Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: /5Gl1ru75+NfbU0UfqBhb8d7z8vzK1mJdjQAeb9tcLk=
Subject key identifier: 07:A3:96:AF:26:B1:B4:B2:AC:40:BB:65:FB:63:2E:EB:67:EC:ED:F8
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 01988FC75953DF6619378008B423DBF9B6E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 1623
Signing time: Sat 09 Aug 2025 17:01:02 +0000
Manifest this update: Sat 09 Aug 2025 17:01:02 +0000
Manifest next update: Sun 10 Aug 2025 17:01:02 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: x1JSvvoNvV1aMfEFhMNnMDch+jOdAAtAZapd+jt0A74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:c7:59:53:df:66:19:37:80:08:b4:23:db:f9:b6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Aug 9 17:01:02 2025 GMT
Not After : Aug 10 17:01:02 2025 GMT
Subject: CN=07a396af26b1b4b2ac40bb65fb632eeb67ecedf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:2e:09:0c:08:91:d9:0e:62:d5:f1:1f:a9:
c0:12:f9:8a:85:0f:24:ab:94:36:f8:bc:96:38:dc:
59:5f:40:18:a5:00:37:53:df:ab:53:a2:17:49:c9:
09:ab:e2:49:70:84:b3:1a:7e:bf:f8:9f:f2:0b:dc:
26:84:9d:db:35:f6:01:ff:c7:18:df:f7:4d:fe:b2:
44:15:4a:f6:82:27:a6:90:85:4c:bc:55:25:43:dc:
c1:51:6b:a0:51:57:16:de:bb:90:6f:49:31:02:67:
c0:f2:08:f2:d4:0f:f2:6d:ff:ff:d6:c5:57:8b:bb:
85:25:ef:ff:0d:36:0e:c4:17:38:f9:3e:eb:c3:e0:
05:b6:d6:1f:2e:6c:3f:17:e8:95:58:a1:74:23:24:
bc:54:0e:e0:9b:a4:81:4f:8d:c5:ea:45:8b:26:32:
06:11:c5:1a:3f:a1:f3:9c:ef:56:14:d9:9f:8c:20:
03:2c:b4:63:85:5c:7a:0c:3b:7b:26:6b:c1:9f:59:
2d:f9:ba:8b:9a:e9:d2:a8:60:88:15:d4:bc:ea:65:
1a:72:9c:52:42:c9:09:00:f3:c3:6f:b5:fe:95:a1:
9b:e3:50:15:b5:e8:78:c4:ba:ac:29:af:2c:19:2d:
31:1e:75:73:f9:ce:f1:27:97:33:4e:76:a4:0f:47:
8b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A3:96:AF:26:B1:B4:B2:AC:40:BB:65:FB:63:2E:EB:67:EC:ED:F8
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:2a:de:96:5e:a0:f7:86:b0:a1:36:d6:cf:ac:15:be:93:9c:
64:ac:e3:e6:71:e2:71:51:31:e7:41:af:60:54:81:b5:13:21:
61:85:bc:95:2b:31:7c:6f:ad:9c:33:3c:13:d4:b3:d1:7c:8e:
39:05:b0:bc:15:5a:d0:7f:3d:82:39:6d:93:e8:11:61:10:96:
91:02:cd:ec:49:34:4d:4d:af:23:c0:98:89:dc:18:32:f2:d1:
a9:55:03:e5:47:6e:a5:ae:f8:be:f4:a7:64:d7:a4:fc:55:bf:
a9:6d:7a:e2:af:a6:50:3a:e2:e5:c0:61:84:d8:8f:45:03:fa:
ad:1e:6d:2f:ab:83:9d:06:56:e5:73:68:a8:e4:a7:87:9b:e4:
48:aa:36:72:ee:1d:b7:29:e5:08:43:f4:e2:b1:b3:11:49:b0:
02:4e:2b:e5:4c:b8:cc:99:97:93:23:aa:cd:de:15:73:98:2a:
ac:75:6d:1a:46:b7:e5:5e:4f:ec:10:b4:31:5d:7e:bb:b5:d3:
d4:c5:2d:9e:35:ae:1d:db:93:90:c7:f2:7c:b1:ab:8b:27:4b:
c6:fd:22:b4:ec:11:03:de:f1:9e:d7:7d:c3:d6:03:b4:5c:a5:
1d:f5:de:2b:7f:5b:28:4d:36:77:61:21:45:8e:d7:58:29:52:
3e:bb:44:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:16:07 2025 by rpki-client