Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: oSIHJ1zw7BOXXp3NS080fQAa/I5DG8dzhSYLmNl3oyA=
Subject key identifier: 7F:15:CD:45:73:5A:CF:32:5D:0C:7A:F7:D4:65:F7:9E:52:CF:EB:57
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 019A53085D29283F03EE1B8D5966DEF98072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 161F
Signing time: Wed 05 Nov 2025 08:00:48 +0000
Manifest this update: Wed 05 Nov 2025 08:00:48 +0000
Manifest next update: Thu 06 Nov 2025 08:00:48 +0000
Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: DlY+Q+kaT2rhQcEN3PvAphKBRmiQ6cXrEM4IJrzOcVg=)
2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:5d:29:28:3f:03:ee:1b:8d:59:66:de:f9:80:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Nov 5 08:00:48 2025 GMT
Not After : Nov 6 08:00:48 2025 GMT
Subject: CN=7f15cd45735acf325d0c7af7d465f79e52cfeb57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c8:5f:9b:33:49:fb:55:71:36:f8:9b:84:8c:
1a:1b:e7:eb:17:7e:e6:da:93:e1:a0:79:13:21:5e:
b1:d0:a6:3e:f7:81:a5:e1:9a:2c:ae:33:9d:9c:ff:
e4:09:d6:2b:49:a8:4c:08:c2:37:ed:ba:dc:3f:1c:
bb:b8:07:d7:45:c3:7f:eb:c8:b8:19:d0:d6:2c:93:
86:c4:a0:c7:bb:86:c6:03:fb:dc:21:8c:42:f8:21:
52:2f:07:f0:27:fc:26:62:21:d9:e0:e6:e6:ee:40:
91:79:e1:4e:94:72:58:b0:5f:56:7a:ff:e5:7b:a3:
3a:42:8b:97:51:d9:ae:38:88:d2:8f:2b:4f:55:9c:
c3:a5:1e:b2:8e:ee:fd:6f:a3:d9:b4:26:40:4a:9a:
36:e0:48:bd:cf:e1:d3:c3:c0:36:89:19:80:f3:06:
11:0a:16:87:5a:e2:90:62:71:64:09:df:f5:05:aa:
8c:06:34:c7:ad:a4:54:d3:59:fc:c9:ee:3d:18:8b:
3f:14:22:37:81:ee:83:5d:c3:9e:7f:5f:2c:4e:be:
ae:8d:3f:fc:2a:1e:c9:df:3e:52:22:98:d2:66:c7:
37:a3:55:8b:b9:43:9b:71:f9:64:a1:b7:cf:f0:ba:
98:2d:9e:d6:21:29:e1:75:c7:ac:23:f7:a6:e8:82:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:15:CD:45:73:5A:CF:32:5D:0C:7A:F7:D4:65:F7:9E:52:CF:EB:57
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:54:69:e5:a4:60:65:d5:de:44:61:3b:e7:7f:46:dc:34:08:
0d:05:5d:79:f2:7c:ed:a4:1c:b5:bf:cd:91:71:c4:d6:c9:7c:
23:92:bd:f4:e3:bc:ed:9b:97:2a:d0:1a:b2:56:29:4b:24:3f:
3b:d3:b9:b4:19:9e:81:c3:09:ca:94:70:da:4d:15:d5:60:96:
b2:90:ce:9a:23:d1:38:68:76:b8:da:7e:6e:65:64:8c:93:23:
7a:9c:ac:d7:ac:b8:e2:08:0d:d4:d3:27:d4:84:f0:40:a1:0a:
9d:00:b5:0f:4f:0a:20:31:b2:19:0a:1e:6d:8a:8c:26:f2:e3:
17:64:99:98:aa:34:03:63:bb:eb:37:31:4f:20:d7:ea:f4:8a:
6a:52:ef:04:9f:9d:20:08:06:58:33:b2:5a:49:0c:fa:ef:ae:
9b:fe:c2:e4:69:2b:70:9b:25:51:43:c2:5b:98:66:18:5c:0f:
6e:2b:38:52:d1:b7:08:e7:eb:23:d6:b8:21:31:7c:60:68:d7:
20:68:a5:9a:c9:da:08:cd:44:b8:39:b0:f5:e9:6c:ad:af:65:
54:53:60:c2:bb:9a:1d:df:31:1c:c6:62:8a:2c:88:94:bc:7d:
65:05:8c:4c:03:23:69:27:c8:87:f0:49:60:53:b5:19:26:e8:
4a:34:33:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:12:44 2025 by rpki-client