Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: aSMaiJfukknttGZ9LKP1YFJLapT2XOSACjMpwCwLxmM=
Subject key identifier: D9:BF:FD:71:9D:91:59:E3:DE:51:CB:EC:5A:B8:A1:A4:FD:B7:EC:71
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 019873E24EE254A5D4011A1AFADA4193E6E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 07:01:07 +0000
Manifest this update: Mon 04 Aug 2025 07:01:07 +0000
Manifest next update: Tue 05 Aug 2025 07:01:07 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: HuoJ6Ec3Pqc0KcUQd9byIL2ZDxV1eXkQneEy7ewd2fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:4e:e2:54:a5:d4:01:1a:1a:fa:da:41:93:e6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Aug 4 07:01:07 2025 GMT
Not After : Aug 5 07:01:07 2025 GMT
Subject: CN=d9bffd719d9159e3de51cbec5ab8a1a4fdb7ec71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8a:02:c9:58:eb:3a:dc:77:42:ca:91:18:ed:
1c:a6:66:ba:04:6a:c9:c6:d5:a4:82:22:b2:df:86:
02:5b:02:44:1f:35:91:e0:2b:64:41:c7:8f:f3:42:
dd:3c:88:a1:4d:f2:7f:46:37:6b:07:21:96:b6:f7:
4d:94:33:73:2b:12:1e:12:93:00:1b:f4:75:23:3b:
00:f4:ed:61:ee:85:d0:03:b0:86:67:5b:aa:2e:60:
de:bb:ca:22:91:0e:fd:79:e7:c8:ff:17:2c:e6:ac:
63:a3:66:ef:91:4d:c2:78:ee:0d:73:5c:47:21:b8:
f5:e7:86:34:9a:95:36:a3:ec:4b:b2:6a:1b:36:a6:
02:f6:c1:d1:76:2e:ae:41:44:32:f9:4b:3a:ff:f2:
f9:78:23:de:2f:b0:f0:65:84:d2:a1:8b:ac:c1:c8:
41:41:6a:fc:20:ab:5f:13:7b:e5:76:61:f6:e6:e9:
b8:f4:a7:63:43:c1:fd:78:27:2a:bd:4c:e4:59:9e:
c7:b5:91:cf:3d:18:a5:15:e8:07:0a:a5:27:a0:83:
35:0d:77:8d:96:17:8d:e9:58:15:42:23:6a:36:3a:
31:6e:51:b7:09:bb:2a:c3:dc:48:73:1f:ac:bd:09:
00:9f:00:8e:9d:5a:8a:98:b8:0f:ff:5b:2f:20:fa:
e8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BF:FD:71:9D:91:59:E3:DE:51:CB:EC:5A:B8:A1:A4:FD:B7:EC:71
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d8:e4:7c:98:6d:1a:7f:3d:2b:bb:3b:ac:d1:68:a1:ab:a7:
81:89:7d:a8:88:4a:64:d9:a6:b5:9f:a3:f6:43:bf:0b:00:fa:
89:ef:7e:78:33:a2:ed:a6:73:6a:f1:2d:29:fe:dc:35:2e:13:
49:3e:59:49:3d:44:44:c0:9d:91:da:d3:26:c8:2e:c2:e7:84:
3c:5c:01:c2:10:60:9f:ce:ad:27:31:d1:4b:23:50:45:f2:4d:
a4:c6:58:46:17:fe:d2:20:9e:4c:b3:64:27:3b:93:bb:e8:bd:
38:ef:25:9b:8f:b3:40:38:0d:d9:5a:b5:44:40:44:3c:27:4b:
94:7a:88:f0:71:67:0c:81:97:78:00:11:30:de:2b:1f:df:32:
6f:30:1f:d5:6f:77:09:e3:4b:1a:80:00:06:40:df:2b:9d:b2:
0c:72:6d:37:5b:23:0c:21:de:64:f5:08:e3:8f:3f:ab:a8:42:
4d:0e:85:31:dd:87:27:1e:78:bd:55:4e:60:99:49:2a:6f:1f:
0e:d1:ed:b5:2a:5f:19:d4:f1:4d:40:66:fd:df:24:08:33:d8:
a6:44:ba:ce:6d:19:6f:f3:0f:3a:a2:19:39:a8:f3:9c:ca:0c:
dd:48:7e:08:0e:2d:0c:a4:b0:51:70:7d:fd:c6:de:52:13:9f:
57:59:8c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:47 2025 by rpki-client