Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: 6TkqaFtdYePpeEIelY8t7z40F5dxMBgQcEyyWHOkHNU=
Subject key identifier: 9D:6F:5C:DE:44:BD:8F:C6:F0:3A:3B:E3:5D:C3:5E:EE:FE:4E:0E:70
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 0197684E40ED6E43E9A89FD49E81B265E224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 08:00:48 +0000
Manifest this update: Fri 13 Jun 2025 08:00:48 +0000
Manifest next update: Sat 14 Jun 2025 08:00:48 +0000
Files and hashes: 1: KWbEbWMWx8GsR8Asb1Hi7iVj3A8.roa (hash: w7QiyqZy99cacAStF09i7GMZP3QKH24tEZwntPEoeMs=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: bTxzeeY82VxDW/dVWrkRNsemmOMMu5tdDadpep9wIEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:40:ed:6e:43:e9:a8:9f:d4:9e:81:b2:65:e2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Jun 13 08:00:48 2025 GMT
Not After : Jun 14 08:00:48 2025 GMT
Subject: CN=9d6f5cde44bd8fc6f03a3be35dc35eeefe4e0e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:84:fb:da:a6:63:d1:b9:15:81:b9:33:81:
c5:1b:2b:c7:b2:3e:64:a2:ea:ce:24:fc:27:b7:ca:
59:8f:e1:df:19:6a:74:e9:2d:27:3a:b8:fd:3e:fe:
40:e9:e5:f7:e3:b1:da:00:76:58:f1:19:f7:25:c2:
f5:c2:a3:81:cd:6a:20:ed:f3:93:49:36:22:18:44:
21:8a:0d:57:ee:3a:93:9f:7e:03:27:2e:c0:2c:79:
e9:d2:19:d3:ee:61:e7:e8:65:0d:e6:7d:40:2b:ee:
1f:ec:48:3b:91:9d:91:ae:eb:02:31:32:ad:78:e8:
03:b4:21:0c:d8:f2:ed:ec:55:85:3a:33:5d:30:28:
4b:2f:1d:04:69:f8:61:49:86:4d:ce:ab:34:a8:16:
0e:45:57:3e:b1:3d:01:31:2f:63:54:ef:2e:ca:79:
dc:a5:1f:ac:f1:2f:ab:2b:99:35:27:7c:dc:0a:c5:
ee:c6:55:e0:77:c5:64:59:2e:7f:5a:b2:18:77:9c:
84:8f:84:a4:4d:ae:4e:23:54:a8:94:cf:cf:18:73:
ec:9d:30:84:96:4a:02:84:9e:92:f5:53:53:6f:45:
6f:5a:54:21:3b:e7:43:4d:6b:b3:a7:47:af:e8:6d:
28:c4:a7:85:d5:21:d4:a0:25:83:32:62:1a:52:c9:
5d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6F:5C:DE:44:BD:8F:C6:F0:3A:3B:E3:5D:C3:5E:EE:FE:4E:0E:70
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:b4:81:f7:20:3a:7f:d3:88:59:8c:b7:03:87:bc:79:5f:b8:
ff:09:dc:0a:f6:3f:18:00:71:07:17:79:5e:d6:5d:62:ad:f5:
89:ae:b7:8a:7a:36:18:87:de:50:a3:13:76:fc:bf:f1:6d:4b:
0f:fc:2a:a8:18:e8:2a:24:6e:47:a2:d2:eb:02:2a:c5:44:9e:
1b:cf:07:62:e3:43:be:34:4b:28:01:ab:b4:19:f8:42:d4:d0:
84:3d:2f:df:f7:a3:5e:67:ac:c3:64:66:04:ed:37:4a:41:8a:
c7:4d:bb:ed:f3:f0:62:31:fc:72:87:d0:03:dd:d1:3f:f0:31:
69:20:03:05:ec:9c:af:2d:9c:ff:e3:e3:d9:cd:c9:34:99:33:
48:70:c3:d8:e0:62:1b:7c:b6:1e:fe:99:77:04:fb:b0:66:8d:
90:b0:30:40:1b:66:5e:75:37:a4:53:20:07:3f:8b:5a:af:9a:
f0:f0:43:0b:e1:f9:f2:81:d4:30:b1:68:61:1e:79:d4:dc:c9:
91:a7:ff:05:d6:68:ff:f0:d4:41:e0:68:8c:66:58:bb:cc:45:
71:d0:f3:37:35:f1:be:44:be:23:0b:0a:6e:dc:47:10:a0:52:
71:af:4c:58:6c:65:f5:85:8c:c4:e6:a8:72:f4:ed:b6:f1:50:
a2:a9:dd:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:36:26 2025 by rpki-client