Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: zpWBBjsjaZ4k8PSKPnrKLe5dpH0M53FCcRULWg22COQ=
Subject key identifier: 9A:65:42:98:7D:BA:AD:41:CC:5F:00:58:36:37:B5:31:02:55:86:93
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 0199FCFD77FAD8A9FC0C590707FF60AFB5BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 060A
Signing time: Sun 19 Oct 2025 15:01:33 +0000
Manifest this update: Sun 19 Oct 2025 15:01:33 +0000
Manifest next update: Mon 20 Oct 2025 15:01:33 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: 4ILtS4Keim+1Hmkb4xI8KdHuEzUNyKTUssEfU0o9rnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:77:fa:d8:a9:fc:0c:59:07:07:ff:60:af:b5:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Oct 19 15:01:33 2025 GMT
Not After : Oct 20 15:01:33 2025 GMT
Subject: CN=9a6542987dbaad41cc5f00583637b53102558693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:97:32:a2:99:b1:f9:fd:a6:64:98:35:a8:
fd:b8:64:6b:79:48:1e:56:de:b9:f7:f1:68:07:18:
bc:99:37:7f:37:ad:51:8a:ae:78:3e:03:45:c6:4a:
f1:de:a5:a8:6f:cb:28:b7:28:8f:ae:a1:07:f1:45:
34:21:b4:8c:8f:e1:4d:02:b1:00:60:7f:2f:1a:ac:
5a:1e:29:1e:1d:2d:f0:9b:b6:96:aa:af:a8:9b:97:
c0:48:5f:81:a3:99:f4:ab:ff:3a:75:b9:09:ef:15:
39:da:27:a1:5c:c7:ab:42:4c:04:ef:d4:f3:96:d1:
f6:ca:ab:c5:84:2c:94:f7:3a:d6:3f:cc:c1:c7:79:
2d:dc:3e:ea:4e:82:a3:48:37:e6:17:dc:df:71:2e:
7f:41:80:cf:9a:9b:66:91:9b:dc:34:83:ee:26:b9:
39:b0:ca:ba:d0:8e:36:a3:ef:b7:8c:01:8e:5d:b7:
06:35:f2:bc:a3:d5:9b:21:48:44:d0:09:c7:2f:33:
88:e0:90:6b:35:2d:a5:ba:bb:36:2a:90:e9:00:c2:
05:4f:af:d7:67:e6:8d:b2:09:95:d8:d3:47:a8:0c:
25:26:87:21:bc:ba:d1:7d:50:f5:e3:4b:3b:9f:16:
c1:18:4b:25:e5:75:7f:0b:2c:f8:d5:e4:14:f4:95:
0f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:65:42:98:7D:BA:AD:41:CC:5F:00:58:36:37:B5:31:02:55:86:93
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:e0:4e:b8:dc:6f:90:ee:b8:f1:3e:88:d4:0e:2a:db:ee:52:
6a:ae:3c:b7:ff:63:4e:2f:22:ce:af:ca:db:05:58:90:79:4f:
57:95:9d:6e:32:54:1b:b5:a3:70:2a:f1:c0:f2:0d:3b:3b:e0:
f4:a4:70:c1:78:19:bf:6e:02:af:0e:43:7f:e4:b0:ec:a1:b2:
27:ef:ae:8f:5c:a2:93:10:e1:ae:88:07:fb:18:fa:08:75:1e:
b9:2c:76:c4:61:bd:44:d9:c5:44:c3:eb:49:72:0d:43:9e:e2:
6c:9f:c1:b5:59:4d:b7:ff:6d:a4:b9:63:a5:3c:a8:c9:00:67:
59:e7:c3:c8:1e:8a:bf:0d:93:94:a0:54:a1:0b:ad:aa:68:53:
b7:f4:c9:67:03:62:54:6d:21:25:21:59:5c:47:5b:4c:93:a6:
b0:b4:de:8a:3c:08:00:d4:0b:af:a8:77:44:08:31:d0:d3:82:
28:18:b1:42:0d:c8:74:75:e8:11:6f:ed:ce:c9:df:e3:b9:3b:
1f:ba:9f:10:2d:77:3d:7b:f8:77:70:0c:9f:25:42:07:87:81:
39:46:67:16:a7:58:83:6f:4e:77:72:b6:8f:b3:c1:aa:bb:e8:
1f:b9:13:88:5f:e4:17:a8:ff:ce:74:4b:0c:bd:e4:1c:12:40:
df:f3:da:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:42 2025 by rpki-client