Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: gjAaX5DB728pwlyI+bpea2k5ClCn7Xsn2DQBTuwkDeY=
Subject key identifier: CA:B3:52:AF:7D:ED:42:9A:C9:6C:CD:AE:A2:EA:DF:9D:6B:FD:48:37
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 0198733DC4CF9B3C8843BA5A475DFC9701B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 04:01:24 +0000
Manifest this update: Mon 04 Aug 2025 04:01:24 +0000
Manifest next update: Tue 05 Aug 2025 04:01:24 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: /N2wjq8Z9gtHDqzKGR21JuK+p52myL2iBtczzdR5yrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:c4:cf:9b:3c:88:43:ba:5a:47:5d:fc:97:01:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Aug 4 04:01:24 2025 GMT
Not After : Aug 5 04:01:24 2025 GMT
Subject: CN=cab352af7ded429ac96ccdaea2eadf9d6bfd4837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:92:1b:8b:d4:73:96:54:cf:1f:2e:a9:3c:14:
6a:04:1e:10:48:a4:06:18:73:c1:d4:0e:fa:c1:a7:
8a:8a:7d:7a:26:66:a0:3d:4b:20:dd:cb:4b:f5:d3:
00:e4:06:b7:41:aa:ce:02:7f:8c:01:25:43:c8:14:
5f:d8:42:41:52:74:a7:2f:98:4a:22:c1:66:6f:c5:
2c:51:13:66:23:78:4d:bb:4b:38:ca:94:d3:2e:53:
39:b5:cc:10:eb:d8:2f:cf:ae:ed:d8:d1:7b:88:be:
6d:2b:9c:ca:d1:63:90:0f:e9:3c:1b:64:d7:f3:27:
2a:78:6d:a4:ce:4e:1a:9f:0a:32:71:90:65:54:c5:
b4:fd:0f:51:dd:f0:d9:5c:a0:49:39:61:44:ce:bf:
66:70:b2:e9:4d:5b:25:32:cb:5e:c1:6c:f2:39:e3:
7c:88:5e:99:fb:fe:c7:a4:94:37:bf:da:8d:1e:d7:
b3:e1:4f:60:c4:8f:50:d0:9f:e4:88:a1:8e:2d:43:
24:ed:88:4d:ed:44:c1:a4:66:22:15:56:4c:49:54:
07:93:6c:16:4d:7a:2c:ff:aa:e8:38:77:4e:be:13:
7d:2d:2e:c5:4b:f8:44:c1:28:b0:b5:e1:54:d8:75:
55:43:e7:17:11:18:95:b2:bf:aa:5b:6a:79:a6:4b:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B3:52:AF:7D:ED:42:9A:C9:6C:CD:AE:A2:EA:DF:9D:6B:FD:48:37
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:9a:ac:4c:45:cd:5c:c9:24:53:58:be:8f:61:0c:f9:2f:3a:
81:c6:08:c7:33:f7:ae:44:5f:d6:07:89:bd:da:43:57:7f:16:
89:3c:00:03:87:6a:52:d7:b8:4f:0c:c0:29:64:81:f3:03:62:
db:9b:31:a3:45:2c:58:03:cf:b4:c4:3e:df:53:ce:38:63:a2:
3b:62:86:0d:a6:c5:dd:2e:c1:63:1b:0e:ff:76:17:2b:43:c1:
b4:8c:5b:21:47:f7:c3:2e:38:ee:8d:66:e5:f9:71:86:be:30:
46:9a:c6:3b:2f:47:ab:13:48:83:21:59:49:89:60:9b:9b:0d:
eb:8e:0a:7b:c5:15:4f:75:b7:b8:ad:07:99:07:36:ff:3b:44:
43:cd:43:af:10:76:c1:07:7a:c4:00:28:1d:82:fd:76:d6:f5:
12:b1:4b:b1:89:e5:fc:5d:c6:c9:99:cf:4f:9d:58:f5:fd:3d:
09:e6:2b:66:d8:3c:3f:4d:2d:f9:0e:94:fc:f5:c7:73:be:e9:
a9:9d:de:a1:84:72:53:7f:e8:5c:ae:89:5d:a6:27:74:e9:aa:
c7:8a:f7:2b:ac:0e:e6:84:e5:d8:9e:c0:46:40:fa:15:cc:e5:
6e:a3:99:9d:43:1d:34:c4:54:bf:9c:39:39:4e:25:c9:6a:0a:
93:52:b3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:24:51 2025 by rpki-client