Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
File: zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json)
Hash identifier: QUG2+cSD+7EV3qjc18G7isXf2/xiF4M1KgAZcjIZ0dM=
Subject key identifier: FA:7C:D4:4F:0C:AD:31:B2:C1:65:94:75:FF:AC:05:59:66:FC:CB:23
Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
Certificate issuer: /CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Certificate serial: 019921B0EA8E1026532C4AE608251B34D813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
Manifest number: 0205
Signing time: Sun 07 Sep 2025 01:01:06 +0000
Manifest this update: Sun 07 Sep 2025 01:01:06 +0000
Manifest next update: Mon 08 Sep 2025 01:01:06 +0000
Files and hashes: 1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: xcxg9ez2RjUykCfhf14twTaDkyXXKqJgFYnxDcmw8I4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:ea:8e:10:26:53:2c:4a:e6:08:25:1b:34:d8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Validity
Not Before: Sep 7 01:01:06 2025 GMT
Not After : Sep 8 01:01:06 2025 GMT
Subject: CN=fa7cd44f0cad31b2c1659475ffac055966fccb23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9f:1c:05:b9:29:03:97:2c:91:da:a3:d6:b5:
a2:f4:bc:c6:0a:3c:0c:c6:2a:74:fc:ce:ad:de:1d:
09:82:ce:bc:3b:a9:db:06:db:7d:47:d0:83:9e:21:
89:cf:63:75:4a:61:67:37:03:2e:d9:8a:47:cd:9c:
d0:37:cd:a7:09:b4:04:2d:37:d9:18:86:48:5d:3f:
50:ac:fd:f0:0f:a2:a8:0a:ec:93:54:18:aa:b6:b3:
85:83:e6:d2:1a:27:e9:37:3c:47:54:c4:42:de:54:
d8:90:23:a2:d3:00:62:6e:56:9b:47:0f:dc:5f:68:
1d:63:d7:f3:09:a6:20:bd:5f:83:2d:2d:89:74:21:
af:21:d4:90:e4:57:a7:a9:db:66:b9:bd:bc:48:34:
db:3d:e3:b2:fd:ed:69:03:17:30:15:1b:7c:a2:9a:
de:60:f0:61:51:a8:f9:65:5f:98:4e:8c:41:bc:00:
97:f6:dd:90:65:7d:80:05:96:92:da:94:ce:2a:ba:
d7:42:88:b5:ad:f8:ed:ea:7f:af:50:85:83:22:6c:
96:8c:3e:eb:37:dc:c3:5b:c4:4b:05:f2:09:22:7e:
17:87:e2:26:b5:f6:ee:c1:cc:2e:08:c8:fc:0d:45:
9c:1d:ed:3c:7d:5e:c0:82:02:3b:bd:4c:ba:8c:6d:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7C:D4:4F:0C:AD:31:B2:C1:65:94:75:FF:AC:05:59:66:FC:CB:23
X509v3 Authority Key Identifier:
keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:26:c5:ff:1a:ea:f5:9b:cf:aa:5a:5e:13:26:bd:48:a3:82:
d6:0b:8d:a9:23:92:91:16:fd:4f:b8:5c:aa:c3:46:47:1d:98:
d4:0f:61:79:6f:e2:b7:2e:f7:99:5b:4f:a5:b8:b5:0d:f3:57:
fb:10:6e:2c:89:32:95:be:14:c6:36:49:e5:9f:f6:72:3b:0d:
08:75:c6:c4:ae:cc:bb:7e:dd:97:03:df:38:95:90:41:31:03:
80:93:67:88:a4:15:f2:01:5d:58:19:fa:bf:0b:9c:4a:ca:04:
4c:5c:e2:d3:12:f2:ad:f9:cd:6a:54:ad:28:84:36:bf:2c:4c:
48:a1:09:70:d9:63:2a:1c:51:bd:15:99:08:8f:00:ff:4a:57:
4a:ca:ab:35:a9:04:49:b9:dc:b0:a5:22:68:1c:fd:23:41:8b:
75:99:8e:a0:82:01:0f:cf:07:1e:35:35:e6:00:0c:35:db:bd:
d4:8a:ce:df:44:51:ee:39:4a:f5:6a:4f:9f:39:74:18:79:56:
3e:ca:92:e6:be:44:b9:a9:d1:72:1e:93:a0:a1:f9:a7:f3:28:
2f:59:42:0c:f0:81:c1:e9:8a:14:3b:5f:57:cb:95:7c:92:8c:
b5:0d:45:64:c8:3f:69:86:ce:1a:4a:0f:d1:ea:9f:95:da:1b:
70:8a:d4:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsOqOECZTLErmCCUbNNgTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYmM2MTgyZTg3M2ZmN2EwMzFjODg5NWVmZGM1N2MzNjg3
MWRkNzIwHhcNMjUwOTA3MDEwMTA2WhcNMjUwOTA4MDEwMTA2WjAzMTEwLwYDVQQD
EyhmYTdjZDQ0ZjBjYWQzMWIyYzE2NTk0NzVmZmFjMDU1OTY2ZmNjYjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA258cBbkpA5cskdqj1rWi9LzGCjwM
xip0/M6t3h0Jgs68O6nbBtt9R9CDniGJz2N1SmFnNwMu2YpHzZzQN82nCbQELTfZ
GIZIXT9QrP3wD6KoCuyTVBiqtrOFg+bSGifpNzxHVMRC3lTYkCOi0wBiblabRw/c
X2gdY9fzCaYgvV+DLS2JdCGvIdSQ5Fenqdtmub28SDTbPeOy/e1pAxcwFRt8opre
YPBhUaj5ZV+YToxBvACX9t2QZX2ABZaS2pTOKrrXQoi1rfjt6n+vUIWDImyWjD7r
N9zDW8RLBfIJIn4Xh+ImtfbuwcwuCMj8DUWcHe08fV7AggI7vUy6jG0w/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPp81E8MrTGywWWUdf+sBVlm/MsjMB8GA1UdIwQY
MBaAFM68YYLoc/96AxyIle/cV8Nocd1yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEt
MmIzNjkxNThhOGIzLzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEtMmIzNjkxNThhOGIz
LzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjSbF/xrq
9ZvPqlpeEya9SKOC1guNqSOSkRb9T7hcqsNGRx2Y1A9heW/ity73mVtPpbi1DfNX
+xBuLIkylb4UxjZJ5Z/2cjsNCHXGxK7Mu37dlwPfOJWQQTEDgJNniKQV8gFdWBn6
vwucSsoETFzi0xLyrfnNalStKIQ2vyxMSKEJcNljKhxRvRWZCI8A/0pXSsqrNakE
SbncsKUiaBz9I0GLdZmOoIIBD88HHjU15gAMNdu91IrO30RR7jlK9WpPnzl0GHlW
PsqS5r5EuanRch6ToKH5p/MoL1lCDPCBwemKFDtfV8uVfJKMtQ1FZMg/aYbOGkoP
0eqfldobcIrU1g==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:02:54 2025 by rpki-client