Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: EuNlPuxhQhvizXcLdomNcdfrr52WXnwUg6symK9HJd8=
Subject key identifier: C2:2D:7B:2D:D0:C2:9B:7E:52:32:92:89:2A:99:8F:5A:54:C6:39:91
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 01989F39EBDA7D19C13F8D18687250F1F939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 162F
Signing time: Tue 12 Aug 2025 17:00:29 +0000
Manifest this update: Tue 12 Aug 2025 17:00:29 +0000
Manifest next update: Wed 13 Aug 2025 17:00:29 +0000
Files and hashes: 1: KWbEbWMWx8GsR8Asb1Hi7iVj3A8.roa (hash: w7QiyqZy99cacAStF09i7GMZP3QKH24tEZwntPEoeMs=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: 98MK64NmvlzB1uHn6by0z1jde80axmlKH8ZdPz65e+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 17:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:39:eb:da:7d:19:c1:3f:8d:18:68:72:50:f1:f9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Aug 12 17:00:29 2025 GMT
Not After : Aug 13 17:00:29 2025 GMT
Subject: CN=c22d7b2dd0c29b7e523292892a998f5a54c63991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2b:af:07:95:11:39:53:73:d7:37:f3:c7:24:
1d:bf:b0:84:3b:35:b5:43:ef:8e:2a:d7:40:33:a7:
2d:bb:4f:78:d7:8d:f8:b1:3f:63:a0:44:61:5c:f5:
36:20:29:06:f8:29:a1:51:bb:75:1e:03:35:62:c4:
04:0b:d6:67:6a:43:15:3a:c6:1c:de:ba:6d:e5:3d:
09:67:dd:b3:da:a8:15:9a:8b:27:7c:54:0a:d1:b6:
23:12:62:71:db:06:71:5a:af:f8:a1:8d:5b:a2:cd:
96:be:10:74:c2:fb:de:34:c5:ab:7f:e9:7c:2f:86:
7f:6c:7f:e2:55:de:06:47:bb:ba:3c:9b:c0:1d:17:
50:12:e4:86:e0:23:a1:69:0c:0c:0b:12:4e:cb:48:
98:f9:24:fd:7c:8f:db:6d:8b:f5:ca:47:06:82:fe:
35:d0:9b:46:a8:d4:a6:55:94:bd:17:dc:d3:82:7a:
91:b7:b6:53:63:3f:a9:9b:ef:00:b7:fe:0f:23:8d:
4c:a6:30:26:ab:6d:f2:ef:1b:69:ae:0b:1c:7c:56:
95:5d:2e:ba:95:a8:f4:a2:c4:6c:ef:3c:36:aa:e3:
03:80:d0:bb:a9:ed:e1:2a:67:e7:8b:1a:23:09:a3:
9c:a6:48:7e:b4:32:ce:f7:50:82:2d:ff:0e:9e:6f:
8f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2D:7B:2D:D0:C2:9B:7E:52:32:92:89:2A:99:8F:5A:54:C6:39:91
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:7e:b7:1c:45:17:9e:68:28:c7:9e:dd:2e:e0:9b:61:79:70:
62:62:b9:0e:d2:36:fa:ee:11:e6:6f:51:0c:7c:d5:31:27:52:
ed:62:9c:c2:5b:39:f4:cd:ea:58:60:f9:a3:7c:ad:dd:0a:52:
f8:d1:ec:f9:8d:e9:1b:fa:89:a0:2a:5e:9a:6a:ca:2d:24:ce:
9f:18:41:44:13:96:b3:33:57:cf:d1:53:55:02:dc:ef:dd:33:
f3:a1:d9:b6:2f:f9:90:3e:dd:2b:15:34:1d:a5:30:5f:76:eb:
70:1f:73:7a:4c:f7:88:48:d8:7d:d0:a6:0d:d5:88:de:4b:29:
1a:a9:a8:d3:37:c4:60:46:b7:73:25:25:b6:fa:35:f8:4b:f8:
87:66:bb:0d:55:29:d3:7d:93:b8:c2:5d:8d:47:36:e4:bf:60:
2b:0c:4e:09:87:5c:14:01:60:92:cf:cd:1d:08:59:e1:a2:15:
72:64:dc:3a:2a:59:90:e9:3a:8d:5b:c0:72:22:2d:94:13:4e:
c0:e9:78:33:ab:fa:38:b3:aa:a8:5f:fa:39:b4:cc:3c:4c:34:
84:a6:3b:98:be:ee:6d:0e:c0:2a:21:a8:46:a0:dd:24:02:82:
80:6c:07:68:4f:5c:55:96:34:ae:4d:47:1b:04:2a:4c:97:61:
27:30:8c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:35:35 2025 by rpki-client