Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: hKmhMY2uIROmI61rpMSrCA0vLDsCw5kMP9Z52HULgMc=
Subject key identifier: 3B:07:DC:F5:7A:E6:99:E2:F6:B4:F8:56:C6:CF:B3:B3:15:BF:84:46
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 0199FD3471F6D23E668EABDF2A63DD259171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 16:01:36 +0000
Manifest this update: Sun 19 Oct 2025 16:01:36 +0000
Manifest next update: Mon 20 Oct 2025 16:01:36 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: IGLnDjdnlkHVUgLOHzWEAQnjNgVBgcX6pt2f5unMMHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:71:f6:d2:3e:66:8e:ab:df:2a:63:dd:25:91:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Oct 19 16:01:36 2025 GMT
Not After : Oct 20 16:01:36 2025 GMT
Subject: CN=3b07dcf57ae699e2f6b4f856c6cfb3b315bf8446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7e:ee:31:02:2c:4c:10:50:e3:3e:0e:22:84:
10:ff:02:ae:e4:79:81:98:07:b1:03:e6:d9:67:82:
f5:9c:9f:e8:17:a3:38:2a:77:99:04:31:29:a8:60:
58:3d:48:97:8b:94:0d:23:7e:26:81:fd:58:8f:9f:
3a:0a:ca:6d:ca:56:7a:22:10:a5:db:7a:5d:3e:05:
86:4e:14:6e:a5:1b:e5:a9:0a:d3:61:bc:26:7a:de:
09:cb:ec:f8:da:39:0a:c7:32:97:70:b8:e6:68:f0:
d4:63:12:9f:45:e6:68:2f:9d:fb:f4:b5:be:a0:e2:
20:0d:f0:88:f9:80:ad:05:be:65:8c:05:0e:46:8a:
18:6c:03:64:d0:6b:b8:4d:09:83:bf:4e:ee:fb:e2:
99:e5:74:18:df:6a:5c:a0:4b:4f:58:2e:90:48:28:
ef:46:0c:d5:a9:6d:38:f2:f9:9d:3f:09:33:ff:83:
a2:3f:f5:21:4f:70:4e:25:7a:c0:e7:ec:57:23:1a:
41:fc:c4:88:91:8a:ae:7f:72:61:d7:36:3c:0c:d2:
dc:05:9b:74:0a:80:e3:c8:29:4b:88:9e:19:96:24:
d9:3e:05:3b:8f:d1:94:f5:99:ac:22:04:55:8b:35:
71:36:38:10:b1:82:f4:f5:dc:a5:20:dc:21:a1:05:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:07:DC:F5:7A:E6:99:E2:F6:B4:F8:56:C6:CF:B3:B3:15:BF:84:46
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:fd:97:44:24:10:5a:f6:4f:02:51:26:82:e0:f5:ab:c5:92:
fe:bd:df:ee:d9:b0:f7:b2:43:bb:77:61:1c:c5:92:43:7a:58:
b1:5a:34:73:1a:3b:1c:f2:13:4e:26:65:e1:b4:3e:f1:7b:30:
1d:4c:8a:4f:37:3e:a2:bd:28:44:58:0f:09:f0:88:11:ed:14:
dd:b2:01:4b:e2:64:1f:90:e7:a7:e1:35:37:d4:7f:91:c4:86:
fb:ce:2c:0f:1e:c9:e8:3a:e1:0b:8d:03:dc:cd:f6:59:eb:c7:
2a:a6:28:41:91:8c:70:f9:88:d6:50:8e:eb:db:77:af:ac:cf:
66:b9:cc:2e:d2:16:ce:3d:6c:e6:8e:9c:ff:ea:7a:67:70:36:
3b:3a:8f:4a:c4:53:a2:ba:42:8e:22:60:3f:bf:2d:a2:44:d0:
4c:11:63:23:f9:59:cf:f5:67:57:7c:db:2e:b0:b2:f5:12:07:
c9:48:b3:62:95:02:17:8a:32:88:2e:b3:9a:da:4d:82:fd:a4:
f8:89:37:55:42:3b:29:cf:11:09:47:64:97:77:fc:13:3d:79:
23:30:ed:27:86:7d:d0:76:83:55:5c:76:2a:56:0f:87:3f:89:
fb:33:9f:81:5f:50:94:30:3f:83:e8:ab:de:e6:df:76:a5:a9:
4f:15:ff:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:55:22 2025 by rpki-client