Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
File: z3P3vZzZk2geMP7FxZtHVlIroxw.mft (raw, json)
Hash identifier: BYDEAGT2QbrGxhmooKKI9VUDzmmwHzJppE7ohwV785w=
Subject key identifier: 66:77:41:0D:C8:40:F2:D7:DC:1A:DD:2F:82:3E:5A:70:56:8A:25:7C
Authority key identifier: CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C
Certificate issuer: /CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c
Certificate serial: 019885B1BF5D6A65EF1B59EADEB2A00FAF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
Manifest number: 161C
Signing time: Thu 07 Aug 2025 18:01:15 +0000
Manifest this update: Thu 07 Aug 2025 18:01:15 +0000
Manifest next update: Fri 08 Aug 2025 18:01:15 +0000
Files and hashes: 1: z3P3vZzZk2geMP7FxZtHVlIroxw.crl (hash: nZ4Oh16HBL61MuroJrxzS+M+Zj6FqQhT6ZlVGdwBzUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:b1:bf:5d:6a:65:ef:1b:59:ea:de:b2:a0:0f:af:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c
Validity
Not Before: Aug 7 18:01:15 2025 GMT
Not After : Aug 8 18:01:15 2025 GMT
Subject: CN=6677410dc840f2d7dc1add2f823e5a70568a257c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:67:ef:34:0d:db:14:ad:57:b3:0d:af:f5:09:
d7:89:f8:68:ed:37:91:eb:f9:49:08:29:6e:2b:48:
ee:52:b9:e8:1b:89:ff:67:ab:fe:cf:a4:cc:7e:f6:
32:3d:4c:ce:b1:10:43:ee:90:95:e8:7c:f8:5c:0d:
c5:d5:c2:78:f0:4d:ab:97:c0:a1:39:a4:f9:98:4d:
c2:5c:47:9f:bc:24:e2:12:44:35:aa:f6:5f:6a:15:
5d:f7:71:36:36:94:fb:10:ce:50:14:0f:d4:80:31:
dc:63:d0:41:cd:cc:e7:3d:17:6a:58:d4:77:68:13:
55:fe:26:b4:ac:e6:67:d3:e7:f6:e8:ff:12:b7:bc:
f6:f8:46:db:7e:ee:4e:d0:32:cb:2f:73:4c:49:d9:
60:e2:74:fc:cd:c5:dd:ea:1c:1a:3b:da:36:a9:99:
c3:c8:8f:bc:65:44:63:2e:f7:9c:dd:c5:45:06:5c:
a0:b0:74:d2:98:90:ec:8d:b4:d9:ee:0e:aa:e6:b4:
18:a1:9f:3a:85:2b:4f:aa:44:5b:cc:2e:22:ff:09:
1d:6e:be:aa:30:95:64:8a:2f:f3:21:b4:fd:f4:a2:
c4:21:b2:b2:dd:76:64:e1:0b:15:fc:88:8b:14:26:
07:a8:fb:1c:fd:64:3c:13:f6:98:02:23:b0:50:0d:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:77:41:0D:C8:40:F2:D7:DC:1A:DD:2F:82:3E:5A:70:56:8A:25:7C
X509v3 Authority Key Identifier:
keyid:CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:cb:7f:29:c9:16:d8:49:46:ca:c4:31:f2:35:db:35:8e:f2:
fe:60:ec:99:4c:5a:57:01:2d:4b:48:55:2f:da:56:69:06:64:
3c:f3:b5:fd:b2:d9:ac:bf:80:de:29:8d:24:87:14:21:31:14:
ac:a9:12:5f:e8:8d:d4:e0:61:42:5e:57:9e:a1:4f:fd:00:e2:
8b:ea:8b:5c:61:98:d6:84:cf:b9:0a:ad:fe:01:6a:ef:c5:07:
09:4b:e9:c2:c1:b7:b6:88:ae:dd:fd:87:0d:ba:de:ae:80:50:
81:5c:1f:b1:9f:a2:9a:0b:d0:bf:51:91:c0:cd:14:6d:1e:bb:
1d:c6:4d:5e:ce:6e:2f:41:a3:03:96:bb:32:d2:0c:3e:26:c3:
56:e3:7b:ec:3f:f6:7f:09:4d:a3:2c:32:c9:61:c7:67:83:ab:
89:dd:59:26:30:8b:b8:6f:05:17:e3:8a:54:9c:42:1d:72:c6:
95:e2:72:58:d9:a9:b4:d4:26:f0:d5:6e:60:55:12:33:39:9f:
57:c3:95:2e:72:40:e6:6e:df:93:85:25:25:5d:42:a0:20:31:
2d:cc:24:db:4c:93:fd:7f:77:52:79:f4:67:f6:55:22:50:07:
cd:99:20:74:ef:fa:46:9a:91:d6:2d:10:1f:9c:71:4b:df:22:
1c:e6:07:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiFsb9damXvG1nq3rKgD68FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNzNmN2JkOWNkOTkzNjgxZTMwZmVjNWM1OWI0NzU2NTIy
YmEzMWMwHhcNMjUwODA3MTgwMTE1WhcNMjUwODA4MTgwMTE1WjAzMTEwLwYDVQQD
Eyg2Njc3NDEwZGM4NDBmMmQ3ZGMxYWRkMmY4MjNlNWE3MDU2OGEyNTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWfvNA3bFK1Xsw2v9QnXifho7TeR
6/lJCCluK0juUrnoG4n/Z6v+z6TMfvYyPUzOsRBD7pCV6Hz4XA3F1cJ48E2rl8Ch
OaT5mE3CXEefvCTiEkQ1qvZfahVd93E2NpT7EM5QFA/UgDHcY9BBzcznPRdqWNR3
aBNV/ia0rOZn0+f26P8St7z2+Ebbfu5O0DLLL3NMSdlg4nT8zcXd6hwaO9o2qZnD
yI+8ZURjLvec3cVFBlygsHTSmJDsjbTZ7g6q5rQYoZ86hStPqkRbzC4i/wkdbr6q
MJVkii/zIbT99KLEIbKy3XZk4QsV/IiLFCYHqPsc/WQ8E/aYAiOwUA0HaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGZ3QQ3IQPLX3BrdL4I+WnBWiiV8MB8GA1UdIwQY
MBaAFM9z972c2ZNoHjD+xcWbR1ZSK6McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wYjBkN2YtODE5Ni00Mjc1LWE5MTEt
N2E3OTM5OTJmYmEwLzEvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wYjBkN2YtODE5Ni00Mjc1LWE5MTEtN2E3OTM5OTJmYmEw
LzEvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADMt/KckW
2ElGysQx8jXbNY7y/mDsmUxaVwEtS0hVL9pWaQZkPPO1/bLZrL+A3imNJIcUITEU
rKkSX+iN1OBhQl5XnqFP/QDii+qLXGGY1oTPuQqt/gFq78UHCUvpwsG3toiu3f2H
DbreroBQgVwfsZ+imgvQv1GRwM0UbR67HcZNXs5uL0GjA5a7MtIMPibDVuN77D/2
fwlNoywyyWHHZ4Orid1ZJjCLuG8FF+OKVJxCHXLGleJyWNmptNQm8NVuYFUSMzmf
V8OVLnJA5m7fk4UlJV1CoCAxLcwk20yT/X93Unn0Z/ZVIlAHzZkgdO/6RpqR1i0Q
H5xxS98iHOYHow==
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:04:17 2025 by rpki-client