Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: yroSySC2jkc9vBzhvJet58ZibHljzU1MVjbCqJkSGTY=
Subject key identifier: AF:0E:CF:24:92:A4:77:34:CC:99:9D:D5:4D:FD:EB:8B:64:04:F0:38
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 0198D5BC25A4BBECBFDC03F0B3557C55D94F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 07:02:14 +0000
Manifest this update: Sat 23 Aug 2025 07:02:14 +0000
Manifest next update: Sun 24 Aug 2025 07:02:14 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: I84KX/+XzFih1GWP2CsaMYkgewNsU4XdJMRAPRqn1Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:25:a4:bb:ec:bf:dc:03:f0:b3:55:7c:55:d9:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Aug 23 07:02:14 2025 GMT
Not After : Aug 24 07:02:14 2025 GMT
Subject: CN=af0ecf2492a47734cc999dd54dfdeb8b6404f038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a1:4a:42:13:89:d8:42:19:50:1a:a8:3a:20:
66:81:6d:28:70:bd:b8:99:7f:f2:e9:24:a3:86:53:
95:6c:9c:9e:51:b8:d3:4c:1a:58:ee:35:23:c8:6a:
3e:b1:fd:f3:0d:12:f8:3f:ac:49:ce:6a:6d:e1:ad:
c1:e0:8b:29:60:5a:69:09:b0:a3:61:7d:c6:ff:cd:
3f:05:ea:f6:46:74:f7:2d:72:f7:b0:e2:d1:2b:03:
2e:83:20:62:26:31:8b:3d:05:c9:a8:dd:1a:e9:d6:
5c:54:55:f0:95:cc:d8:3e:32:bc:57:be:80:da:28:
30:75:5e:02:57:36:83:f0:5f:2b:95:b3:07:82:a7:
d9:9b:24:0a:95:11:f3:16:28:dc:34:a7:2c:3e:58:
bc:be:12:dc:02:c5:bd:99:cc:1a:d6:30:25:71:0f:
a2:a3:9c:55:8d:90:33:b5:1d:46:dd:99:84:a2:19:
cb:3e:98:59:b7:2f:e6:9c:66:de:2f:8d:e3:08:b5:
9c:ae:84:86:5d:89:b9:2a:0f:00:6a:38:d2:ab:11:
50:66:41:41:bf:e4:75:22:bd:5b:dd:28:06:17:83:
92:ee:46:46:f3:02:82:fb:cd:f4:4e:75:bf:4a:c7:
73:be:43:0c:0d:1d:c7:05:41:9a:44:4a:32:d2:84:
b6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0E:CF:24:92:A4:77:34:CC:99:9D:D5:4D:FD:EB:8B:64:04:F0:38
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:05:65:8f:fa:a4:05:e6:45:67:86:8b:32:a0:64:d4:b7:a8:
c0:57:29:1e:1b:4c:33:67:07:70:40:bf:9e:27:a5:82:77:af:
dd:e3:6a:4b:24:31:1b:79:4c:1a:77:1f:8a:45:82:67:d8:4a:
2b:c6:fb:1c:4a:03:de:65:ea:33:d8:11:89:4a:be:35:62:00:
8a:c0:2b:1e:cf:78:af:83:92:0c:eb:33:38:80:6e:c8:3d:8b:
16:3c:c1:26:04:cd:2f:05:54:3f:58:52:ec:37:48:da:c3:e1:
b0:29:78:fa:9f:7b:cb:e1:93:91:61:12:d2:15:74:35:1f:7d:
42:ca:f9:bd:6e:e8:b6:d7:cf:b6:ee:fd:bb:39:eb:17:01:fb:
cb:34:56:37:3a:29:00:39:c8:a2:2a:b1:98:45:31:f3:8a:db:
d1:44:77:de:35:ce:7d:94:75:6b:c3:2d:02:b0:11:8b:8b:8d:
6e:37:0a:49:c5:68:7a:c4:57:6a:5e:de:96:cd:0e:d8:d2:a7:
71:a0:72:9c:bf:f1:69:09:ae:91:a0:45:cb:60:fb:58:70:1e:
7a:66:88:2e:b8:83:1c:be:68:d2:c5:49:c9:4b:24:ba:81:6f:
2d:bd:e2:c1:7e:ad:2a:f2:82:ff:3a:cd:2e:13:02:2b:b4:40:
4d:54:4c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:55:23 2025 by rpki-client