Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
File: z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft (raw, json)
Hash identifier: SrdfXlun8mFTGvNMF1r2djm1xi+P5KI+9mou53gW3rE=
Subject key identifier: F5:01:95:6D:47:2A:82:3F:92:6E:EB:8C:6D:BF:48:6E:48:66:2F:13
Authority key identifier: CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
Certificate issuer: /CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Certificate serial: 01987B9C8061945B4BC6FECACE36047DDA5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
Manifest number: 0F7B
Signing time: Tue 05 Aug 2025 19:01:50 +0000
Manifest this update: Tue 05 Aug 2025 19:01:50 +0000
Manifest next update: Wed 06 Aug 2025 19:01:50 +0000
Files and hashes: 1: z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl (hash: 8h+WCZZ9kvmxZ/WiuIk16t/EiSiyet9XM8JRRiIaOYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 19:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9c:80:61:94:5b:4b:c6:fe:ca:ce:36:04:7d:da:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Validity
Not Before: Aug 5 19:01:50 2025 GMT
Not After : Aug 6 19:01:50 2025 GMT
Subject: CN=f501956d472a823f926eeb8c6dbf486e48662f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:95:6c:4e:ed:18:e6:fb:01:b3:88:86:26:d2:
a4:c5:a7:c5:0b:73:52:6d:5c:f0:db:93:61:db:9a:
c1:e3:fa:8d:15:03:6a:00:68:eb:ce:2e:2e:09:a1:
36:21:e4:7d:2c:05:1d:f9:08:ad:34:ab:50:3c:5c:
9f:3e:e0:0f:81:81:0f:fb:f0:3e:b0:db:9b:37:96:
cc:e3:e3:c7:ae:cd:0b:22:91:f2:7c:ea:89:9e:22:
e3:8e:03:65:3b:16:2e:fd:c0:5b:fc:7c:d9:78:c9:
42:97:76:ac:31:1f:c6:fd:41:8a:10:7d:3f:c4:33:
0f:09:38:e9:df:bc:92:a6:04:6d:51:79:55:29:c7:
e9:fd:97:6d:d8:fa:ad:68:27:20:78:9e:e9:c1:f3:
08:07:32:7b:dc:d5:89:91:05:28:3c:f1:6a:9d:f2:
72:30:ec:cc:0f:2c:57:86:fb:72:f4:ea:b9:7d:5b:
96:5c:75:2f:37:9f:8d:82:98:02:89:94:f8:15:89:
4d:b8:51:b4:90:dd:b3:52:7b:e9:cc:d1:72:89:12:
37:25:74:a7:4b:d1:50:58:7b:82:45:a0:21:bc:4b:
06:5c:27:c8:c2:e4:a6:f3:5a:6b:f0:88:55:ea:a0:
7e:07:63:e9:70:f0:a7:40:94:e8:81:0b:7e:5c:dd:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:01:95:6D:47:2A:82:3F:92:6E:EB:8C:6D:BF:48:6E:48:66:2F:13
X509v3 Authority Key Identifier:
keyid:CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:47:e7:79:88:d2:eb:2d:4a:6c:78:af:07:c7:c9:01:48:3b:
87:46:cf:6b:cf:2c:3e:58:16:48:8e:be:07:4d:ec:81:bd:2d:
ad:23:bd:5f:5d:a5:0b:ce:1b:ab:c0:57:96:31:bc:7a:26:64:
53:0e:80:da:5c:97:b8:14:4c:6f:0b:7b:b7:1c:22:37:82:bd:
b6:e1:48:92:35:96:9e:26:84:af:9e:ed:ae:ad:29:7d:b0:ad:
ff:81:a7:71:b2:05:fa:fe:18:ff:4a:84:13:ab:f1:4e:95:ed:
87:2f:b2:2c:ee:db:44:ab:fa:ea:e9:59:2d:d7:f4:b6:80:bf:
64:a8:3b:96:0e:25:9d:a8:3a:50:8a:4b:34:e5:5f:f3:8c:dc:
fd:61:70:d6:a6:7f:39:f8:48:55:4a:3a:79:01:01:23:c1:cb:
9b:47:4c:d4:1e:b3:ca:3f:b5:67:98:5b:15:fc:c7:d3:2b:10:
9f:7c:ba:b6:55:8a:c4:d8:03:7d:f3:ae:55:7f:e5:4b:73:3c:
fc:1c:d0:fb:19:dc:bd:9c:dd:23:96:d1:be:f0:6b:fc:9b:31:
66:76:48:42:e3:17:2b:57:8a:b3:65:1f:8f:b7:6a:d0:4d:bc:
25:4b:ac:64:56:5e:bf:72:06:77:fb:b2:d3:f4:9d:81:93:7b:
29:d9:d6:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh7nIBhlFtLxv7KzjYEfdpcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmYzcwMDhjNmY5MTcyMmRjM2IxMjc1Mjc1NThlYmRhYmM2
ODBjZTYwHhcNMjUwODA1MTkwMTUwWhcNMjUwODA2MTkwMTUwWjAzMTEwLwYDVQQD
EyhmNTAxOTU2ZDQ3MmE4MjNmOTI2ZWViOGM2ZGJmNDg2ZTQ4NjYyZjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypVsTu0Y5vsBs4iGJtKkxafFC3NS
bVzw25Nh25rB4/qNFQNqAGjrzi4uCaE2IeR9LAUd+QitNKtQPFyfPuAPgYEP+/A+
sNubN5bM4+PHrs0LIpHyfOqJniLjjgNlOxYu/cBb/HzZeMlCl3asMR/G/UGKEH0/
xDMPCTjp37ySpgRtUXlVKcfp/Zdt2PqtaCcgeJ7pwfMIBzJ73NWJkQUoPPFqnfJy
MOzMDyxXhvty9Oq5fVuWXHUvN5+NgpgCiZT4FYlNuFG0kN2zUnvpzNFyiRI3JXSn
S9FQWHuCRaAhvEsGXCfIwuSm81pr8IhV6qB+B2PpcPCnQJTogQt+XN0HTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUBlW1HKoI/km7rjG2/SG5IZi8TMB8GA1UdIwQY
MBaAFM/HAIxvkXItw7EnUnVY69q8aAzmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80MTY4ZGEtZTY1Yy00N2I2LWJiNjEt
MzZmMjRhZDRhMDRmLzEvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS80MTY4ZGEtZTY1Yy00N2I2LWJiNjEtMzZmMjRhZDRhMDRm
LzEvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWEfneYjS
6y1KbHivB8fJAUg7h0bPa88sPlgWSI6+B03sgb0trSO9X12lC84bq8BXljG8eiZk
Uw6A2lyXuBRMbwt7txwiN4K9tuFIkjWWniaEr57trq0pfbCt/4GncbIF+v4Y/0qE
E6vxTpXthy+yLO7bRKv66ulZLdf0toC/ZKg7lg4lnag6UIpLNOVf84zc/WFw1qZ/
OfhIVUo6eQEBI8HLm0dM1B6zyj+1Z5hbFfzH0ysQn3y6tlWKxNgDffOuVX/lS3M8
/BzQ+xncvZzdI5bRvvBr/JsxZnZIQuMXK1eKs2Ufj7dq0E28JUusZFZev3IGd/uy
0/SdgZN7KdnW6A==
-----END CERTIFICATE-----
Generated at Wed Aug 6 05:50:58 2025 by rpki-client