Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: lqPqpK0yI3Ett31ebXCBQasnXgg2C+e4+Nq6OWsb4bw=
Subject key identifier: 1C:7C:C7:D3:0D:D1:C7:22:FC:C9:0C:9D:2E:C1:1E:1F:29:39:EE:39
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 0199228CFA08FB6D4892496CDA32FCCF9A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 05:01:28 +0000
Manifest this update: Sun 07 Sep 2025 05:01:28 +0000
Manifest next update: Mon 08 Sep 2025 05:01:28 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: j+bnoE2iP/Z+NmTj1txisZtuj8mWuQAC9AWWWOchbhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:fa:08:fb:6d:48:92:49:6c:da:32:fc:cf:9a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Sep 7 05:01:28 2025 GMT
Not After : Sep 8 05:01:28 2025 GMT
Subject: CN=1c7cc7d30dd1c722fcc90c9d2ec11e1f2939ee39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7d:e8:5b:55:f0:cc:99:52:f3:c8:0c:f9:49:
4e:aa:80:b8:9c:67:b7:69:d3:3b:41:af:84:06:e0:
0d:27:4b:13:47:61:94:26:27:e1:5e:63:7e:95:c0:
64:d3:87:6f:fb:06:a3:7d:fa:f9:d4:2d:0e:a3:0d:
2f:2c:9e:5a:ed:f0:1e:28:24:17:55:ad:9d:4b:a0:
61:ee:fa:ca:bc:16:70:d7:c0:4d:1f:4b:19:ba:ea:
c9:64:36:fb:60:47:09:b1:f6:f3:7b:42:8e:3f:dc:
09:dd:8d:61:e0:28:7b:fb:f2:d9:62:0b:c5:95:f4:
50:d8:83:5d:91:9c:b5:71:27:d5:e0:08:e3:49:12:
a3:b2:52:8b:5c:24:f5:24:1f:50:1a:bc:b0:02:b2:
2a:c6:37:67:f5:91:17:74:26:8a:18:d3:4b:a1:ec:
a9:3a:0b:d2:8f:5f:b0:7d:09:76:30:b6:dc:9a:1f:
c0:74:f1:cd:da:92:2e:1f:f4:d0:3c:93:ab:0b:18:
f9:9b:95:7f:0d:c9:2c:78:32:b6:72:22:f3:14:4f:
2c:61:f7:18:81:6f:80:d0:57:99:2f:b3:0c:42:08:
1d:62:10:6a:e2:64:a4:29:08:11:6f:09:fb:f7:36:
22:f9:35:62:f0:de:76:e8:31:ea:3e:38:eb:38:3e:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7C:C7:D3:0D:D1:C7:22:FC:C9:0C:9D:2E:C1:1E:1F:29:39:EE:39
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c7:d1:c9:d9:ee:a0:65:cc:bf:a3:96:0f:1e:ad:d2:1f:d6:
98:bb:cc:c7:2d:50:74:4d:3c:b0:7e:e6:67:55:80:eb:c9:39:
ca:d9:60:1b:f6:c2:77:c7:b8:57:ba:c8:53:b3:1a:81:52:c9:
1e:7a:67:e2:33:bb:0e:23:ce:2b:01:88:bd:a9:2b:70:3c:c5:
93:ca:23:22:55:3a:30:f2:c3:3d:84:48:5f:1f:8c:0b:a4:72:
5c:cd:d5:0f:59:77:ea:c3:72:d9:89:a2:62:f7:77:ca:ab:a2:
3b:65:0e:e5:8f:93:ee:67:cf:12:6e:68:7e:fb:ba:60:02:5b:
35:80:3e:dc:15:55:b4:19:3b:ad:4e:6e:3a:c6:49:5e:3e:a5:
dd:01:aa:09:fc:b1:8c:a8:df:11:a9:5b:73:5d:51:de:36:4d:
dd:ce:48:a5:c6:af:e0:1c:2c:bb:37:7f:50:e2:73:cb:23:e7:
78:ad:03:bb:b4:d1:89:30:23:60:08:4b:9b:ce:98:5f:b7:06:
0a:8a:69:1c:1a:ea:b4:56:6b:57:3b:e6:05:58:a1:1d:01:8e:
83:45:5f:25:5b:f5:66:f4:2b:28:4b:64:94:32:8d:15:cb:5a:
4c:e4:0e:8b:62:17:73:82:5b:4b:22:04:e6:94:b3:e4:77:6e:
a2:7e:2c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:15 2025 by rpki-client