Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: cauLDPVtl1cNyC5I7cTrmz8SHhVm9mFgvjFktzyX9QI=
Subject key identifier: AC:24:7E:F5:11:4E:77:64:5F:EC:8E:A5:50:0D:85:F5:1F:1E:A4:8F
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 0197B6D780F46D61EC8ACCCE0053D5A0B922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 14:01:05 +0000
Manifest this update: Sat 28 Jun 2025 14:01:05 +0000
Manifest next update: Sun 29 Jun 2025 14:01:05 +0000
Files and hashes: 1: VI-dWQcY37xUT1kUINfwRf4ITOY.roa (hash: /K+hbbpjK6p98+FcPVOwuQPFXuHi6fBZ7x81PS6CuTg=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: 5VkRtX0KnLJg394SAb+I0OLMvr3d3DRWbUsIKLJoorU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:80:f4:6d:61:ec:8a:cc:ce:00:53:d5:a0:b9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: Jun 28 14:01:05 2025 GMT
Not After : Jun 29 14:01:05 2025 GMT
Subject: CN=ac247ef5114e77645fec8ea5500d85f51f1ea48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:07:74:79:d2:7d:25:f4:cb:a8:ed:a8:a0:ab:
c6:1a:5b:64:46:4e:de:af:2a:eb:e2:15:f5:d5:eb:
61:72:2a:e8:aa:2f:36:a3:44:15:67:60:a2:67:e9:
f0:8c:79:db:5c:d1:a5:ad:eb:49:70:4c:8c:f2:d8:
a3:4d:df:c5:72:7b:63:46:fe:73:a0:e0:87:d9:eb:
69:0e:fd:7d:bc:93:38:81:ca:32:af:ff:2d:7a:2d:
91:65:c3:d1:bf:cc:67:48:c8:0b:95:22:69:63:a4:
65:bc:c0:55:12:41:24:51:ad:df:f4:e6:f7:6d:80:
f8:48:cd:f4:2a:fc:ab:80:f7:c7:a8:43:0a:83:99:
6f:b8:b4:80:46:a4:14:5c:25:a3:76:9f:a7:ec:cb:
f2:ad:b3:9d:76:1c:ac:16:e7:c4:f4:6a:85:4c:fe:
98:e7:53:28:38:57:26:21:c3:f9:35:cd:f6:78:4c:
f7:8b:c6:5a:3d:7b:59:a2:e4:03:10:7f:49:8d:c9:
54:de:40:6a:ff:cc:a0:77:6d:b0:c5:47:93:0f:c2:
1f:24:71:0d:e7:83:51:7a:23:03:b2:b9:b5:ea:2f:
c8:82:cc:5f:5c:32:99:8d:ef:3f:6d:be:cf:ee:23:
3a:e1:61:b5:09:07:1a:b9:10:e6:da:48:4b:a9:96:
24:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:24:7E:F5:11:4E:77:64:5F:EC:8E:A5:50:0D:85:F5:1F:1E:A4:8F
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:35:7b:94:0f:1c:46:ec:af:38:4c:69:e8:59:f7:f6:3d:2e:
36:45:11:a3:2e:6e:6f:9f:d9:cc:f1:eb:6a:47:a8:bd:5f:c7:
35:fe:93:aa:4b:99:3a:ec:ac:78:89:1c:66:e7:ac:76:18:89:
ff:31:60:7b:d1:a9:e7:25:11:79:e2:93:0a:3b:67:f2:b1:e5:
b0:f2:21:0b:ce:8a:3c:5a:ce:84:07:16:8a:a3:79:f8:63:3d:
66:2f:f8:64:8e:d7:8f:cc:64:42:c7:dd:d9:ba:a4:25:97:1f:
40:10:34:da:e9:ea:f3:b2:fe:80:e0:b6:22:64:49:fb:61:84:
65:53:a3:3d:67:ad:32:ec:c1:e0:d7:ef:89:8f:34:25:0b:ce:
f1:8e:62:ae:fd:0e:b7:63:f8:60:de:b1:d2:91:78:12:0b:ca:
08:ed:12:1e:c4:8b:08:61:08:50:5b:c3:1c:21:41:bb:94:59:
03:1b:9c:0d:50:08:94:4f:e3:89:b8:f3:fa:35:e1:dd:71:05:
8b:b6:d7:35:b3:0c:9d:d0:af:45:21:71:3c:5b:3b:52:ec:76:
14:44:5a:b3:4b:df:28:51:af:91:b5:42:45:bc:fe:8b:a8:28:
10:18:cf:67:80:b7:2d:b6:6d:e7:e8:22:d6:d0:c1:4e:72:02:
3a:db:60:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:51:49 2025 by rpki-client