Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: Ego8Hvm1jDuA0NjYDEDFCx3sIiJW7yxw6Xu8qd2oNHQ=
Subject key identifier: CA:6B:C1:DA:71:EB:D6:ED:EA:B1:23:EA:CA:DC:44:01:D5:DA:CE:6C
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 0199FC216D210195FAC572198BC5B16E1EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 11:01:12 +0000
Manifest this update: Sun 19 Oct 2025 11:01:12 +0000
Manifest next update: Mon 20 Oct 2025 11:01:12 +0000
Files and hashes: 1: VI-dWQcY37xUT1kUINfwRf4ITOY.roa (hash: /K+hbbpjK6p98+FcPVOwuQPFXuHi6fBZ7x81PS6CuTg=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: oe35I8+k2+YyajUJMKwFbQtWt97eShtz5RTy8WyFxjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6d:21:01:95:fa:c5:72:19:8b:c5:b1:6e:1e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: Oct 19 11:01:12 2025 GMT
Not After : Oct 20 11:01:12 2025 GMT
Subject: CN=ca6bc1da71ebd6edeab123eacadc4401d5dace6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1e:0c:43:33:fc:07:f9:2b:0b:13:33:ba:75:
c2:eb:f0:74:bf:5b:4f:40:46:a6:cc:1b:22:bd:78:
e9:b3:6c:95:b6:e7:48:97:c2:b7:94:cb:90:85:53:
0c:a5:54:1c:5f:01:25:81:6f:ff:0d:02:05:2a:d7:
70:43:5b:ed:c2:38:55:b8:73:d3:06:67:65:05:47:
9e:e5:aa:05:11:93:50:0f:4e:69:d9:e9:cc:8e:71:
37:9b:b0:d0:b6:bf:5f:a7:cc:ac:64:53:4a:47:c3:
c3:dd:23:c4:da:8d:73:11:b5:08:90:ee:b6:0c:de:
db:c0:d9:4f:b7:c5:ac:03:ab:35:c8:95:3d:a5:d6:
70:9e:e8:88:f8:db:3b:f9:3b:5c:74:17:b3:1b:01:
ab:00:60:9a:a7:d5:c3:5e:06:2a:78:52:85:86:f0:
bc:46:81:12:d7:9b:3b:41:0e:db:c6:28:8c:9f:f6:
70:c8:75:14:13:09:14:34:02:d7:4c:02:5f:82:50:
66:df:8b:eb:ac:45:c3:28:0f:fd:84:d9:78:1f:f5:
e9:4d:0d:ef:3a:2d:b5:f3:7d:55:e4:86:34:11:26:
04:19:3d:b6:57:a2:28:c7:08:80:24:c5:f4:f3:96:
ed:fc:14:45:9d:ca:05:ea:c1:0d:05:85:0d:63:9c:
df:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6B:C1:DA:71:EB:D6:ED:EA:B1:23:EA:CA:DC:44:01:D5:DA:CE:6C
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:aa:55:e0:f5:c6:47:9e:39:9d:cb:db:56:72:85:27:5e:4c:
81:aa:f1:d7:b8:db:7d:04:ed:ff:7c:a8:eb:6e:3c:df:70:86:
bc:c5:e0:62:9d:e4:f6:fe:2e:b1:61:a2:83:41:fb:10:81:ca:
6b:02:8c:fd:30:93:1d:76:49:f7:99:5f:43:c2:e0:f5:5e:2b:
f6:f9:76:14:35:0c:27:5d:af:17:81:25:cd:e8:b2:5a:64:55:
79:81:6f:0b:a5:22:c5:26:82:f0:2e:41:9a:43:85:9b:5e:d8:
fb:20:cf:49:29:f9:81:fd:86:c9:74:60:c3:51:62:a7:34:96:
a4:ad:75:b1:df:bf:f0:4b:93:03:16:8f:81:d0:b2:0d:ea:45:
ee:2f:b4:cf:15:92:ab:8e:80:dd:0e:0e:72:ae:21:4b:0f:76:
88:f1:76:c8:36:33:a0:84:6c:29:c4:ea:ff:94:01:af:fc:b1:
a5:6c:3d:16:f3:c4:c4:d2:cf:12:b9:b9:f9:75:46:d6:e0:35:
0a:61:76:24:ee:6a:24:fc:38:81:d3:e2:fe:d5:89:dd:cb:98:
6c:46:6d:f3:d7:31:e8:c3:9c:d6:0a:77:d9:72:a1:85:73:79:
c5:5c:98:04:de:21:e0:bf:a7:64:79:f2:82:07:55:0a:dc:c3:
13:ec:93:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:50 2025 by rpki-client