Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: EcJiD+5WuRQbp2Y5mSEM5We40gajvAzD/6VxSauQRNY=
Subject key identifier: F8:6A:93:FD:EF:19:45:2B:84:B3:BF:FC:28:31:53:7B:AA:E6:3F:7A
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 0199FC58D38E84DA94AFA918CF205EF2EABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 163D
Signing time: Sun 19 Oct 2025 12:01:43 +0000
Manifest this update: Sun 19 Oct 2025 12:01:43 +0000
Manifest next update: Mon 20 Oct 2025 12:01:43 +0000
Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: qJyl6dgZhuvr+GYcFCyP+ZPRgtLzYyo7Pad51dKQvLM=)
2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d3:8e:84:da:94:af:a9:18:cf:20:5e:f2:ea:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: Oct 19 12:01:43 2025 GMT
Not After : Oct 20 12:01:43 2025 GMT
Subject: CN=f86a93fdef19452b84b3bffc2831537baae63f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:f2:f3:af:54:97:a1:9c:73:9a:d2:e3:f5:
45:01:8e:bf:99:22:41:37:c8:29:52:05:b9:eb:b0:
80:eb:88:d4:57:ff:62:67:1b:bc:81:29:b2:61:fa:
8c:67:55:9c:79:43:f1:0f:4d:2a:53:0f:19:db:a7:
77:7d:1e:74:97:59:14:ff:53:d9:7d:9d:67:d7:c7:
f9:92:38:37:2f:fa:b6:e3:36:c0:57:f3:fd:ba:34:
57:6a:6d:42:d7:83:3c:63:e1:51:83:ae:a3:47:8c:
f5:81:36:9b:b2:65:ad:c5:f1:7f:38:90:d8:a3:35:
d3:b5:86:1e:37:9c:16:b5:90:e9:52:aa:04:32:d1:
77:ef:58:d2:0b:4d:eb:eb:d2:e0:bc:0b:c7:b5:1c:
c0:d4:63:d8:72:c4:67:4b:5e:a8:47:ab:03:6e:bc:
ae:c0:f8:bb:2b:27:b8:39:6a:45:5d:d6:55:5a:87:
fa:19:fd:64:dd:ca:2a:21:62:1a:59:9a:54:74:a6:
cd:c8:09:a1:8e:e9:8b:2a:7f:68:a6:4d:7a:07:05:
36:29:27:52:1d:1c:51:f2:ff:f7:f1:95:a9:3f:d2:
8d:88:b0:79:77:95:1a:11:47:51:31:9a:1a:53:bb:
24:3c:29:99:c4:04:6f:1e:31:3f:b5:00:b4:cf:d7:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:6A:93:FD:EF:19:45:2B:84:B3:BF:FC:28:31:53:7B:AA:E6:3F:7A
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:d4:5d:24:3c:23:13:69:d7:e5:b7:e3:97:40:28:d3:b0:63:
d4:a4:17:dc:b2:33:49:3b:f6:25:6d:6d:7f:44:3f:f8:2b:24:
e2:1c:e5:7d:7b:20:ee:64:24:b3:95:52:19:2c:dd:33:63:96:
99:49:5d:f9:75:fd:d0:df:1a:3f:ef:4a:16:e6:23:56:33:3f:
bb:ce:7a:dd:c9:d0:68:7e:fb:d8:73:a8:0e:23:07:74:02:19:
cb:43:46:34:eb:62:e3:ed:e6:8d:72:f7:62:87:21:1f:60:4d:
96:b9:6f:d2:c9:33:85:ce:7e:24:17:54:8e:f6:08:00:96:5b:
d3:15:ad:c2:80:ae:e5:47:9a:35:3a:7f:55:da:09:bb:54:40:
33:14:b6:ec:78:82:33:51:8c:e4:83:0e:ae:ca:41:ae:fc:4d:
66:48:10:cc:05:a9:c3:89:bb:7c:ea:ab:9b:04:4e:2d:19:c6:
52:e8:a0:4f:38:95:55:a6:1b:41:6a:6d:66:f0:b0:50:b6:8d:
69:ef:2c:4f:30:3d:9b:97:5f:c0:d3:49:ef:dd:41:a8:fb:33:
d7:60:f6:6f:87:92:b1:a2:d5:fe:a9:00:31:df:24:da:33:7a:
04:64:83:2f:5f:d3:df:a5:0f:88:11:27:30:58:a2:57:40:d6:
d0:c5:cc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:55 2025 by rpki-client