Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
File: dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft (raw, json)
Hash identifier: s900cNMRg7Acf4ENKeOn/UFxt0fQEfV5mMtIZsuyAIY=
Subject key identifier: 2F:10:81:CE:7A:35:17:5F:00:81:B7:2B:14:58:42:5A:AE:21:E3:FD
Authority key identifier: 75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
Certificate issuer: /CN=75923ec546df371d09e68c6b06025ea31261234a
Certificate serial: 019921B0BE80A1050E7BECEA9E8DD45B2834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 01:00:55 +0000
Manifest this update: Sun 07 Sep 2025 01:00:55 +0000
Manifest next update: Mon 08 Sep 2025 01:00:55 +0000
Files and hashes: 1: dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl (hash: TuMoqrHthNjPpe+/8zhpDp8zlYgfPuRR732kKBv3F94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:be:80:a1:05:0e:7b:ec:ea:9e:8d:d4:5b:28:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75923ec546df371d09e68c6b06025ea31261234a
Validity
Not Before: Sep 7 01:00:55 2025 GMT
Not After : Sep 8 01:00:55 2025 GMT
Subject: CN=2f1081ce7a35175f0081b72b1458425aae21e3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:17:83:df:96:b3:c6:90:c3:1a:8f:75:40:16:
ba:20:d9:d5:2e:c9:71:74:9e:f8:91:fb:60:20:18:
03:52:db:34:da:5f:c2:8c:25:85:83:eb:4d:89:64:
99:66:bb:7d:8a:80:13:46:c2:75:e5:56:34:6d:7d:
84:c2:b9:c7:19:70:c2:50:ee:4d:8e:5f:0e:2a:ce:
44:69:5d:d3:5b:3e:c3:54:39:82:aa:15:be:da:55:
76:d2:60:17:25:86:93:3c:d7:07:fb:ec:e2:4d:38:
72:03:c1:50:86:86:49:a2:75:df:38:68:1b:37:a4:
5e:67:c9:2b:0b:8f:9c:da:3c:5d:25:f5:40:de:54:
7f:51:30:78:42:b5:26:c1:3a:36:c7:9d:c4:1a:a9:
3e:18:d3:6a:6e:c7:3c:86:1d:c7:fe:2f:9c:db:5c:
fd:e4:06:ae:61:9b:b9:53:97:f2:c1:72:40:60:52:
01:34:03:ca:c1:ca:ed:95:d3:5b:cf:91:a4:58:76:
de:07:d2:d9:e4:2c:f0:d4:1f:e9:f9:39:91:de:9c:
65:8a:03:a1:3c:f0:b5:c4:d1:b4:e2:9b:b4:81:e6:
87:6c:bd:35:a0:1a:31:22:15:73:f9:9e:7a:ab:92:
40:0c:f6:81:68:f5:e8:10:9b:58:81:e4:46:38:2f:
45:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:10:81:CE:7A:35:17:5F:00:81:B7:2B:14:58:42:5A:AE:21:E3:FD
X509v3 Authority Key Identifier:
keyid:75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:02:af:fa:fc:ce:0d:ba:d0:e0:42:58:26:06:44:6a:a5:06:
30:ca:e8:6a:1f:7e:6b:b2:47:67:cb:74:2c:37:11:ab:1e:3a:
4e:3e:23:72:b8:3c:67:20:0d:fc:1b:a7:28:65:5f:e5:55:fa:
e3:31:18:8b:77:87:fd:22:c0:dd:aa:29:64:05:89:63:c8:9b:
cc:9e:bf:fc:c6:7c:12:1a:e3:88:2a:a8:ab:a7:1b:72:1e:9e:
5d:e1:23:b9:b5:43:7c:71:60:1e:ba:d2:44:96:98:dd:66:ff:
e8:86:9f:89:07:10:98:90:6c:55:aa:bf:f3:d6:e5:2e:1e:1a:
72:77:c3:7a:b5:6f:f2:f5:71:f4:18:ed:1d:80:e8:48:4c:ae:
59:f1:01:24:2b:48:06:f5:46:e3:4b:75:e0:da:d6:e0:d4:eb:
13:8f:6c:bd:ee:9d:cc:06:0b:9d:35:27:34:56:a1:57:48:29:
c6:0f:d8:1e:f4:86:00:c1:e7:7d:1b:27:21:a3:2d:a5:bf:c4:
df:91:cf:6a:70:09:0f:5f:ca:53:26:55:76:1b:1a:e8:d8:8c:
d1:2b:bb:38:b2:46:73:8b:d7:20:0f:e6:3e:aa:99:13:7f:57:
8d:44:64:4d:ce:82:6b:b5:5e:6c:fe:cf:10:77:28:e8:b3:ec:
6a:5a:2f:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsL6AoQUOe+zqno3UWyg0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1OTIzZWM1NDZkZjM3MWQwOWU2OGM2YjA2MDI1ZWEzMTI2
MTIzNGEwHhcNMjUwOTA3MDEwMDU1WhcNMjUwOTA4MDEwMDU1WjAzMTEwLwYDVQQD
EygyZjEwODFjZTdhMzUxNzVmMDA4MWI3MmIxNDU4NDI1YWFlMjFlM2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBeD35azxpDDGo91QBa6INnVLslx
dJ74kftgIBgDUts02l/CjCWFg+tNiWSZZrt9ioATRsJ15VY0bX2EwrnHGXDCUO5N
jl8OKs5EaV3TWz7DVDmCqhW+2lV20mAXJYaTPNcH++ziTThyA8FQhoZJonXfOGgb
N6ReZ8krC4+c2jxdJfVA3lR/UTB4QrUmwTo2x53EGqk+GNNqbsc8hh3H/i+c21z9
5AauYZu5U5fywXJAYFIBNAPKwcrtldNbz5GkWHbeB9LZ5Czw1B/p+TmR3pxligOh
PPC1xNG04pu0geaHbL01oBoxIhVz+Z56q5JADPaBaPXoEJtYgeRGOC9FgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC8Qgc56NRdfAIG3KxRYQlquIeP9MB8GA1UdIwQY
MBaAFHWSPsVG3zcdCeaMawYCXqMSYSNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yNmM2OGMtMDQ4Mi00YjYyLWIyYWYt
NDg1NTM2NmVkZmVmLzEvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8yNmM2OGMtMDQ4Mi00YjYyLWIyYWYtNDg1NTM2NmVkZmVm
LzEvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlQKv+vzO
DbrQ4EJYJgZEaqUGMMroah9+a7JHZ8t0LDcRqx46Tj4jcrg8ZyAN/BunKGVf5VX6
4zEYi3eH/SLA3aopZAWJY8ibzJ6//MZ8EhrjiCqoq6cbch6eXeEjubVDfHFgHrrS
RJaY3Wb/6IafiQcQmJBsVaq/89blLh4acnfDerVv8vVx9BjtHYDoSEyuWfEBJCtI
BvVG40t14NrW4NTrE49sve6dzAYLnTUnNFahV0gpxg/YHvSGAMHnfRsnIaMtpb/E
35HPanAJD1/KUyZVdhsa6NiM0Su7OLJGc4vXIA/mPqqZE39XjURkTc6Ca7VebP7P
EHco6LPsalovrg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:47 2025 by rpki-client