Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: EFy0/SaLW3o4rZYZq3hDaacsB2W6M2f2dIc9StHHBJM=
Subject key identifier: 36:F6:CB:1A:75:9F:74:9A:2F:F3:41:08:21:DE:9C:42:08:EA:60:23
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 0198805410DC561F425B3B522DE43F62BC13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0646
Signing time: Wed 06 Aug 2025 17:00:49 +0000
Manifest this update: Wed 06 Aug 2025 17:00:49 +0000
Manifest next update: Thu 07 Aug 2025 17:00:49 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: FpGFXX30JH9xPr3YdYoZj8LkKZ6MDlEHnaMGzcdGQgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:10:dc:56:1f:42:5b:3b:52:2d:e4:3f:62:bc:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Aug 6 17:00:49 2025 GMT
Not After : Aug 7 17:00:49 2025 GMT
Subject: CN=36f6cb1a759f749a2ff3410821de9c4208ea6023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5c:ac:b9:23:75:3f:6e:8c:21:5a:16:f5:98:
bd:a9:40:90:89:cc:a8:e6:e4:80:24:46:ea:6c:f4:
ad:2f:90:13:cb:c0:f6:cd:20:01:1e:a8:1e:68:d5:
f1:68:55:34:5e:6b:3e:70:54:4e:f1:18:3d:63:51:
7f:93:4c:fa:6c:a5:a8:99:76:87:6c:32:84:20:53:
99:f1:29:07:8d:8c:63:cb:3c:00:c2:ff:86:d9:64:
bd:cb:1f:8d:0b:79:2c:6f:7c:0e:4c:3d:44:5e:23:
3c:b7:54:15:58:10:20:7e:50:2f:90:27:41:d7:ab:
e2:6c:7d:91:46:a3:cf:e2:46:71:a6:6f:ef:fe:42:
c9:7c:7a:68:be:22:cd:2d:ac:d4:01:ea:6a:05:49:
54:a0:1a:1b:e0:85:65:0d:c3:aa:fa:d3:92:28:07:
9a:05:d4:b6:cd:b3:d7:99:66:94:83:fd:bb:fa:05:
44:e6:a4:e0:9a:1e:78:62:f0:73:9c:a8:bb:8b:e6:
55:4f:a6:a6:52:9a:bf:c8:6a:df:f6:93:91:66:83:
df:3f:2e:f8:b2:43:5a:be:ac:83:1b:92:6d:2a:ef:
12:ee:22:a4:cf:32:2f:49:e3:1e:2b:de:ff:94:ea:
5c:2c:6d:3a:f3:06:89:be:fb:e7:f8:4c:a8:c4:91:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F6:CB:1A:75:9F:74:9A:2F:F3:41:08:21:DE:9C:42:08:EA:60:23
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:09:94:35:33:22:73:d1:26:fc:8c:22:46:c1:5e:0e:a0:b9:
85:fa:ef:8d:b8:2b:2b:a2:ea:60:c0:90:ad:ea:c1:53:29:ca:
0c:9c:c6:ea:36:6b:81:f8:8b:f1:d6:3d:3f:87:fa:83:00:e1:
98:84:a8:00:c8:c1:49:43:e3:33:b6:ad:f1:71:a7:74:e1:50:
45:e6:57:51:85:18:49:e6:91:fe:ae:26:73:58:4f:31:e3:7d:
88:95:f6:cb:f9:46:0e:fa:b8:95:32:a4:65:23:bf:a4:c2:35:
59:59:cf:b3:9e:43:60:7e:0e:44:61:1e:78:3d:e4:99:74:3c:
cb:07:96:e4:a8:f0:d5:bf:e1:0f:14:f5:f1:69:4b:98:6f:20:
73:03:42:66:86:70:0f:1c:60:e0:fb:0e:96:14:68:cc:58:6d:
ab:bd:50:44:0a:04:39:ee:8d:1c:48:0e:2d:5c:5c:9f:a1:44:
69:c7:bb:6b:0b:92:b5:0b:bc:83:d6:f3:ce:cf:82:1d:28:dc:
ec:fe:6e:83:1e:f3:24:86:eb:1d:ed:4a:aa:db:03:42:2b:ae:
d0:93:87:e6:ad:d0:74:01:04:cf:34:78:43:74:59:08:ba:fd:
e2:55:49:50:8e:82:77:eb:13:0f:0f:fa:9f:a7:54:20:9c:0e:
80:d9:de:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 02:07:16 2025 by rpki-client