Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: kGpXIAmsqUUm8NEtTSSQAjdU5PFRNKBZ7n9l9kzsJww=
Subject key identifier: DF:3D:FA:7D:68:DD:3D:08:91:1A:2E:00:1B:17:71:95:63:3A:F4:3F
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 0198D54E4AED37735DD6D7ABDD8E73EC2211
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:02:14 +0000
Manifest this update: Sat 23 Aug 2025 05:02:14 +0000
Manifest next update: Sun 24 Aug 2025 05:02:14 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: rftN8bv4QPINmbLNgknk3gpInP35g4Z8dkS3D9oqkMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:4a:ed:37:73:5d:d6:d7:ab:dd:8e:73:ec:22:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Aug 23 05:02:14 2025 GMT
Not After : Aug 24 05:02:14 2025 GMT
Subject: CN=df3dfa7d68dd3d08911a2e001b177195633af43f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a8:b2:93:0e:ae:9f:8d:8a:bc:6c:a7:b9:e2:
39:0b:85:5e:2c:8a:1e:c9:de:06:d5:ce:57:ad:5e:
54:ab:88:08:f6:44:70:ec:c1:f0:f4:da:e8:60:cc:
6b:3d:93:97:d4:a4:b1:e7:00:ea:ce:f0:d2:24:e8:
ed:63:13:9a:e4:f8:2b:cd:0f:36:c9:bc:29:23:af:
77:80:ae:40:e1:e4:5d:7f:79:4e:af:af:bf:a7:f8:
97:dc:ea:c3:e1:26:6d:3d:5e:0b:b3:91:72:33:c8:
73:3f:01:27:f4:f9:56:5f:ba:a5:3a:83:d2:66:80:
50:97:86:6a:9a:95:49:71:3d:11:b3:b9:d3:aa:71:
d3:4c:d1:d1:af:62:97:01:25:e4:ae:f0:fc:33:a9:
dc:76:13:15:1d:e8:94:b8:e5:46:0d:96:0e:ac:18:
b9:04:7c:67:dc:69:83:22:05:3b:04:29:85:89:12:
99:20:bb:ea:96:32:13:04:85:02:5b:51:ae:f8:b1:
36:66:3a:57:fb:e0:7e:fa:20:ac:cf:f6:fd:d6:97:
15:03:e1:62:8b:f2:c3:87:ca:ed:1b:b3:c3:71:dc:
72:55:12:a9:46:85:46:c3:55:2a:50:b5:96:8a:dc:
2a:80:6b:f6:2d:6f:82:02:a1:dc:8e:5d:ec:3e:89:
16:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3D:FA:7D:68:DD:3D:08:91:1A:2E:00:1B:17:71:95:63:3A:F4:3F
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:96:ce:fa:19:8f:d8:6f:90:ea:e3:b1:79:7c:34:2d:c3:27:
79:59:dc:43:07:0d:68:12:b1:c1:a6:21:15:20:ac:4d:1f:9f:
af:27:eb:cb:03:8a:55:5e:b5:0e:05:ef:08:07:d5:8f:9a:1b:
4b:50:ee:7b:f2:d7:4f:f2:31:65:59:55:e2:63:e1:8a:c3:b3:
99:5b:da:12:5c:fa:5e:4a:d7:11:ac:39:86:fc:21:a8:95:74:
6f:21:11:07:21:8e:58:58:7d:b6:4b:4c:b1:7e:51:68:5d:17:
da:2f:e2:2b:6e:48:41:a7:17:1b:4a:af:56:95:40:7a:3a:97:
bd:15:13:00:f4:79:65:a1:c0:db:73:ac:20:46:03:31:0c:77:
25:7b:aa:ef:97:fb:aa:54:0b:9f:ac:71:6e:fa:c7:a6:cb:aa:
7f:cf:ed:de:0d:00:4c:dc:a8:76:e8:87:ab:02:59:52:3e:80:
b9:14:61:f2:af:e3:e9:16:3c:3a:99:44:1e:12:06:bd:d8:f3:
2b:83:56:af:c8:dc:50:fd:3a:c3:98:ef:e6:8b:44:62:51:15:
78:ab:da:1e:91:6e:a8:28:00:53:5d:ca:41:7e:67:22:49:46:
be:d8:c3:b9:c0:76:2c:bc:9d:60:67:87:35:25:93:c4:00:a3:
b9:06:b8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:33:35 2025 by rpki-client