Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: MG5hD5XXUd2TEqTVtnYNwecaMY5gYlIUuLtFjIw0kKA=
Subject key identifier: 83:5E:C6:4F:67:7C:C1:49:BA:CA:0E:A6:7A:18:12:25:E5:FD:FD:AE
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 019A2742247E01B934C90B09031F1A256018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 16F6
Signing time: Mon 27 Oct 2025 20:00:37 +0000
Manifest this update: Mon 27 Oct 2025 20:00:37 +0000
Manifest next update: Tue 28 Oct 2025 20:00:37 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: jUGmJ+V3Z9TsYRbNbNj8XdLShUbpY7a96Sm+gYZ1utM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:42:24:7e:01:b9:34:c9:0b:09:03:1f:1a:25:60:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Oct 27 20:00:37 2025 GMT
Not After : Oct 28 20:00:37 2025 GMT
Subject: CN=835ec64f677cc149baca0ea67a181225e5fdfdae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:47:09:f5:9c:8f:d2:a0:cf:4c:9b:21:98:c8:
ed:83:84:92:b8:18:d5:61:06:b1:e4:bb:4b:41:ef:
80:9c:0d:bc:27:07:b6:8a:24:83:e0:76:1a:3c:9a:
70:7c:77:d7:2c:0f:9c:f4:b9:2d:7f:b3:dc:a6:54:
60:f0:3d:f6:9c:ca:bf:a2:52:55:f0:33:1a:52:e6:
1a:fe:f5:c3:37:3a:39:77:3c:c3:10:24:0d:f6:2a:
d4:11:b3:40:c4:ac:22:8a:da:c8:2f:5d:27:9e:da:
77:54:92:07:8a:84:c3:85:84:bf:26:80:74:36:92:
35:0f:68:06:4d:f3:ff:5e:9f:76:d3:ed:f8:87:8a:
c6:46:52:d6:48:85:ad:22:44:0d:6d:68:b7:b7:b9:
38:4b:a4:2e:50:85:a4:54:ae:66:e6:a6:52:99:29:
4c:2c:ea:29:b1:0f:d9:50:ac:ce:d6:72:8e:6f:f4:
95:b0:b1:9a:8d:9d:4f:77:fd:29:9d:85:df:ac:37:
d4:ab:9f:9d:7b:1e:52:7f:31:9e:30:d9:35:50:dc:
cb:ee:ea:49:10:ea:4b:a9:23:f0:16:70:e9:67:20:
ee:b6:10:71:35:90:c8:c6:bd:2d:00:cf:c5:76:48:
55:62:84:18:a4:fa:74:e1:36:aa:09:2e:70:df:2c:
d4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5E:C6:4F:67:7C:C1:49:BA:CA:0E:A6:7A:18:12:25:E5:FD:FD:AE
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:82:be:a4:ff:8e:07:1b:50:00:8f:48:1d:69:f2:5b:a1:fd:
1e:84:b7:8e:99:47:8b:4b:58:22:0a:03:c6:39:28:e5:0c:d5:
eb:ff:7b:09:7b:f4:5a:de:aa:41:f1:68:86:fb:10:6f:a1:fc:
5f:47:56:6d:e1:71:7f:98:b7:52:dd:14:24:59:26:13:87:76:
15:5d:cf:2a:d1:87:f5:89:9a:be:5b:1f:d2:e4:e7:ef:37:96:
ce:d9:9c:1c:3e:ba:ad:58:b9:85:b2:d7:84:16:21:d0:dd:2b:
8a:95:b5:e9:14:15:a4:4d:ae:80:57:15:77:b4:46:13:d9:b9:
2f:dd:75:99:fc:6e:df:0c:14:4e:df:59:3a:69:52:db:6e:4f:
76:75:94:20:d6:35:40:eb:0f:ed:e0:0e:4a:fc:88:d6:83:38:
47:90:17:65:4c:82:cb:a6:4a:a2:e5:88:39:f6:d6:4f:bf:59:
e4:9e:c6:53:24:03:ca:b0:4c:df:8c:7c:9a:96:80:d7:83:71:
b0:bc:a9:46:4b:10:50:52:e5:e7:36:e8:74:f8:3a:a3:a4:9f:
45:34:f1:b4:c8:b2:39:3c:84:00:64:64:0b:63:1b:67:ca:65:
6f:dd:99:2f:92:0f:f5:17:51:95:b7:09:3a:31:4a:68:92:45:
95:a5:83:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZonQiR+Abk0yQsJAx8aJWAYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MGFhMmMwNzlmZGU4N2E1NDUxNWQwMWRlMjFiYzJlODVk
ZTEzMWEwHhcNMjUxMDI3MjAwMDM3WhcNMjUxMDI4MjAwMDM3WjAzMTEwLwYDVQQD
Eyg4MzVlYzY0ZjY3N2NjMTQ5YmFjYTBlYTY3YTE4MTIyNWU1ZmRmZGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EcJ9ZyP0qDPTJshmMjtg4SSuBjV
YQax5LtLQe+AnA28Jwe2iiSD4HYaPJpwfHfXLA+c9Lktf7PcplRg8D32nMq/olJV
8DMaUuYa/vXDNzo5dzzDECQN9irUEbNAxKwiitrIL10nntp3VJIHioTDhYS/JoB0
NpI1D2gGTfP/Xp920+34h4rGRlLWSIWtIkQNbWi3t7k4S6QuUIWkVK5m5qZSmSlM
LOopsQ/ZUKzO1nKOb/SVsLGajZ1Pd/0pnYXfrDfUq5+dex5SfzGeMNk1UNzL7upJ
EOpLqSPwFnDpZyDuthBxNZDIxr0tAM/FdkhVYoQYpPp04TaqCS5w3yzUmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINexk9nfMFJusoOpnoYEiXl/f2uMB8GA1UdIwQY
MBaAFGQKosB5/eh6VFFdAd4hvC6F3hMaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQt
M2E5ODk2NmY1ZTMxLzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQtM2E5ODk2NmY1ZTMx
LzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYK+pP+O
BxtQAI9IHWnyW6H9HoS3jplHi0tYIgoDxjko5QzV6/97CXv0Wt6qQfFohvsQb6H8
X0dWbeFxf5i3Ut0UJFkmE4d2FV3PKtGH9Ymavlsf0uTn7zeWztmcHD66rVi5hbLX
hBYh0N0ripW16RQVpE2ugFcVd7RGE9m5L911mfxu3wwUTt9ZOmlS225PdnWUINY1
QOsP7eAOSvyI1oM4R5AXZUyCy6ZKouWIOfbWT79Z5J7GUyQDyrBM34x8mpaA14Nx
sLypRksQUFLl5zbodPg6o6SfRTTxtMiyOTyEAGRkC2MbZ8plb92ZL5IP9RdRlbcJ
OjFKaJJFlaWDwg==
-----END CERTIFICATE-----
Generated at Tue Oct 28 03:16:17 2025 by rpki-client