Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: n4Z2AaLn0qmDXMqMrQ79ENPizrw/QC0h+RNJR9Oghsk=
Subject key identifier: 83:B2:AA:09:DC:E4:E2:14:D9:8A:EE:BE:EE:7C:D4:81:6D:CA:DB:EA
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 0199FC8F2A739E011018BD86B1C5DE15B261
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 0265
Signing time: Sun 19 Oct 2025 13:01:04 +0000
Manifest this update: Sun 19 Oct 2025 13:01:04 +0000
Manifest next update: Mon 20 Oct 2025 13:01:04 +0000
Files and hashes: 1: 6w-yXh1-tMAIvo8oiWeiA5ImsoE.roa (hash: I2XmgPmlr8AeGcV748BNU3DKlg3Epa3bbBrXS+lzrBo=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: psC8JWnfQAiyJki6j271MMOiZco3hhNC8PmwqnO0oKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:2a:73:9e:01:10:18:bd:86:b1:c5:de:15:b2:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Oct 19 13:01:04 2025 GMT
Not After : Oct 20 13:01:04 2025 GMT
Subject: CN=83b2aa09dce4e214d98aeebeee7cd4816dcadbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f8:a0:ca:56:a1:d2:1d:b3:62:82:db:c4:e5:
58:d6:ca:36:fe:ee:38:d1:48:f0:ba:53:aa:05:f9:
74:4d:cf:18:96:b4:d2:0b:fe:c7:31:ef:14:66:63:
96:50:00:cb:da:98:7c:00:1a:54:3b:62:7b:60:67:
8c:c4:f7:cc:0d:61:d9:98:0f:a4:b1:a2:0a:4d:f3:
97:a9:fc:6b:48:19:de:21:b7:58:0f:ee:93:6a:43:
7b:7c:80:2f:07:61:fc:43:e5:90:fb:62:19:a6:58:
fd:71:49:02:ac:0a:d9:cf:a3:06:23:d1:c3:f6:c2:
7e:2a:fd:d6:46:e3:db:a1:a4:73:18:b5:e5:57:26:
58:22:68:0f:2d:cc:d3:79:cb:1c:0b:20:4b:45:21:
17:fe:de:ef:ae:6f:5b:64:70:2f:bb:06:d1:49:92:
1c:db:e2:f1:04:f7:27:ee:54:8a:5f:52:4e:f4:28:
29:be:1d:09:65:27:b4:e4:e5:7b:c4:46:49:12:86:
af:c3:3c:4b:70:4b:07:db:db:62:c1:2c:6a:4f:55:
ef:b6:6e:3d:77:1d:74:a7:d3:5f:0e:be:be:71:52:
3c:6c:35:96:06:04:47:1e:ce:2c:08:5c:8b:35:19:
b0:49:55:68:40:dd:9a:cd:7a:a9:15:05:ad:1c:c2:
14:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B2:AA:09:DC:E4:E2:14:D9:8A:EE:BE:EE:7C:D4:81:6D:CA:DB:EA
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:17:b0:52:13:45:13:ad:cf:72:10:7c:52:c1:79:3c:a4:54:
28:6b:88:bf:c3:6d:b9:37:b6:ff:f5:e5:a2:31:14:c0:fe:38:
0a:5c:db:38:0b:a2:58:a7:27:e2:5e:a5:d7:4c:dc:23:f2:85:
8d:5a:d6:6a:4f:73:e9:56:f1:4d:d0:fe:a4:39:26:7f:98:71:
29:9d:bc:05:a6:09:56:91:18:42:ac:a8:15:86:b7:c1:e5:c0:
d8:45:d6:ed:28:f8:5f:ff:05:97:31:38:81:2c:a6:2e:f3:0b:
84:6a:a7:ca:27:06:f3:e3:30:d0:f9:93:22:dd:fa:c5:a3:09:
8a:41:50:dc:0b:4b:1a:05:64:de:bb:7f:b8:d7:10:df:69:d1:
d8:48:7f:20:9b:ca:8c:70:83:9c:87:7b:d7:15:a2:04:f3:b0:
c0:be:c6:99:af:a8:fb:71:30:71:6f:46:1c:b4:f1:89:8d:1b:
15:e9:22:1c:4d:30:01:01:da:d7:85:ab:9d:fb:b3:65:a9:c6:
3b:98:7c:c5:c2:75:fb:99:1c:1a:8a:0e:7c:d1:d4:37:89:ec:
4d:be:04:f1:b2:9d:e1:3b:e3:49:22:9e:56:6e:a1:a0:a1:30:
d2:a4:f7:3d:7c:6d:36:f5:72:c1:0c:ca:8f:d1:8d:b2:cb:a6:
38:7a:cd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:08 2025 by rpki-client