Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: q0rJDzAMZZnoo5GQuHSAZZyR0rrKE7CwmD3OD3+xHx4=
Subject key identifier: 5F:6E:F9:5C:A5:CC:40:09:58:17:D2:8E:DB:D7:3E:CC:BB:DE:89:15
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 0197B9D924B44055212644CC1BF06FD3B382
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 04:01:44 +0000
Manifest this update: Sun 29 Jun 2025 04:01:44 +0000
Manifest next update: Mon 30 Jun 2025 04:01:44 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: tNo1mXXJdITJpkUEEv5OUipdP2K4f+e4QFTbi2602TU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d9:24:b4:40:55:21:26:44:cc:1b:f0:6f:d3:b3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Jun 29 04:01:44 2025 GMT
Not After : Jun 30 04:01:44 2025 GMT
Subject: CN=5f6ef95ca5cc40095817d28edbd73eccbbde8915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:00:d0:ba:e1:e3:83:1b:8a:22:bd:f3:8b:46:
a2:2e:f7:8f:00:48:18:d2:34:39:e7:ee:5f:be:41:
0d:f8:54:2d:c9:6f:fe:6b:40:95:7d:44:f6:3a:61:
55:71:d7:c7:e3:89:a9:57:cc:76:e4:cf:5b:7c:67:
d5:15:4c:3c:bb:3e:94:60:6d:46:40:44:d2:32:10:
8c:3a:43:6f:f4:37:6e:a0:3a:b4:db:d6:7b:6d:81:
75:d5:6b:97:b9:6e:21:bc:22:69:3d:6e:65:ac:b3:
21:e0:ac:1a:18:fb:0b:6e:93:ae:14:e9:3a:3a:cc:
a5:d7:12:69:78:9f:d3:c5:82:1b:35:96:51:c9:4e:
21:dd:fb:0a:60:b1:29:e9:4d:b1:56:83:b5:48:73:
9c:81:cc:37:3d:ca:10:74:2a:90:3d:41:e6:03:fe:
de:c2:31:e5:eb:ec:37:6d:ab:c9:33:03:d9:d9:be:
0a:f8:d6:a5:f8:e7:c8:bd:0f:98:f2:aa:95:08:0c:
02:7d:49:fb:9f:2f:9a:0a:95:38:99:59:af:1d:b7:
69:99:3e:a8:6b:5e:cb:91:d2:72:3d:3f:0f:2b:4f:
3a:82:9b:63:31:8c:98:6b:5a:29:2b:70:5c:d1:d4:
44:94:40:03:54:a1:97:aa:c0:ab:36:3d:24:0c:58:
20:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6E:F9:5C:A5:CC:40:09:58:17:D2:8E:DB:D7:3E:CC:BB:DE:89:15
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:76:5f:4e:14:65:d9:cd:9a:17:27:26:fa:0b:e4:08:0d:2b:
4f:65:77:a7:f9:1f:5e:be:7e:89:ad:bb:5d:16:95:78:bc:e9:
df:35:c7:d8:d9:dd:40:8e:99:03:c1:84:87:b6:f6:aa:e7:70:
ed:4a:75:f9:2d:b4:e9:5a:cc:41:f7:7f:4c:b0:95:2d:f9:b9:
ee:73:bd:e7:1d:a9:d7:1d:ac:b4:ed:cb:e1:09:7e:13:fa:e0:
cc:c5:9b:67:3b:9c:df:83:96:ce:f4:8f:54:b7:b1:78:34:ae:
93:a1:f4:d4:02:fa:66:fd:63:62:46:bd:4c:4a:8c:3c:bf:97:
93:e8:7d:ea:f2:7e:94:4e:f9:c6:8f:b8:b2:f4:6d:2f:1f:57:
71:e3:8d:71:40:7b:e8:f7:aa:d3:c4:f2:88:8c:11:bc:d6:08:
b8:c2:3e:13:6a:d3:04:06:2d:74:6c:a3:e6:f0:00:e9:45:29:
2a:09:7a:47:38:b5:b3:30:6a:eb:a3:af:af:a7:ee:35:d5:f8:
0e:89:77:84:0c:bf:20:55:79:ac:01:e2:75:96:95:2c:cc:d8:
98:75:48:ec:3d:76:ed:c4:9a:6b:a3:29:24:96:6a:84:38:67:
16:6f:22:e6:7b:9a:a3:eb:1d:22:2e:69:93:05:1a:d3:f0:40:
67:04:77:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:28:33 2025 by rpki-client