqgylCAct3Nx2v/ctEgz13JsHc=
Subject key identifier: DF:FA:78:DE:5E:26:DD:8E:76:BC:41:77:E4:B7:24:3C:89:31:0F:20
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 0198838C53287CD920BD806D3994C237E108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 152F
Signing time: Thu 07 Aug 2025 08:01:08 +0000
Manifest this update: Thu 07 Aug 2025 08:01:08 +0000
Manifest next update: Fri 08 Aug 2025 08:01:08 +0000
Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: Y569HVoPDS0XcGTrw67Nbss09ugppJuN+MxBFirK8eg=)
2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:8c:53:28:7c:d9:20:bd:80:6d:39:94:c2:37:e1:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Aug 7 08:01:08 2025 GMT
Not After : Aug 8 08:01:08 2025 GMT
Subject: CN=dffa78de5e26dd8e76bc4177e4b7243c89310f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fe:f5:4c:0d:21:0e:9e:20:f3:c9:06:ad:d1:
40:fe:31:a1:60:bc:dc:6d:e2:cd:ca:f1:db:ed:95:
9a:fd:3f:76:4f:18:26:ee:26:d0:c5:2e:81:02:0b:
b8:1f:de:2a:fe:64:37:8a:c9:7a:1b:f6:90:65:98:
18:cc:b6:b8:3e:20:be:b1:94:30:65:0e:94:99:60:
7b:83:67:d2:5a:52:f7:c0:f4:cd:44:e7:9e:27:be:
83:c9:2a:68:f1:3c:12:6e:f6:b2:63:e8:85:9c:1b:
3d:ee:c8:e8:77:4c:e1:43:87:f4:5c:b7:9b:2b:33:
cc:96:ab:f7:cc:61:ee:0d:6c:69:c0:42:ec:26:7a:
50:5a:b8:45:fd:62:58:16:4f:51:9a:01:bd:d7:0e:
35:3a:5f:bc:b5:0b:be:25:16:e6:b8:37:af:47:38:
7e:1f:06:7d:5e:8f:4d:2c:fd:e9:ea:cf:aa:d7:73:
9c:30:98:37:a8:94:70:ed:00:4b:56:31:75:68:3c:
d0:4c:d4:55:03:54:9e:25:3a:e0:6e:fe:d0:6e:96:
ce:ec:33:c8:cf:7e:48:39:d0:e4:f0:41:29:77:88:
80:b5:39:8d:56:e9:8f:d3:21:25:73:ae:02:b0:de:
aa:74:fd:36:3a:3d:23:c2:04:2c:f5:32:52:87:04:
ef:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FA:78:DE:5E:26:DD:8E:76:BC:41:77:E4:B7:24:3C:89:31:0F:20
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:37:31:f5:83:4b:da:54:0c:f5:fa:14:6b:82:f8:30:1f:f6:
c6:28:6a:e6:14:2e:e1:9c:ee:ce:51:13:e4:52:f4:a3:f7:fe:
28:a5:b3:37:28:21:e8:ce:58:43:c0:0c:b4:01:39:f3:63:79:
a4:b7:33:82:ea:48:a2:32:98:87:f8:5f:39:19:4a:d8:e2:e6:
e0:76:8c:51:72:d4:98:e5:46:b1:36:5c:8c:d4:dd:1d:a9:28:
2c:d1:94:7e:db:dd:45:8f:31:99:8d:7c:1d:8c:56:65:5a:ca:
2a:9d:2c:0d:89:2f:9f:44:1d:39:16:15:b5:12:c9:93:04:3a:
53:03:c9:bb:6b:9d:00:d0:bf:c6:dc:94:07:53:f6:c0:88:98:
00:ed:65:97:26:ab:29:1b:f4:c6:df:c5:f5:c0:0f:da:8e:15:
36:5d:8a:b3:da:59:c1:f7:f9:0d:86:6f:b5:82:ab:58:23:18:
fe:c0:2f:62:0f:f3:d9:97:19:15:98:00:46:cf:ec:79:5b:f4:
2b:72:21:c7:3d:22:c2:16:ab:b6:15:8b:11:b9:e4:02:ea:c9:
0b:c7:6a:b4:0b:b2:69:49:ce:78:ab:b3:bd:d8:04:fc:db:0c:
17:24:b0:f0:c1:7a:97:00:2a:68:e0:9a:22:b1:f4:2d:5b:ee:
b9:86:81:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiDjFMofNkgvYBtOZTCN+EIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YzI1YTQxZjFjNTIyOGUxMGVhOTQxY2U3MDc4ZjQzY2Q5
MDliNjMwHhcNMjUwODA3MDgwMTA4WhcNMjUwODA4MDgwMTA4WjAzMTEwLwYDVQQD
EyhkZmZhNzhkZTVlMjZkZDhlNzZiYzQxNzdlNGI3MjQzYzg5MzEwZjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P71TA0hDp4g88kGrdFA/jGhYLzc
beLNyvHb7ZWa/T92Txgm7ibQxS6BAgu4H94q/mQ3isl6G/aQZZgYzLa4PiC+sZQw
ZQ6UmWB7g2fSWlL3wPTNROeeJ76DySpo8TwSbvayY+iFnBs97sjod0zhQ4f0XLeb
KzPMlqv3zGHuDWxpwELsJnpQWrhF/WJYFk9RmgG91w41Ol+8tQu+JRbmuDevRzh+
HwZ9Xo9NLP3p6s+q13OcMJg3qJRw7QBLVjF1aDzQTNRVA1SeJTrgbv7QbpbO7DPI
z35IOdDk8EEpd4iAtTmNVumP0yElc64CsN6qdP02Oj0jwgQs9TJShwTvaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN/6eN5eJt2OdrxBd+S3JDyJMQ8gMB8GA1UdIwQY
MBaAFGfCWkHxxSKOEOqUHOcHj0PNkJtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hMWE2YzItZDdjMS00MmU4LWEzOGYt
ZmM5MTBjMGIxOWFlLzEvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hMWE2YzItZDdjMS00MmU4LWEzOGYtZmM5MTBjMGIxOWFl
LzEvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqjcx9YNL
2lQM9foUa4L4MB/2xihq5hQu4ZzuzlET5FL0o/f+KKWzNygh6M5YQ8AMtAE582N5
pLczgupIojKYh/hfORlK2OLm4HaMUXLUmOVGsTZcjNTdHakoLNGUftvdRY8xmY18
HYxWZVrKKp0sDYkvn0QdORYVtRLJkwQ6UwPJu2udANC/xtyUB1P2wIiYAO1llyar
KRv0xt/F9cAP2o4VNl2Ks9pZwff5DYZvtYKrWCMY/sAvYg/z2ZcZFZgARs/seVv0
K3Ihxz0iwharthWLEbnkAurJC8dqtAuyaUnOeKuzvdgE/NsMFySw8MF6lwAqaOCa
IrH0LVvuuYaB+g==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:16:31 2025 by rpki-client