Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: 2KmPgFns0chzyR0FDlsEkBgfJeOd1VZtj42arhNBFtc=
Subject key identifier: 49:E9:33:A7:C5:0C:A4:68:85:D9:80:58:D2:28:C2:D6:E2:D4:5F:A3
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 0199228C4D1D21BD3C513153484F36928A94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 05:00:44 +0000
Manifest this update: Sun 07 Sep 2025 05:00:44 +0000
Manifest next update: Mon 08 Sep 2025 05:00:44 +0000
Files and hashes: 1: KWbEbWMWx8GsR8Asb1Hi7iVj3A8.roa (hash: w7QiyqZy99cacAStF09i7GMZP3QKH24tEZwntPEoeMs=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: 9savLMxIbcHaWr5ERVpE/G6oLvG5Mx9QuD0yybLdiOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:4d:1d:21:bd:3c:51:31:53:48:4f:36:92:8a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Sep 7 05:00:44 2025 GMT
Not After : Sep 8 05:00:44 2025 GMT
Subject: CN=49e933a7c50ca46885d98058d228c2d6e2d45fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:9f:41:14:1c:7a:3b:d8:4c:2e:51:36:83:
d2:41:89:6d:2f:90:a7:2c:7a:6d:c5:09:97:31:82:
b4:c7:15:d1:51:06:95:75:22:59:f8:05:60:68:9c:
c7:17:f8:d4:0f:94:33:fc:89:6f:6f:4e:d1:22:23:
b6:e8:49:f8:b1:c3:42:3f:97:f5:eb:c4:0b:1b:f0:
6e:f6:ea:4b:8d:84:1b:1f:69:f2:0c:cf:02:5c:07:
72:f0:7f:ea:12:d7:45:da:6a:45:2f:fd:c4:92:b0:
2c:21:25:6c:8a:59:4f:e9:63:52:ff:52:e2:d8:f4:
56:2a:81:dd:50:5d:1c:6a:d7:f0:bc:4a:c8:02:90:
73:c0:4c:54:71:e9:3a:f1:fa:64:39:11:6c:96:1f:
68:ef:83:9a:11:f9:82:24:a1:a2:9d:26:9c:54:09:
28:e2:f4:5e:5f:bc:6b:ac:06:96:44:74:40:4c:fd:
c4:27:cb:70:f7:10:e8:eb:2f:b8:50:5f:a6:12:92:
f6:76:41:1e:b4:0c:18:22:9b:30:19:51:d2:5c:03:
d3:1d:18:a8:80:ec:cc:1b:33:96:50:97:58:bf:26:
11:b5:d1:7d:f8:2c:7d:a5:b1:5f:e9:ae:e3:94:46:
cb:58:11:23:41:a2:5e:dd:48:29:de:6c:45:be:75:
d8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E9:33:A7:C5:0C:A4:68:85:D9:80:58:D2:28:C2:D6:E2:D4:5F:A3
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:bf:4c:11:db:17:27:18:b0:90:f2:de:bb:19:ae:42:d4:a2:
31:99:04:05:41:3d:c6:4e:5a:1a:e1:c7:c9:9c:00:45:b9:06:
4f:d9:64:22:6b:e9:a0:e3:97:3c:88:bb:a1:df:e9:75:ec:ee:
3a:df:e6:a1:e5:b5:81:82:13:a0:61:50:c2:92:b6:db:5a:f4:
5c:f4:87:ce:1c:7c:b5:4e:72:a3:6a:d9:d5:b2:8f:4e:62:db:
bd:aa:8e:d4:ea:04:80:ec:91:a4:22:44:45:15:51:01:c1:d0:
f4:5b:af:09:76:82:29:f3:4b:a4:e4:4f:02:a8:e6:66:27:6e:
3e:d1:4e:4d:7f:4f:a6:ea:3e:1c:30:3b:8f:87:e9:59:a4:29:
d8:3f:a8:22:c8:40:bf:c6:48:0f:59:4e:88:22:f0:b7:f1:3c:
25:77:99:f4:7a:d5:45:db:f1:c2:9e:ae:f4:ac:19:b8:ef:9c:
30:36:e6:fe:7e:7c:59:5c:38:7c:99:5c:2a:e4:49:c8:5a:66:
25:69:11:d8:49:60:d9:c7:df:c4:e7:79:cd:c1:fb:e9:20:24:
63:41:c3:25:4b:e3:c8:4e:e7:21:76:3e:95:7b:04:80:38:6e:
58:45:62:95:4a:40:5a:f9:64:f3:1e:39:69:be:4d:ff:da:52:
ab:7a:9e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:03:57 2025 by rpki-client