
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File: Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier: CAejpU4fdqKkp3z0LzRbp59GQkTsj/N/s3EIyOeTWu4=
Subject key identifier: 88:C1:9C:39:58:D3:34:74:EB:8C:66:71:A4:3C:4C:58:C6:EA:9F:0D
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 019873E1C54858C041D9F1C2F3643E21BAD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number: 10B5
Signing time: Mon 04 Aug 2025 07:00:32 +0000
Manifest this update: Mon 04 Aug 2025 07:00:32 +0000
Manifest next update: Tue 05 Aug 2025 07:00:32 +0000
Files and hashes: 1: E7khi_dy64NAplQCGIYWONm6XWs.roa (hash: B7pDURftKO1TVaIjuNJYi/KUiJRc83FFsiFwUHpeKCw=)
2: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: Pbdl4HOKslMmElcryuwvBg9nuGiUhn2KhaJOCCSO4/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:c5:48:58:c0:41:d9:f1:c2:f3:64:3e:21:ba:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Aug 4 07:00:32 2025 GMT
Not After : Aug 5 07:00:32 2025 GMT
Subject: CN=88c19c3958d33474eb8c6671a43c4c58c6ea9f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:48:97:0f:19:22:00:d9:a0:1a:88:f2:a1:37:
52:7d:f3:95:df:ac:5b:c8:d2:5a:4b:5b:db:ef:b1:
48:e1:78:26:a8:89:c2:0e:51:0d:b6:c0:c6:48:50:
50:18:c8:7f:79:db:53:a4:fc:52:c1:8a:e4:4e:cc:
de:17:f1:d1:0a:52:ff:07:94:82:0a:86:21:0f:13:
4a:11:7c:de:ed:21:3d:05:e3:c8:19:b3:3b:17:c8:
15:54:30:3f:e4:b7:67:c4:c0:f0:6a:da:7f:e7:e6:
de:54:8c:38:4d:5a:e5:ae:0a:72:4e:fb:ca:6c:7b:
94:aa:d4:3b:82:a4:4a:ae:cf:07:92:c3:0c:cf:d2:
99:4c:81:18:3f:de:1f:82:69:2c:04:c4:0a:dd:b4:
63:7b:9e:30:e0:38:a4:83:fd:e5:a7:23:43:bb:e1:
42:a8:cf:ca:fd:83:c2:e4:2c:88:8d:58:89:c3:ab:
13:fd:07:29:a3:8f:1a:20:bc:6a:02:c5:63:ef:00:
ef:9c:37:6f:b2:b0:85:31:dd:87:0d:8e:88:86:17:
8f:e4:e9:d5:d0:bb:31:cf:62:65:b2:c5:97:f8:4c:
84:3e:f1:bd:f1:fb:03:60:7c:3c:16:85:62:c9:b4:
84:ef:87:4b:7c:ca:db:3b:1d:d3:21:41:6f:7f:0e:
e4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C1:9C:39:58:D3:34:74:EB:8C:66:71:A4:3C:4C:58:C6:EA:9F:0D
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0c:ef:b7:57:53:79:0a:9a:8f:63:3c:ce:05:87:ca:a9:0c:
44:4f:dd:12:cc:ac:89:1c:d1:ce:5e:17:d9:a5:42:b3:7d:94:
a5:da:bc:33:5e:90:0c:a5:6d:0d:87:5c:7e:7b:a9:dc:cb:6a:
ae:ce:dd:bf:d8:c8:f3:3c:51:0a:99:2d:0c:1f:b2:2a:10:e5:
ec:91:33:09:7d:bc:9f:16:c9:86:18:66:b0:22:bc:c9:20:e0:
ea:dc:78:2c:19:41:ce:02:ca:d6:3e:1c:d5:4d:cf:aa:e1:11:
e8:2b:20:3f:9b:ef:8b:56:e7:7e:c1:62:d6:2b:af:95:46:33:
bc:7e:ba:df:d3:cc:ee:f5:9c:6f:23:4d:4d:e2:dd:02:dc:64:
b6:bc:18:36:d0:cd:35:92:6c:9c:65:e5:a1:c4:9e:54:34:1b:
82:c5:26:99:36:69:fa:a4:8b:5e:62:83:c7:27:7e:b5:b9:a5:
b9:b4:93:65:48:81:8a:4d:79:a4:ed:ec:b0:54:ea:45:71:b9:
09:7a:88:1f:70:79:64:93:cd:61:d4:6f:72:f9:df:da:f3:89:
41:69:ab:bf:78:b9:04:e8:b3:54:ee:b5:7b:66:59:af:a0:6f:
73:3f:e4:16:3c:06:49:08:57:ce:1f:43:30:58:e7:a2:5a:19:
f1:ed:b2:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4cVIWMBB2fHC82Q+IbrQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MzlmOTY0Y2Q0ODlmY2QyNTAwYjM3NjgxZDU4NDc5ZDU1
M2M4YWIwHhcNMjUwODA0MDcwMDMyWhcNMjUwODA1MDcwMDMyWjAzMTEwLwYDVQQD
Eyg4OGMxOWMzOTU4ZDMzNDc0ZWI4YzY2NzFhNDNjNGM1OGM2ZWE5ZjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkiXDxkiANmgGojyoTdSffOV36xb
yNJaS1vb77FI4XgmqInCDlENtsDGSFBQGMh/edtTpPxSwYrkTszeF/HRClL/B5SC
CoYhDxNKEXze7SE9BePIGbM7F8gVVDA/5LdnxMDwatp/5+beVIw4TVrlrgpyTvvK
bHuUqtQ7gqRKrs8HksMMz9KZTIEYP94fgmksBMQK3bRje54w4Dikg/3lpyNDu+FC
qM/K/YPC5CyIjViJw6sT/Qcpo48aILxqAsVj7wDvnDdvsrCFMd2HDY6IhheP5OnV
0Lsxz2JlssWX+EyEPvG98fsDYHw8FoViybSE74dLfMrbOx3TIUFvfw7kMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIjBnDlY0zR064xmcaQ8TFjG6p8NMB8GA1UdIwQY
MBaAFBc5+WTNSJ/NJQCzdoHVhHnVU8irMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zOTQ0NTUtNjRiNi00ZTEwLWE3OTIt
NzJkMWZmZTI1YmQzLzEvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8zOTQ0NTUtNjRiNi00ZTEwLWE3OTItNzJkMWZmZTI1YmQz
LzEvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYQzvt1dT
eQqaj2M8zgWHyqkMRE/dEsysiRzRzl4X2aVCs32Updq8M16QDKVtDYdcfnup3Mtq
rs7dv9jI8zxRCpktDB+yKhDl7JEzCX28nxbJhhhmsCK8ySDg6tx4LBlBzgLK1j4c
1U3PquER6CsgP5vvi1bnfsFi1iuvlUYzvH6639PM7vWcbyNNTeLdAtxktrwYNtDN
NZJsnGXlocSeVDQbgsUmmTZp+qSLXmKDxyd+tbmlubSTZUiBik15pO3ssFTqRXG5
CXqIH3B5ZJPNYdRvcvnf2vOJQWmrv3i5BOizVO61e2ZZr6Bvcz/kFjwGSQhXzh9D
MFjnoloZ8e2yTg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:02 2025 by rpki-client