Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: Q8Pdm4oqsxZvgxNROHure6HIx66Lg/wzZ9LbRAQQnPo=
Subject key identifier: 01:23:34:87:7B:8E:75:9F:AF:BA:4F:61:C9:25:06:34:0C:BD:8C:12
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 0198D9604410365B0B97D51339692A03AAA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 0573
Signing time: Sun 24 Aug 2025 00:00:21 +0000
Manifest this update: Sun 24 Aug 2025 00:00:21 +0000
Manifest next update: Mon 25 Aug 2025 00:00:21 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: wKQO7ZafwlV8gzhWxHsM5VBZO4XpEAx53q4BCuyMzRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:60:44:10:36:5b:0b:97:d5:13:39:69:2a:03:aa:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Aug 24 00:00:21 2025 GMT
Not After : Aug 25 00:00:21 2025 GMT
Subject: CN=012334877b8e759fafba4f61c92506340cbd8c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2a:ef:4c:72:0f:0d:4d:58:4f:a4:32:8a:42:
8a:c9:26:20:a0:97:e1:60:a9:1e:07:1d:6c:d7:0b:
16:7b:ec:98:20:41:80:9d:05:95:dd:7b:55:04:eb:
b6:23:38:c6:3f:eb:00:14:3a:da:46:6b:db:2f:6c:
32:75:1b:84:6b:c2:e5:c4:91:e3:df:64:a0:f7:11:
be:1f:97:f2:11:52:12:8b:67:86:21:e7:2f:4d:68:
f1:4b:e4:1b:93:b0:15:fd:2e:60:50:b2:47:b9:c0:
ed:25:08:76:00:c2:8e:65:39:42:a8:42:fd:af:34:
d0:79:c3:df:9b:cb:0a:c3:44:aa:76:93:00:ca:e1:
e6:c3:63:6b:8a:da:cb:9d:3d:c3:2e:58:f4:ec:04:
69:90:7e:6c:1d:47:e2:1d:16:3b:bc:4c:15:9a:84:
9b:70:60:b9:53:70:bd:44:60:f7:0a:92:90:32:dc:
50:90:ba:ee:97:56:de:b7:0f:67:fa:b8:83:a8:47:
d0:7d:bb:5e:d3:62:ea:31:09:33:75:2f:eb:9f:57:
b6:ff:e8:f9:b1:9b:7c:a7:ad:bc:f6:4b:2f:21:2f:
a9:4c:36:63:41:41:7e:eb:0c:f6:fc:ed:af:b3:17:
b6:40:85:37:bf:e6:f1:7e:e0:8f:08:ad:94:ce:f3:
f7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:23:34:87:7B:8E:75:9F:AF:BA:4F:61:C9:25:06:34:0C:BD:8C:12
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:86:4d:72:7d:53:8b:b7:2b:7c:3f:c6:61:6a:18:3f:1e:13:
07:ad:11:ee:36:e1:66:c3:b1:ec:f4:4a:22:01:3f:c3:94:53:
78:7c:69:76:8d:0d:01:9a:d3:7d:79:20:93:db:99:eb:e4:a7:
7c:40:ab:a3:b2:11:2c:d6:eb:6e:6a:f8:4a:37:c9:df:63:fa:
a8:9f:1f:03:a1:7a:be:83:72:a2:6e:d9:59:92:64:be:2e:4a:
45:a9:8b:c9:af:a6:7f:3a:9d:f2:5b:a1:c8:99:34:3f:99:cb:
12:70:41:61:78:1f:56:36:c3:55:69:3d:f1:43:b0:8d:ad:e4:
fb:b2:c5:98:68:b0:82:04:a5:3a:31:e6:b3:0a:4f:d7:6b:97:
4f:e9:1b:53:7c:03:b3:7c:8c:ac:db:5c:1d:19:f5:fe:cd:7a:
dc:0b:e3:28:bf:c5:78:aa:a0:12:9a:90:92:fd:88:50:2e:e4:
ed:c5:da:ed:cb:b9:43:87:e1:3d:98:24:82:b0:16:3c:11:1d:
36:be:5a:cc:89:d1:42:8b:fc:8b:99:12:dd:cb:cf:29:ee:61:
1c:ea:1c:28:47:7d:ab:05:0b:db:67:eb:19:72:3a:20:0c:1d:
4d:58:2b:87:59:ac:fe:1d:78:c1:20:3e:f0:f4:be:9f:0c:78:
66:2a:f3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 07:02:22 2025 by rpki-client