Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft
File: ZD2vEi46h6yqb9tiw1olKhmaWNk.mft (raw, json)
Hash identifier: KXnjNZKOzKAHCfjxZZeRFK8mToawVJR4WRQqH1eqIMA=
Subject key identifier: 3F:16:EB:7F:49:E6:6D:A5:CD:3E:5F:4F:8A:FF:D5:28:E4:4D:1B:95
Authority key identifier: 64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
Certificate issuer: /CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Certificate serial: 01992255297976C10BBAD678973923159207
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft
Manifest number: 0DF4
Signing time: Sun 07 Sep 2025 04:00:30 +0000
Manifest this update: Sun 07 Sep 2025 04:00:30 +0000
Manifest next update: Mon 08 Sep 2025 04:00:30 +0000
Files and hashes: 1: 5y54voFpQemaWdhJdL3R6I-ZfdY.roa (hash: 0q0hdM7ItmEN9aXgu0xUxeLxjebZjyz7UrwOiAMpRFI=)
2: ZD2vEi46h6yqb9tiw1olKhmaWNk.crl (hash: eKD4WZDt0FIAQNg6TTEQ4ShT1UyGaR/VJBl8wI/RraI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:29:79:76:c1:0b:ba:d6:78:97:39:23:15:92:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Validity
Not Before: Sep 7 04:00:30 2025 GMT
Not After : Sep 8 04:00:30 2025 GMT
Subject: CN=3f16eb7f49e66da5cd3e5f4f8affd528e44d1b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:9b:8a:46:14:7b:18:58:b3:c3:40:5c:8e:
1b:b9:43:f7:8e:1b:65:06:a8:0f:02:05:9e:87:bd:
a1:aa:13:a3:c5:37:f4:cc:7f:7d:e9:af:65:fd:42:
7e:f4:7e:4d:fb:9c:7c:fe:24:ff:a3:c6:88:67:da:
24:1e:be:5c:b6:71:8b:ad:bc:67:84:5d:b9:ce:b9:
f4:f4:f2:c7:44:30:34:93:12:ab:59:1a:39:59:48:
69:04:33:7a:76:08:b6:5d:f0:7c:70:a7:01:11:81:
eb:ae:47:99:de:4f:73:fc:eb:4d:40:94:c7:ad:49:
73:eb:19:9c:ae:d4:9c:9b:8c:66:18:57:09:19:a3:
a9:cf:ad:2f:85:1a:89:c6:2e:8d:66:29:92:f3:84:
75:52:6a:13:da:65:9c:99:16:e9:f6:6a:35:33:bd:
06:28:30:17:8c:f0:4b:6d:44:a5:39:50:e8:f1:98:
36:b4:e2:2d:f9:5c:ed:c0:a8:1a:70:58:41:17:0d:
b8:63:e2:da:d8:e8:49:f4:80:53:9e:c3:46:b1:cd:
cd:3c:e8:41:c0:25:a1:e3:2d:1a:59:2f:5c:89:a6:
3c:fd:28:56:9c:af:bd:04:6c:f2:d3:01:05:c1:8b:
3e:74:44:33:7d:42:7e:d2:4b:a0:ec:64:1a:89:65:
71:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:EB:7F:49:E6:6D:A5:CD:3E:5F:4F:8A:FF:D5:28:E4:4D:1B:95
X509v3 Authority Key Identifier:
keyid:64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e2:86:8d:d9:ad:a2:d3:43:cf:2d:bf:8f:b6:4e:58:1b:d9:
61:d6:99:7f:f6:01:ea:e2:f5:1c:f1:af:90:b8:9a:5b:3d:ac:
62:65:f6:86:a2:12:4d:c7:0d:fd:dc:5d:84:ae:dd:34:e5:19:
1c:c5:c2:8d:36:c7:a4:b2:4d:59:4c:77:4d:75:89:7c:83:77:
c9:d3:16:ca:26:f3:82:fa:58:d3:4a:0a:8d:30:c1:fa:95:57:
d6:a7:71:88:7b:b4:c9:e3:44:c7:20:88:16:87:a3:5a:5a:5c:
bf:d5:74:17:72:4b:78:98:50:83:4c:f0:38:e0:b5:b7:b6:f9:
d5:e0:b4:03:dc:a7:a2:60:c8:c8:e3:a0:84:a0:78:7a:fa:47:
6d:e8:45:8c:f7:de:ba:8c:80:b4:a7:4e:33:e9:bb:31:45:86:
af:53:af:ee:e9:93:3b:ca:cc:b5:9c:3a:03:19:fe:bc:7f:e0:
43:64:9c:df:fa:ae:5e:5b:35:c6:e6:8b:a9:51:ab:4d:30:6d:
0b:5e:9f:5d:e6:5a:ab:25:32:2f:cf:e4:5e:2e:9c:21:a2:23:
64:8a:53:67:f4:0e:af:fe:fb:c5:6f:23:e8:a4:f5:73:f2:ca:
fe:7e:b2:65:2e:46:21:21:84:6b:21:af:13:d0:b0:ca:f2:c4:
76:c8:68:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:00 2025 by rpki-client