Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
File: zxhBQM0aIj9ji3mW9UifSF2O5ic.mft (raw, json)
Hash identifier: da0Kdd1tvH5BgfIGVVp2h3bOstX5x5c9gHQDE36TeTw=
Subject key identifier: D3:06:CD:DB:E2:AF:C3:8D:E5:11:9D:72:AE:48:CA:BD:BE:64:59:1C
Authority key identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27
Certificate issuer: /CN=cf184140cd1a223f638b7996f5489f485d8ee627
Certificate serial: 01984A412800EE71A9766018FF74A2DC8F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
Manifest number: 0573
Signing time: Sun 27 Jul 2025 05:00:40 +0000
Manifest this update: Sun 27 Jul 2025 05:00:40 +0000
Manifest next update: Mon 28 Jul 2025 05:00:40 +0000
Files and hashes: 1: FnA6f4DOd265nGzqUSApRurvL20.roa (hash: CKai/Ita+qQk4qWCNkCUXx6BxPFuVd8UKoy7z8Mf368=)
2: zxhBQM0aIj9ji3mW9UifSF2O5ic.crl (hash: pAAGYkds5pAlmsMM3XXVBNyPPKTuXVo8ttAEQE5d+JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:28:00:ee:71:a9:76:60:18:ff:74:a2:dc:8f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf184140cd1a223f638b7996f5489f485d8ee627
Validity
Not Before: Jul 27 05:00:40 2025 GMT
Not After : Jul 28 05:00:40 2025 GMT
Subject: CN=d306cddbe2afc38de5119d72ae48cabdbe64591c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:96:09:a2:1c:37:b7:2b:66:75:71:71:7b:c4:
78:c6:10:ab:f2:f2:a8:5f:a7:e7:a9:b2:34:73:4b:
77:d9:2f:2a:a7:c2:92:5d:40:e3:10:ef:aa:38:01:
f6:ca:aa:40:71:99:51:7c:ce:ac:ef:28:fa:9f:cd:
5b:c6:5f:ba:81:ae:76:77:30:1e:f9:f9:99:19:5a:
4c:17:3b:b2:bb:8d:c3:62:c5:6c:f5:12:08:5b:06:
1d:61:55:2e:6a:86:44:ea:3c:dd:e4:4f:02:12:88:
09:cc:61:03:c5:6d:ce:b9:95:41:57:47:7f:76:3f:
21:7e:76:8f:0c:8c:4a:32:86:e4:5e:1e:db:78:d3:
c1:57:32:06:00:97:b4:e3:c0:bf:fa:b3:ef:24:e6:
4e:53:af:72:07:e6:2c:76:4a:63:ea:00:c1:1a:da:
01:22:8c:59:3d:0c:d0:a7:f9:a6:05:a1:1b:1c:65:
a0:56:da:cb:38:2b:80:0c:52:4c:93:ab:f9:2f:77:
d3:2a:42:e3:ab:13:56:bc:ad:65:4f:de:1a:00:14:
91:3e:7d:61:73:2d:83:2f:56:b4:69:3c:aa:e8:77:
7b:04:3c:d9:32:f5:28:e7:b3:d5:eb:81:79:00:8e:
a0:db:97:1a:4b:e5:20:ab:69:3f:51:bb:8a:45:f9:
8f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:06:CD:DB:E2:AF:C3:8D:E5:11:9D:72:AE:48:CA:BD:BE:64:59:1C
X509v3 Authority Key Identifier:
keyid:CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:a9:04:10:d1:da:33:d1:a6:ca:e3:36:ea:b5:6c:8c:18:54:
7a:73:fd:52:b5:37:8d:0f:5c:d8:c2:94:dd:39:f9:b3:ee:85:
d8:10:09:0f:be:4f:bf:03:ef:6b:bc:15:b0:b1:a7:c6:9c:5a:
90:97:7a:da:f0:7f:30:1a:70:a5:9f:39:38:52:0f:89:4a:44:
d4:73:1d:ef:47:52:39:87:55:ce:0d:30:69:47:9c:34:4f:b2:
f6:cd:69:36:70:c9:92:8f:d0:bf:2c:a7:de:10:0d:1e:c6:72:
7c:ee:4e:a3:3d:2c:b7:18:13:1f:94:cc:80:77:86:e4:94:24:
36:e9:1d:42:17:a0:fa:5f:69:c1:5d:9c:12:26:5a:a4:1a:c8:
5d:fd:e7:2a:d5:c1:f9:fd:b1:07:59:78:cc:4a:37:fe:a9:ea:
6c:c7:14:fb:e3:74:cf:b0:1e:7d:d3:4a:d8:da:1a:38:8c:05:
02:4e:02:24:1f:9f:74:bb:38:79:94:88:9f:34:3b:e5:18:96:
d3:9f:dc:45:c3:32:dd:b1:80:75:0a:e2:f6:bd:6b:26:a5:eb:
4e:5c:1f:be:96:b5:46:d7:74:69:05:49:e3:37:80:a0:80:e5:
ac:83:bc:81:7a:92:37:a1:e1:57:b3:4f:cb:73:ae:8b:f6:af:
ca:d9:94:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKQSgA7nGpdmAY/3Si3I8tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMTg0MTQwY2QxYTIyM2Y2MzhiNzk5NmY1NDg5ZjQ4NWQ4
ZWU2MjcwHhcNMjUwNzI3MDUwMDQwWhcNMjUwNzI4MDUwMDQwWjAzMTEwLwYDVQQD
EyhkMzA2Y2RkYmUyYWZjMzhkZTUxMTlkNzJhZTQ4Y2FiZGJlNjQ1OTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pYJohw3tytmdXFxe8R4xhCr8vKo
X6fnqbI0c0t32S8qp8KSXUDjEO+qOAH2yqpAcZlRfM6s7yj6n81bxl+6ga52dzAe
+fmZGVpMFzuyu43DYsVs9RIIWwYdYVUuaoZE6jzd5E8CEogJzGEDxW3OuZVBV0d/
dj8hfnaPDIxKMobkXh7beNPBVzIGAJe048C/+rPvJOZOU69yB+Ysdkpj6gDBGtoB
IoxZPQzQp/mmBaEbHGWgVtrLOCuADFJMk6v5L3fTKkLjqxNWvK1lT94aABSRPn1h
cy2DL1a0aTyq6Hd7BDzZMvUo57PV64F5AI6g25caS+Ugq2k/UbuKRfmPswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNMGzdvir8ON5RGdcq5Iyr2+ZFkcMB8GA1UdIwQY
MBaAFM8YQUDNGiI/Y4t5lvVIn0hdjuYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenhoQlFNMGFJajlqaTNtVzlVaWZTRjJPNWljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wN2JmMjktMDdkMS00ZGFmLWIzYmIt
Y2JmYjJjN2ZiYWRkLzEvenhoQlFNMGFJajlqaTNtVzlVaWZTRjJPNWljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wN2JmMjktMDdkMS00ZGFmLWIzYmItY2JmYjJjN2ZiYWRk
LzEvenhoQlFNMGFJajlqaTNtVzlVaWZTRjJPNWljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE6kEENHa
M9GmyuM26rVsjBhUenP9UrU3jQ9c2MKU3Tn5s+6F2BAJD75PvwPva7wVsLGnxpxa
kJd62vB/MBpwpZ85OFIPiUpE1HMd70dSOYdVzg0waUecNE+y9s1pNnDJko/Qvyyn
3hANHsZyfO5Ooz0stxgTH5TMgHeG5JQkNukdQheg+l9pwV2cEiZapBrIXf3nKtXB
+f2xB1l4zEo3/qnqbMcU++N0z7AefdNK2NoaOIwFAk4CJB+fdLs4eZSInzQ75RiW
05/cRcMy3bGAdQri9r1rJqXrTlwfvpa1Rtd0aQVJ4zeAoIDlrIO8gXqSN6HhV7NP
y3Oui/avytmUZQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 08:43:35 2025 by rpki-client