Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: XMlS0grhQO1rEuCGf4yk1XHfxKUdg+NbX/LQFf54g7M=
Subject key identifier: E4:44:27:44:6A:84:CD:B6:BC:36:67:36:F9:0A:E6:22:3C:6D:29:03
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 019768BBBFE2E6A66F4353FC9A32E016277C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 10:00:24 +0000
Manifest this update: Fri 13 Jun 2025 10:00:24 +0000
Manifest next update: Sat 14 Jun 2025 10:00:24 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: LKFtvYG+ypKEwjEc+nBkEpQE6xo7At5UaaIhT2AQgMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:bf:e2:e6:a6:6f:43:53:fc:9a:32:e0:16:27:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Jun 13 10:00:24 2025 GMT
Not After : Jun 14 10:00:24 2025 GMT
Subject: CN=e44427446a84cdb6bc366736f90ae6223c6d2903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:95:d8:9c:fa:c0:77:c0:c1:c7:b4:ea:1e:
77:d3:49:23:4e:94:96:81:79:bd:f9:50:05:b2:c7:
83:8c:62:fd:85:7f:1f:22:bc:be:03:66:5c:d6:ae:
9a:54:cd:0d:63:61:fc:1c:56:d6:ea:13:25:8a:86:
c1:b5:62:89:3a:bc:9e:9b:84:ba:78:de:1e:75:c3:
0c:79:2a:73:88:1c:0e:b1:40:31:33:63:d0:9d:f5:
72:71:e6:37:8c:67:26:7a:0d:74:48:9e:b1:cd:00:
65:cf:ae:65:c1:c5:e3:ae:df:34:d8:dd:38:2d:28:
90:c0:00:de:29:42:c2:20:7f:9f:f9:e3:c3:7a:36:
c9:a2:fa:0b:e1:85:cf:ed:12:ff:9c:66:38:ed:eb:
6d:dd:8a:4a:10:0f:72:75:b6:89:e5:93:c2:5c:80:
f3:9c:32:62:a2:48:3c:76:cc:0d:37:9c:55:50:8b:
28:de:f4:86:b2:76:01:51:60:66:e8:7e:ef:7a:c8:
be:eb:a4:ff:24:1b:a3:54:07:e6:27:f1:34:d1:d8:
ca:38:e2:c3:f2:b8:96:9d:52:18:7a:09:96:79:17:
57:c1:33:f4:fd:2e:fa:65:e7:e3:ff:6c:69:8d:2f:
1d:5e:6d:39:7e:a3:2e:d9:b8:24:e1:e7:05:1d:a3:
64:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:44:27:44:6A:84:CD:B6:BC:36:67:36:F9:0A:E6:22:3C:6D:29:03
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:ee:71:94:26:c9:2b:ff:a4:f5:85:a5:dd:3b:91:f3:c0:03:
79:ac:9c:e8:0b:a1:39:10:37:c0:5a:c4:f3:0a:32:12:99:9e:
4c:f9:a8:bb:bc:83:3a:02:33:c6:0f:4e:cc:04:cd:ca:27:f5:
65:18:31:e3:ea:1e:0c:8d:3b:46:ed:87:0e:21:e6:76:6e:b2:
d9:58:ae:24:b0:14:41:fe:ad:49:f9:db:01:dd:8c:8f:1a:d3:
80:26:99:b7:bc:7c:6d:9d:c7:76:51:96:b8:f7:37:5d:ac:66:
47:b6:13:97:d4:40:46:88:42:fd:51:53:cb:d5:6d:e6:1d:fc:
73:71:3d:fd:17:20:69:22:69:84:25:2a:ca:0d:8a:aa:de:24:
2d:5b:2b:4c:7b:36:e3:c8:81:88:25:a0:4a:1f:23:91:17:80:
52:af:29:79:26:60:8e:24:a6:9d:6e:7b:c7:76:6f:10:55:e8:
29:83:d5:2f:c5:de:78:ea:d4:2d:8c:28:82:48:06:c1:df:eb:
21:3a:dd:a5:ef:86:f8:6b:c7:29:58:23:43:94:0a:45:ab:55:
8b:7f:4c:e6:3d:61:5f:f5:f2:87:bb:44:18:50:f3:fc:8a:95:
a8:49:b6:f8:d7:32:a5:0e:80:68:e5:2f:78:d6:96:8a:6a:38:
83:e4:c4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:07 2025 by rpki-client