Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: WgmkMMYz2PKtUlcu4rgLoORYTnEiicjU7YVSdNtKUms=
Subject key identifier: 18:B3:B3:C9:5D:1F:20:EB:CC:11:25:69:2E:82:2D:3D:FE:65:EB:2D
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 0198D4E02CFB7A742E18A1C29B08F5AC2AAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 164F
Signing time: Sat 23 Aug 2025 03:01:57 +0000
Manifest this update: Sat 23 Aug 2025 03:01:57 +0000
Manifest next update: Sun 24 Aug 2025 03:01:57 +0000
Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: 1EIcQPjIRsLVx36waszisiMUnzX3MXETSPjz8MYp91s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:2c:fb:7a:74:2e:18:a1:c2:9b:08:f5:ac:2a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Aug 23 03:01:57 2025 GMT
Not After : Aug 24 03:01:57 2025 GMT
Subject: CN=18b3b3c95d1f20ebcc1125692e822d3dfe65eb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b2:5c:35:7f:5a:e9:e7:ce:1e:09:2b:be:83:
bd:ba:a6:85:d5:4b:e1:75:94:6b:8f:b4:1f:90:81:
c4:c2:3f:86:a2:41:73:62:1e:4f:00:b5:73:ba:b4:
e9:2e:88:dd:b3:4b:bc:97:80:3a:3c:6f:2f:92:23:
58:4f:fe:58:d6:f8:33:51:60:e2:f1:f4:71:79:79:
9a:a2:33:c7:71:79:bb:b4:88:96:bf:18:e8:a4:30:
2f:00:ec:f4:f4:f3:a4:74:1b:e1:81:ef:29:dc:f7:
13:a6:e5:8b:05:a9:d4:91:d9:5e:ff:e1:6e:1f:b3:
df:e2:59:41:05:bc:54:b1:bc:84:61:b5:8f:24:7a:
84:39:00:04:b2:94:dd:7a:e1:44:6f:7a:69:14:21:
61:1a:97:ab:c4:a7:f2:1e:2c:f1:e0:fd:eb:65:ed:
42:e6:28:09:62:e3:9a:a2:91:be:4a:47:3a:21:3a:
0f:ac:03:23:b1:ce:e8:1b:b0:5c:4f:7d:a8:a4:ba:
c5:ed:95:30:b8:22:ac:0f:e1:71:3d:7d:6f:b7:2f:
9e:23:54:05:ab:a4:f3:65:b6:bd:2d:89:96:b7:f9:
3f:0e:da:7b:2d:a2:c8:c1:37:1a:44:4a:ad:ac:a1:
cf:2b:5b:80:c1:73:0f:33:30:8d:c9:ff:c9:45:79:
14:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B3:B3:C9:5D:1F:20:EB:CC:11:25:69:2E:82:2D:3D:FE:65:EB:2D
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:af:5e:97:45:d6:30:1b:56:41:da:07:af:52:d3:4a:b0:c6:
32:dc:b1:4d:e9:41:13:6f:aa:cc:63:10:0e:0d:9e:4f:85:d7:
7c:ce:ad:1d:3b:07:8b:e9:ce:b4:ed:a0:65:a2:f1:e7:0d:61:
a9:0e:38:72:2f:69:af:bf:45:85:72:a5:a1:f3:ed:5e:10:be:
97:90:e9:e3:db:7e:0c:a3:2b:ff:c9:7b:bb:80:0a:e0:fb:c1:
ff:a2:fd:0c:a4:8b:38:42:64:02:9e:c1:ba:3b:4f:02:55:1c:
92:44:e3:fc:19:24:d3:28:06:2f:44:d6:c9:14:c6:ca:d0:5a:
34:15:09:a0:ec:a5:cc:4d:f7:c1:22:c3:08:93:59:c8:93:21:
13:d7:a3:ac:d9:7e:f4:ba:d0:d1:b8:06:68:cc:bb:97:38:24:
00:4d:a6:17:61:85:a3:5d:7a:a4:54:21:cf:18:04:51:a8:53:
a6:3a:07:65:0c:f2:0a:96:1a:aa:34:2a:b7:af:26:b7:9b:a7:
f4:a5:e2:c1:0a:29:b3:8f:2a:c3:e6:38:f7:99:fa:99:97:b5:
17:ac:c8:02:f1:6c:bd:4b:6d:7e:2f:ca:b8:09:09:28:4d:f6:
a9:c7:7e:11:8d:18:87:01:90:06:5a:4d:86:25:7d:a8:6d:f4:
17:fd:e5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:43:30 2025 by rpki-client