Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: 8HSxp1AZaWl2bOIxjrBbwVfIlWeVfoxWxsoNEyB2iBg=
Subject key identifier: 0F:4B:E8:70:CA:3C:D7:53:C3:9F:5A:1A:68:D3:8B:D6:F1:32:2C:71
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 0199FDDA25BB69177D8ECECEC38191989E89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 1315
Signing time: Sun 19 Oct 2025 19:02:36 +0000
Manifest this update: Sun 19 Oct 2025 19:02:36 +0000
Manifest next update: Mon 20 Oct 2025 19:02:36 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: l2yO/7SPrNpJG7nRfkxyjCh/61DwY7QCE6wWYW6EFeU=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:25:bb:69:17:7d:8e:ce:ce:c3:81:91:98:9e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Oct 19 19:02:36 2025 GMT
Not After : Oct 20 19:02:36 2025 GMT
Subject: CN=0f4be870ca3cd753c39f5a1a68d38bd6f1322c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:e7:f1:a7:02:8c:9b:20:76:11:fd:20:6e:
b2:5d:1c:9f:5d:8f:c4:75:aa:35:68:d8:a7:05:78:
53:7d:e9:63:60:25:a7:fa:f0:9d:64:43:92:04:97:
69:fa:34:a6:3f:c9:8b:da:ae:2f:ae:60:76:77:fb:
08:c1:1c:10:d5:ca:2e:7c:40:a1:12:d7:93:3a:90:
09:76:9e:31:e4:74:06:6c:19:e2:8b:96:30:83:8e:
70:f4:57:39:a1:69:89:ad:dd:ff:ba:75:54:53:14:
da:cc:8e:4b:6e:5e:b4:93:44:49:3c:a2:f6:82:3a:
34:16:1e:e1:6d:9b:a7:45:3e:88:87:0e:33:c7:05:
a0:02:0d:62:c2:7e:0c:5c:84:2f:ca:f3:b2:65:8c:
49:cc:c5:c5:aa:fa:b3:72:46:68:66:ef:98:cd:a8:
00:aa:0a:31:62:5e:a8:65:95:bd:e4:9c:c9:27:03:
f1:c0:bf:30:89:f3:a5:14:f0:6a:bd:94:d8:77:84:
a6:a9:3c:e9:b8:ca:dd:6d:ed:19:8c:59:91:a7:84:
15:0e:c3:cb:3e:0b:6c:ca:91:4f:28:dd:66:75:23:
68:e3:5b:bc:10:4f:7a:b8:ab:f5:cb:5c:09:47:40:
5c:2e:e3:c1:b9:a2:38:2e:ad:2d:e4:a2:1c:f5:56:
d4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4B:E8:70:CA:3C:D7:53:C3:9F:5A:1A:68:D3:8B:D6:F1:32:2C:71
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:93:50:b6:34:90:f5:b3:d0:7a:9d:35:ba:a4:6a:13:1b:d5:
fe:e7:37:4a:4f:b8:57:b3:ea:08:a7:5b:5e:3c:7b:8f:77:32:
6b:08:c7:ed:9e:80:11:23:b6:48:d4:af:ea:d4:96:a3:2e:1c:
c3:b6:5b:94:af:75:cd:6b:13:16:19:8c:8b:26:f9:bc:29:e5:
4a:9c:6a:9a:cb:80:30:11:57:49:2a:3e:83:01:c8:88:b1:43:
df:35:6e:98:03:dc:73:c2:6a:7f:ff:9f:c2:f4:ff:42:16:41:
50:d9:1f:7b:4e:ab:71:e2:d8:9c:0a:ce:06:7a:55:9c:5e:03:
75:3c:bf:7e:7e:48:a0:f4:93:0d:6f:7a:b9:b9:f2:61:b1:5c:
92:5f:50:75:8c:5f:ef:8a:84:cb:93:9e:cb:38:9f:5d:4a:2b:
ef:b9:56:ce:0a:3c:96:a8:c3:6a:9b:d2:dd:25:43:5b:a7:b8:
78:c9:ae:ca:e6:56:b7:6b:b4:2d:49:bf:8d:bc:0f:81:e0:a5:
e7:d9:16:a7:95:b0:5b:61:bd:3d:33:79:47:5d:6c:9d:2a:de:
47:c6:2a:a8:0a:46:1d:bf:27:7b:0f:56:21:29:cc:7f:62:d2:
20:af:22:80:f5:56:f1:cd:e4:2b:eb:82:7a:74:71:4e:c7:d4:
e5:60:4f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:24:02 2025 by rpki-client