Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: SqWlt66oiwIQw5rx5oY5goAIytZizzlvqLBuAwI8JQ0=
Subject key identifier: CC:FD:BB:A8:45:C8:D4:F9:62:D9:1B:8D:D9:DB:3D:BC:52:D7:F5:D2
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 0197488C925FB1D2E12CC73FF789C1CCCC0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 04:01:01 +0000
Manifest this update: Sat 07 Jun 2025 04:01:01 +0000
Manifest next update: Sun 08 Jun 2025 04:01:01 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: sPUQ76IZjEiyRTIuGa80cBRlDRN453lWr8AY46A901M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:92:5f:b1:d2:e1:2c:c7:3f:f7:89:c1:cc:cc:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Jun 7 04:01:01 2025 GMT
Not After : Jun 8 04:01:01 2025 GMT
Subject: CN=ccfdbba845c8d4f962d91b8dd9db3dbc52d7f5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d5:24:73:47:1d:90:bf:4c:95:3c:46:8b:c6:
5c:c3:a5:2b:d3:b1:a5:ee:ae:df:16:2c:2f:98:d5:
ad:1d:35:33:76:59:b3:2a:7c:6a:36:db:8c:cb:5f:
4b:b5:3a:de:2f:35:55:99:b9:48:d9:a7:fc:30:2a:
2e:0b:a8:c2:4e:48:e8:78:55:f1:91:3b:07:b5:46:
b4:71:9a:a6:95:3a:c9:5c:26:04:6f:22:6c:43:ea:
84:05:48:2d:98:84:2f:26:d6:41:5a:7f:4a:fc:a6:
20:b2:a1:a3:19:27:84:c8:d4:0f:da:41:2d:2a:fd:
f7:23:c3:30:04:e2:31:e0:6d:4d:99:02:7f:83:0d:
dc:7a:5d:bf:71:88:a7:c7:28:a5:55:cc:c0:88:00:
65:e7:b5:1d:19:8d:71:b0:0a:8d:4c:03:d4:52:da:
ce:8d:06:5e:11:f2:26:49:2e:60:e7:3c:cb:e8:e8:
4f:02:97:97:da:33:f5:a7:5d:9e:a8:10:5e:00:69:
85:bf:f2:4a:32:20:89:3e:3e:d5:27:5f:23:46:1f:
bd:b5:b6:d4:80:72:f3:ad:37:5c:4e:99:8b:d4:00:
12:e9:a8:9a:eb:db:04:ba:59:bc:39:a6:1a:00:5a:
95:19:05:b0:56:5a:98:9a:bd:57:04:25:84:f6:a5:
06:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FD:BB:A8:45:C8:D4:F9:62:D9:1B:8D:D9:DB:3D:BC:52:D7:F5:D2
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:68:d9:71:99:4d:a5:d8:a7:0d:0a:83:fb:bf:3c:2b:35:ba:
6c:2c:0f:39:bc:17:5f:a0:85:da:15:76:3c:4a:a2:59:ee:6f:
ed:ac:99:74:82:49:77:fe:08:eb:e9:44:22:6b:64:58:dd:1b:
b4:49:28:32:c0:5d:dd:57:c9:6d:75:6a:a4:eb:79:a4:16:fa:
d8:84:61:4f:5a:1b:94:21:b3:d3:d5:be:7d:21:57:29:50:5f:
33:48:56:37:96:60:ba:66:bf:04:d5:0c:f3:9b:51:12:19:65:
2b:d6:1a:54:f0:42:2b:d5:37:08:df:36:45:0e:4f:d9:72:04:
5b:13:a4:5e:42:39:f6:bf:b3:4e:09:7a:65:a7:fc:7a:a8:78:
fa:2b:12:6c:78:86:82:a5:ca:bb:cf:b3:e7:1c:95:11:cb:7e:
9b:78:c4:6f:28:fe:57:fd:2a:30:9e:1c:21:83:09:67:b6:03:
05:8a:9a:c2:34:45:f3:ff:20:06:32:93:48:aa:ce:b6:73:af:
90:77:b9:0a:45:8d:fa:49:80:00:83:20:b5:75:3b:20:7c:86:
e5:91:99:6f:ba:9d:83:16:8b:3e:36:85:2f:b2:82:31:19:4b:
47:e3:a8:5d:bb:17:e9:0b:bf:c4:60:7b:e7:93:70:f6:31:39:
65:ef:94:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:58:08 2025 by rpki-client