Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: DPMEaFfBXBe3xqAnIVXOLjk5+ul7Vmr3TSC/Omjn1hc=
Subject key identifier: A9:C9:34:03:FF:65:93:13:8A:7C:E5:A9:99:AF:9E:D3:D9:81:32:5E
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 019923A0E75FAF7EC2841AA6FF487E521064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 10:02:51 +0000
Manifest this update: Sun 07 Sep 2025 10:02:51 +0000
Manifest next update: Mon 08 Sep 2025 10:02:51 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: jAAUue5QCpIbjNxALFjOu0wnVnUnX+KioWuQP4qAIzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:e7:5f:af:7e:c2:84:1a:a6:ff:48:7e:52:10:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Sep 7 10:02:51 2025 GMT
Not After : Sep 8 10:02:51 2025 GMT
Subject: CN=a9c93403ff6593138a7ce5a999af9ed3d981325e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ee:0c:82:b9:7a:92:2a:ae:3c:7c:ba:d4:ed:
73:b3:07:fc:11:ea:59:aa:07:0b:71:d3:98:bf:a9:
d6:ef:8d:88:ba:13:be:50:ec:34:75:9d:14:59:65:
96:b4:a4:ff:cb:dd:0f:95:6a:a7:af:8a:d4:3e:2b:
ee:5a:24:0c:0f:80:93:78:c2:85:e0:81:b6:ac:ee:
2f:b9:d8:c5:ef:87:e3:c6:db:8b:cd:43:9d:ff:50:
63:23:e9:73:66:cb:9a:64:31:33:e1:7f:e2:1c:b6:
8a:03:d7:88:a6:3b:af:89:c9:df:dd:5a:41:9c:ce:
18:78:3c:3f:a3:48:db:71:85:6f:df:ff:b0:75:d5:
6c:fe:6e:4f:9c:7c:68:c0:a6:1a:07:31:90:a7:12:
66:28:a0:fa:76:13:5a:24:f0:85:2e:a3:9a:fe:f8:
3f:87:f3:80:41:be:e7:f5:0b:ec:c6:36:b1:c0:a5:
20:d2:87:6a:84:90:71:52:6d:2d:01:39:9b:2d:e0:
04:a5:16:26:88:3d:03:dd:12:63:51:1b:72:44:51:
67:77:1b:2f:cf:35:b4:1d:51:a2:32:a5:b5:89:96:
96:00:3b:51:c3:f8:98:de:6f:2d:ff:48:d1:50:9b:
fd:fe:7c:a3:f9:3d:2c:46:73:e6:91:df:5d:e9:7e:
6d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C9:34:03:FF:65:93:13:8A:7C:E5:A9:99:AF:9E:D3:D9:81:32:5E
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:8b:a7:ed:89:b1:d1:95:c4:67:47:39:42:f6:5c:8b:f4:f9:
18:d2:cd:7a:db:64:41:72:53:67:4a:68:a4:46:7f:df:39:7e:
fe:69:af:1e:a2:7e:19:2e:6b:84:75:b4:68:8b:0c:a2:03:81:
45:6a:dc:a3:56:46:7d:ef:4d:09:c0:e4:24:23:10:9d:b2:41:
29:f2:d7:57:63:44:0e:d4:31:c6:ab:63:56:5c:96:0b:8e:64:
29:2e:0c:cd:4d:cd:62:0a:bd:ac:a2:09:f8:b0:52:db:76:cd:
b0:06:1c:a3:bc:6d:f7:e6:05:35:2c:29:f4:d3:ef:ad:06:7c:
29:8f:ca:6a:ce:fc:76:4a:50:51:67:cc:fd:77:c1:7c:46:1c:
01:0c:b4:94:f9:01:2b:78:30:2e:d8:2a:7e:4a:63:7b:23:b0:
56:bf:91:79:2b:6c:f4:6e:85:ec:2e:ae:c5:0e:9b:2a:86:b3:
b8:85:3d:77:9c:b1:89:6b:45:3b:9f:ad:16:2f:2b:76:3e:e4:
55:e5:6a:d3:2c:c6:1e:88:39:7f:e5:de:62:09:a0:54:ec:4d:
4b:bf:02:0f:67:33:a5:b5:b9:62:d0:16:c5:3e:e9:c6:7a:65:
7f:73:4c:56:35:56:7d:da:fe:d4:b4:43:b7:a2:15:36:cd:64:
43:7b:e9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:31 2025 by rpki-client