Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
File: Ze3JFheq3wwsx_H115bb237YWQ0.mft (raw, json)
Hash identifier: +8fRh1LOLhWYXU7vgpOqzKW+A2g5q7Z/+vM/ZEz2K3s=
Subject key identifier: 40:D2:3F:7B:2A:69:22:99:40:74:78:DB:CB:98:21:00:77:51:1B:09
Authority key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
Certificate issuer: /CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Certificate serial: 0198D5BC2F1DFFFF4FADADF066CD45D16A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
Manifest number: 0614
Signing time: Sat 23 Aug 2025 07:02:16 +0000
Manifest this update: Sat 23 Aug 2025 07:02:16 +0000
Manifest next update: Sun 24 Aug 2025 07:02:16 +0000
Files and hashes: 1: C0Em9awMYVhNg2sMId10Ef0_Qvw.roa (hash: nirBzQQ6k8BEyGM3hSdFnZ+pftgQMVbe2wljIKMV4wk=)
2: Ze3JFheq3wwsx_H115bb237YWQ0.crl (hash: IP2YjhJPZoxNPrHVjE4AUXZdEKrKf5D4O8UqOUbY86Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:2f:1d:ff:ff:4f:ad:ad:f0:66:cd:45:d1:6a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Validity
Not Before: Aug 23 07:02:16 2025 GMT
Not After : Aug 24 07:02:16 2025 GMT
Subject: CN=40d23f7b2a692299407478dbcb98210077511b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:18:96:60:7d:e5:ee:75:37:8d:36:79:14:a6:
fb:c5:a8:a0:0f:c1:18:e9:31:e6:72:f3:0e:98:3e:
24:70:47:8a:be:88:0e:9a:db:92:3a:26:9e:5a:2d:
bb:50:32:08:a4:53:46:4e:87:e1:f5:9d:ec:92:a3:
65:f3:bb:43:69:a2:e7:51:13:68:44:7a:ee:4d:2e:
14:5f:cd:46:b2:21:32:c0:db:f7:42:6d:f6:46:d9:
de:e5:7c:20:3e:33:a7:b3:53:25:ec:5e:dc:e6:5c:
70:9b:4f:71:eb:a6:74:a9:df:67:3b:68:d6:20:ab:
9e:b6:65:ba:ed:13:ac:d7:c1:1e:3c:7f:c7:19:34:
a3:86:ec:95:5d:93:16:e6:27:5a:c9:94:3a:81:bd:
39:08:50:0d:17:9d:c6:97:b6:6a:ea:06:3f:74:bb:
d3:22:b9:5f:dc:bf:3d:8d:02:4f:22:38:12:07:27:
08:b4:b5:06:a4:c4:5d:b0:96:dd:69:81:b6:e4:98:
b2:b3:9e:ad:8e:f4:e2:01:61:76:25:e5:5e:9a:d6:
43:b7:75:35:3d:50:e4:46:d6:9f:65:71:27:76:4b:
cc:8e:14:e3:35:1f:b8:f4:07:f3:ba:3a:2d:4d:d0:
7a:57:2f:37:f3:69:ef:53:2c:85:2b:39:be:01:2d:
21:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D2:3F:7B:2A:69:22:99:40:74:78:DB:CB:98:21:00:77:51:1B:09
X509v3 Authority Key Identifier:
keyid:65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:28:b4:99:3f:80:f8:27:b5:7b:2f:0d:d0:ba:cd:b4:c0:4d:
b3:b0:31:b8:71:73:0a:bf:49:ba:09:a2:67:84:60:27:0e:61:
37:ac:fd:6b:9f:57:ff:57:79:19:88:d3:e3:9d:ad:dd:d9:34:
a8:60:1e:1b:73:b2:ab:4c:b2:87:5c:b2:59:26:44:e6:30:12:
01:fa:2c:33:4e:fd:c9:57:52:83:74:4a:50:da:ff:18:ec:07:
a5:93:d3:24:2c:e7:cb:ef:d2:b5:a7:ab:b8:12:09:d4:a9:94:
61:01:85:3b:3d:cd:13:38:f4:d9:63:2c:9a:4b:e3:b3:73:a7:
7c:88:5a:03:fa:91:7a:62:c9:f6:d5:41:f5:bb:19:26:c6:f3:
ab:34:39:5d:2c:44:7f:8c:e5:ef:59:2d:92:55:83:c9:63:7e:
e0:21:b4:ba:53:e8:f7:95:f2:4e:4e:cf:f7:da:25:13:93:7e:
b5:7f:30:13:2f:64:cf:95:83:3b:bb:51:a6:00:1f:f0:b8:67:
b3:76:ef:10:0e:ed:b4:0f:b7:66:1c:fc:17:54:8a:c2:54:e2:
64:a4:27:9b:ad:ea:43:8e:6c:3b:36:dc:f9:50:9b:0d:d5:30:
a3:fa:55:63:a8:74:0e:8f:c2:e9:33:0e:b2:31:c3:64:35:d9:
54:c9:c6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:49 2025 by rpki-client