Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: Osqok0WBX5dlkJFXUvXR1OKWLtpELh4VZbabRCnDqQ4=
Subject key identifier: 22:31:53:48:0C:80:DF:31:72:E5:99:2F:3A:93:8F:2B:EA:AD:23:5C
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 0198D884A4FC3810DB1C7D38F5A8B1578661
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 20:00:28 +0000
Manifest this update: Sat 23 Aug 2025 20:00:28 +0000
Manifest next update: Sun 24 Aug 2025 20:00:28 +0000
Files and hashes: 1: VI-dWQcY37xUT1kUINfwRf4ITOY.roa (hash: /K+hbbpjK6p98+FcPVOwuQPFXuHi6fBZ7x81PS6CuTg=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: GF+5myzSg1gszfnnGuiSBAwvh71Z7AAZ2/WeQyme808=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:84:a4:fc:38:10:db:1c:7d:38:f5:a8:b1:57:86:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: Aug 23 20:00:28 2025 GMT
Not After : Aug 24 20:00:28 2025 GMT
Subject: CN=223153480c80df3172e5992f3a938f2beaad235c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a9:2e:63:7b:94:ef:d0:77:d9:8e:46:e8:c1:
ca:33:b6:c8:d1:f6:fb:82:47:4a:f7:4c:5d:b4:fa:
ac:77:31:8b:14:35:47:70:9e:82:0b:69:9a:57:a4:
0c:d4:46:0c:07:86:e4:ab:14:25:41:bf:16:38:9a:
ff:1a:50:18:70:ab:b5:02:ee:78:79:00:e3:33:cb:
9f:d7:64:8b:67:4a:a8:8e:bc:e7:60:ef:7b:fc:fc:
8b:c1:15:86:e9:6d:d2:0f:ca:da:54:59:fe:68:3c:
9f:85:62:b7:bf:f2:77:53:81:40:92:99:b6:a3:fb:
5d:1b:da:dd:d5:41:de:cf:0a:f4:15:72:13:75:23:
b8:e1:d6:5e:79:fd:56:6a:64:c9:e8:47:71:ad:bf:
7d:a7:df:5d:87:85:ab:f5:b4:91:f7:40:82:ef:d3:
2a:23:b9:f9:27:f7:ff:7e:37:09:9a:b5:37:53:52:
a0:60:49:b4:eb:89:fc:2a:c1:83:eb:38:28:35:25:
01:6a:63:78:1b:07:bb:6a:41:52:bf:ac:42:33:c6:
90:00:85:59:4b:3d:9c:e6:d0:4c:99:0c:85:d7:e3:
ec:ea:19:69:a1:39:ce:31:0b:b7:b0:d7:53:9a:a7:
10:93:93:9b:77:4f:58:4c:9f:2b:a0:43:d3:9e:4c:
03:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:31:53:48:0C:80:DF:31:72:E5:99:2F:3A:93:8F:2B:EA:AD:23:5C
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:2c:2b:4b:ac:c3:9d:ae:6d:7b:ea:bb:2d:72:53:50:bf:84:
23:9d:82:fc:7d:52:f7:e7:4b:4e:5f:ba:57:05:ca:d3:7d:36:
21:80:39:ad:7a:b0:e1:81:e1:ef:da:0c:76:5f:63:94:e6:52:
e5:ef:91:de:5c:eb:fe:ca:28:eb:4c:52:ec:9d:14:60:3e:6a:
7e:e4:a6:0f:25:fc:a1:05:97:cd:a5:46:88:37:34:7c:0a:ff:
e4:f9:da:a9:73:e4:14:74:20:65:93:c6:de:1e:39:15:ff:7a:
1a:9a:a0:ab:3c:9d:28:1b:4f:66:ae:a7:24:23:0c:5d:58:2e:
51:fe:a4:7c:d1:8d:77:41:97:df:ca:01:bb:7f:8c:5c:76:a2:
21:be:c8:40:a5:fb:fc:8f:f4:4a:f8:ea:df:ea:d6:70:6d:84:
c2:11:61:84:04:96:15:47:dd:5c:4f:34:de:54:0f:05:95:ed:
01:4f:f0:c4:c5:9b:06:8d:e1:8c:f0:bb:cb:22:60:ce:92:32:
ea:ec:c8:61:26:cf:86:24:af:dd:9b:9b:1d:a2:46:2e:e2:6f:
ce:6e:4b:12:06:62:fd:91:41:b4:15:b9:e8:b0:71:ff:ab:a1:
dd:90:9f:0e:60:6b:c4:9f:a4:72:2c:1a:25:f0:fa:87:61:b9:
2a:2e:9b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 01:30:19 2025 by rpki-client