Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: zDDq8GqZVDaQVaWUpYq6lF01J1tLHAuVUo+Cy8EGwTw=
Subject key identifier: 7F:CA:6F:0B:4A:E9:5D:30:6D:BC:DE:2A:D9:85:42:0E:B2:26:3E:F9
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 0198D705CF90754FA3DBE0F4BC9CFE3C4A92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 01CD
Signing time: Sat 23 Aug 2025 13:02:18 +0000
Manifest this update: Sat 23 Aug 2025 13:02:18 +0000
Manifest next update: Sun 24 Aug 2025 13:02:18 +0000
Files and hashes: 1: 6w-yXh1-tMAIvo8oiWeiA5ImsoE.roa (hash: I2XmgPmlr8AeGcV748BNU3DKlg3Epa3bbBrXS+lzrBo=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: JdPClOHb48XcxXAOJdv2PIwBKXlsTblMWWL7q3DSWp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:cf:90:75:4f:a3:db:e0:f4:bc:9c:fe:3c:4a:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Aug 23 13:02:18 2025 GMT
Not After : Aug 24 13:02:18 2025 GMT
Subject: CN=7fca6f0b4ae95d306dbcde2ad985420eb2263ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:11:fc:0f:7a:4f:b2:79:6f:e4:dc:dd:f3:
cd:83:f6:59:e2:ef:41:78:ae:4b:52:67:b0:bb:b3:
44:06:4d:26:3c:e5:10:cd:5a:e9:e0:6d:3c:17:b2:
74:ec:be:70:bf:50:ce:5c:27:d2:66:bb:09:23:0a:
37:f7:1e:6b:3d:08:6b:1d:57:cc:95:23:41:a4:78:
6e:d0:86:d5:7f:f1:b2:38:d7:dc:21:15:da:79:5b:
cd:e6:43:1f:da:d1:16:cf:45:15:e0:24:74:94:22:
17:8d:18:75:59:ee:95:0d:e8:5b:b8:f1:e6:5c:a9:
05:c2:e6:cc:08:4f:f1:fe:f6:ab:fc:6d:f0:7e:e7:
c4:ba:e0:58:b2:e5:25:d9:80:5c:f3:66:66:9b:e1:
f7:f0:bb:ca:89:45:f7:a0:c3:27:e4:0c:ec:4f:e9:
37:dd:0d:37:55:03:f5:67:dc:f4:4d:3c:9c:38:89:
5b:bb:0b:de:9f:81:6c:19:77:a9:ab:ea:87:77:1c:
31:83:cb:a8:6d:a7:e2:3a:2c:88:0a:b6:90:89:73:
b6:3d:58:d5:88:38:cc:ea:96:90:7d:85:16:50:61:
be:4b:c4:c0:72:0a:08:47:a2:09:f4:ba:a2:01:b0:
59:8f:df:ae:e1:9e:1e:ee:a1:b5:4a:70:dd:27:e9:
88:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CA:6F:0B:4A:E9:5D:30:6D:BC:DE:2A:D9:85:42:0E:B2:26:3E:F9
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:9f:ee:8d:17:ab:f8:0c:29:86:c3:53:47:29:fc:e8:32:f3:
07:9f:bd:27:47:04:1c:cf:79:46:4e:ef:67:b1:2f:4a:65:b6:
a9:67:90:d9:e9:6e:27:1a:f6:b5:9d:71:45:a0:81:42:5e:bf:
bd:e0:f5:1d:86:98:f2:20:0c:70:88:f3:0b:df:f9:4e:6c:cb:
76:05:37:28:a0:1c:f6:8d:c9:3d:aa:2e:2b:f6:6f:4c:8a:e2:
93:d3:5b:6b:14:00:05:41:f9:05:1f:4c:69:0e:78:69:87:f4:
a9:11:4a:f3:4c:69:c7:50:a8:30:11:6c:c7:4f:d7:44:78:42:
93:81:1e:09:25:70:63:0b:a7:77:a5:a2:4f:b9:95:f3:f5:4d:
d6:5f:01:35:d4:e9:f2:3e:dd:97:cd:9f:e1:6a:ba:b9:2e:74:
26:29:c7:b4:0d:4c:28:d6:f9:b0:5e:11:8e:1a:79:e2:90:87:
ba:69:cc:0f:c7:e4:ad:55:91:40:8d:09:5c:a7:39:cc:50:1e:
8e:d4:9e:b5:54:34:e9:ac:2e:f8:33:2c:00:20:18:67:26:47:
c9:c7:c7:c2:f0:28:d1:24:b4:64:db:1c:b6:f6:de:99:0a:d3:
71:0d:f6:64:c3:ce:d1:d0:71:21:57:be:f1:19:45:80:ee:76:
78:6d:99:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:19:48 2025 by rpki-client