Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: 9x2lzwOGXVF3h+SVhUDo5JVPJiWET8q3DI5P7/rWeFc=
Subject key identifier: 54:CC:95:53:A8:47:9E:B2:F6:3E:8D:6F:C7:35:AE:1F:E5:5C:ED:B6
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 0198D472FABC762A66221F9E33596F62329B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 127B
Signing time: Sat 23 Aug 2025 01:02:41 +0000
Manifest this update: Sat 23 Aug 2025 01:02:41 +0000
Manifest next update: Sun 24 Aug 2025 01:02:41 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: Q7L6ni11Qx2HkUSdkrNYXFsCo4W0DOyVYaYpGtf77jk=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:fa:bc:76:2a:66:22:1f:9e:33:59:6f:62:32:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Aug 23 01:02:41 2025 GMT
Not After : Aug 24 01:02:41 2025 GMT
Subject: CN=54cc9553a8479eb2f63e8d6fc735ae1fe55cedb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a1:57:b3:57:3c:42:de:8f:3f:ce:a4:50:ae:
33:49:cb:27:90:9b:cb:a1:03:d6:76:71:64:c9:d1:
81:30:89:cc:e1:bc:e8:b7:fc:8f:89:26:46:90:9e:
9e:d3:b1:0c:82:7c:78:a8:85:f5:8e:27:22:87:2c:
17:bf:34:91:b5:38:8f:e1:a6:01:b4:d8:bd:b0:c2:
4b:6c:6a:1c:5e:99:af:53:35:81:ed:a6:e6:67:0c:
6b:a5:99:64:db:6a:97:bb:cf:db:79:81:67:b3:8c:
aa:bd:43:25:75:76:e0:dd:6f:63:b2:cb:ef:82:5b:
93:15:31:dc:70:83:e3:99:28:d7:09:a7:2e:18:11:
7a:17:b0:27:fb:7e:d8:12:60:55:86:ed:34:f9:05:
4b:66:db:8d:c1:c3:2a:a8:4e:33:ef:09:fb:99:ae:
4f:73:be:01:98:07:0a:a4:28:22:18:fd:76:5e:05:
3c:ae:d3:1c:18:8d:70:e0:b4:b3:4a:a8:f9:9f:92:
a1:6e:99:ea:b4:d7:19:fb:87:09:c3:41:24:2e:43:
28:40:dd:cf:00:51:82:13:6b:2c:fd:08:4c:7a:db:
83:fb:fe:34:70:dc:78:64:61:a7:c7:ef:25:c6:4e:
ec:bb:2f:18:55:9b:30:2a:1c:00:ab:0d:fd:06:0d:
7f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CC:95:53:A8:47:9E:B2:F6:3E:8D:6F:C7:35:AE:1F:E5:5C:ED:B6
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:02:be:a3:22:f1:e2:0b:f4:ed:10:c6:3c:71:24:0c:ff:87:
76:18:9d:cc:87:e4:a1:a4:c3:8b:b5:d3:f4:61:5d:f7:7b:d2:
c4:1d:aa:c5:af:78:72:fe:29:a7:66:8b:df:19:98:08:c1:a2:
f5:45:9d:b0:9c:14:82:13:35:cb:4d:a5:07:c5:63:d8:fd:17:
00:12:b7:ab:9f:22:a2:34:d7:fa:e7:22:aa:74:51:3a:3d:a4:
15:34:aa:5c:c6:cd:d8:cc:57:4a:26:58:11:71:bf:91:e9:66:
bc:93:09:0c:93:b1:53:4e:70:0c:a7:97:56:67:4d:39:7c:57:
ed:cd:6d:50:d6:ba:63:af:3d:7b:39:2c:f2:3f:ba:64:d9:a2:
09:a0:55:3a:2f:30:39:59:31:dd:46:e1:47:0c:8b:fa:32:a5:
3c:ba:c3:4e:38:a6:5e:95:90:a7:70:10:60:7d:20:44:e6:f5:
ab:39:fc:bc:30:e4:05:e5:25:63:87:91:94:2d:b2:3c:6e:92:
eb:1b:f5:54:75:a4:b2:89:a6:cd:b5:44:a4:dd:14:94:d8:cf:
80:df:f1:88:a8:51:29:46:60:71:c6:01:c8:62:4e:0e:35:98:
2e:e5:71:4e:43:19:31:c9:7c:d2:11:57:97:ef:8d:0e:77:02:
9d:9f:e0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:58 2025 by rpki-client