Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.mft (raw, json)
Hash identifier: Ple2tEtWWwfpe7pYd+pS4S0H0OF/NcOSdXV9bCCxRtg=
Subject key identifier: 2A:87:62:1F:25:BC:2E:58:33:34:E8:48:3D:02:16:7C:07:0F:41:8D
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 019846640E668DE5F97C5999C8BD33EFCDB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
Manifest number: 09A1
Signing time: Sat 26 Jul 2025 11:00:19 +0000
Manifest this update: Sat 26 Jul 2025 11:00:19 +0000
Manifest next update: Sun 27 Jul 2025 11:00:19 +0000
Files and hashes: 1: zQwDKJL2la9ME_sKyoBD0Xsbl78.crl (hash: eLutdtrpR+BWjJpIxioagrxO4I+8s06mrW2imkPb/Iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:64:0e:66:8d:e5:f9:7c:59:99:c8:bd:33:ef:cd:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Jul 26 11:00:19 2025 GMT
Not After : Jul 27 11:00:19 2025 GMT
Subject: CN=2a87621f25bc2e583334e8483d02167c070f418d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d8:70:81:25:e6:76:c7:db:58:c5:9c:5e:83:
3e:c9:73:dd:93:d4:60:ab:51:32:72:31:dc:46:2e:
78:1d:7c:07:c2:2e:c0:b2:04:95:d9:02:df:04:fb:
4f:b0:bc:ae:08:55:1e:94:2a:cd:83:2b:a5:79:af:
45:75:13:71:8a:b4:8b:67:60:dc:28:57:0a:36:df:
01:38:26:09:50:16:3c:b7:62:4e:5c:0e:0e:a0:50:
bd:25:1f:78:68:b3:32:44:17:52:ea:a6:ff:e4:bd:
42:c1:35:5f:ee:fe:83:a0:12:7e:4b:ee:eb:ce:23:
2d:59:c5:b8:2b:07:e9:a0:f5:f3:6c:89:01:3d:36:
eb:26:2d:9f:89:12:bb:20:bf:99:97:a4:73:ce:81:
31:29:df:22:e5:29:e2:a7:3f:4d:0f:46:13:78:fd:
94:9d:be:b1:6f:d1:41:e2:dd:7b:f9:90:99:3e:7b:
75:3e:f6:61:6d:e7:b7:80:c7:e5:d9:7e:0b:5a:23:
b8:51:20:8f:00:6b:bd:eb:d6:54:f7:6a:f1:bc:7a:
2b:21:12:10:4e:c0:ea:5b:e7:21:ac:29:87:8b:56:
46:f5:1b:23:0a:67:6e:f6:65:fd:7a:ac:43:21:88:
b1:ba:fe:94:f5:09:89:0f:16:1d:4e:75:36:6c:20:
5a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:87:62:1F:25:BC:2E:58:33:34:E8:48:3D:02:16:7C:07:0F:41:8D
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:18:34:86:ba:ec:00:29:c4:eb:b0:a4:73:23:82:a1:0d:e3:
e7:c3:6e:44:39:bd:e9:41:a1:3e:16:16:d8:5f:cc:3f:27:c6:
83:0b:d6:5b:ad:db:40:31:4e:1d:13:55:12:51:ac:cb:af:30:
26:5a:0c:36:ed:63:55:bf:65:f7:00:9c:59:64:70:db:9d:67:
76:0c:6d:90:8a:37:20:43:be:0c:65:e8:ef:bb:bf:de:0c:bb:
5f:3e:38:8b:76:9b:e8:10:cd:70:fa:91:1b:9f:80:73:83:98:
3d:1c:e5:c9:8d:79:d4:44:8a:f3:4f:f7:c2:0b:a5:be:9b:dd:
ed:ca:2b:b8:ea:0e:29:8b:ad:e1:dc:79:59:b2:10:97:2a:4c:
d4:8f:54:7b:a7:8b:36:35:8a:22:5b:95:79:25:76:a7:2f:f4:
0b:b3:c3:34:3d:e2:e7:ef:b0:36:1d:1f:0c:56:bc:25:50:ac:
56:e8:d1:ee:83:a1:db:f3:78:89:bb:52:13:05:07:bb:a8:e5:
fe:42:a0:7c:51:8e:7d:d5:3d:19:71:37:95:26:66:64:e3:d3:
db:d9:77:7a:ee:11:59:b1:27:68:4e:fd:50:08:53:e5:73:2b:
05:84:61:e8:99:55:c4:60:a6:aa:a1:39:b7:78:dc:0b:51:e6:
07:9a:68:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhGZA5mjeX5fFmZyL0z782zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMGMwMzI4OTJmNjk1YWY0YzEzZmIwYWNhODA0M2QxN2Ix
Yjk3YmYwHhcNMjUwNzI2MTEwMDE5WhcNMjUwNzI3MTEwMDE5WjAzMTEwLwYDVQQD
EygyYTg3NjIxZjI1YmMyZTU4MzMzNGU4NDgzZDAyMTY3YzA3MGY0MThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NhwgSXmdsfbWMWcXoM+yXPdk9Rg
q1EycjHcRi54HXwHwi7AsgSV2QLfBPtPsLyuCFUelCrNgyulea9FdRNxirSLZ2Dc
KFcKNt8BOCYJUBY8t2JOXA4OoFC9JR94aLMyRBdS6qb/5L1CwTVf7v6DoBJ+S+7r
ziMtWcW4KwfpoPXzbIkBPTbrJi2fiRK7IL+Zl6RzzoExKd8i5Snipz9ND0YTeP2U
nb6xb9FB4t17+ZCZPnt1PvZhbee3gMfl2X4LWiO4USCPAGu969ZU92rxvHorIRIQ
TsDqW+chrCmHi1ZG9RsjCmdu9mX9eqxDIYixuv6U9QmJDxYdTnU2bCBaKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqHYh8lvC5YMzToSD0CFnwHD0GNMB8GA1UdIwQY
MBaAFM0MAyiS9pWvTBP7CsqAQ9F7G5e/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgt
MzUyNzZiNzk3NWFlLzEvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgtMzUyNzZiNzk3NWFl
LzEvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACRg0hrrs
ACnE67CkcyOCoQ3j58NuRDm96UGhPhYW2F/MPyfGgwvWW63bQDFOHRNVElGsy68w
JloMNu1jVb9l9wCcWWRw251ndgxtkIo3IEO+DGXo77u/3gy7Xz44i3ab6BDNcPqR
G5+Ac4OYPRzlyY151ESK80/3wgulvpvd7coruOoOKYut4dx5WbIQlypM1I9Ue6eL
NjWKIluVeSV2py/0C7PDND3i5++wNh0fDFa8JVCsVujR7oOh2/N4ibtSEwUHu6jl
/kKgfFGOfdU9GXE3lSZmZOPT29l3eu4RWbEnaE79UAhT5XMrBYRh6JlVxGCmqqE5
t3jcC1HmB5po2A==
-----END CERTIFICATE-----
Generated at Sat Jul 26 21:08:22 2025 by rpki-client