Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: 6AD+k1uCU/3XJUFOzxc1oD8RTR/GOywrImZrBO40MZo=
Subject key identifier: 33:B6:90:63:B1:AD:7E:58:58:AE:A5:86:F3:FB:AD:77:4C:B8:1F:5E
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 0197B6A1BF83C0619A974BA39C7F93386348
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 11E7
Signing time: Sat 28 Jun 2025 13:02:22 +0000
Manifest this update: Sat 28 Jun 2025 13:02:22 +0000
Manifest next update: Sun 29 Jun 2025 13:02:22 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: nAHLv2kLmjCH8zGyUy64tzN0HMgVjL2qbMzcIkvtX7A=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:bf:83:c0:61:9a:97:4b:a3:9c:7f:93:38:63:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Jun 28 13:02:22 2025 GMT
Not After : Jun 29 13:02:22 2025 GMT
Subject: CN=33b69063b1ad7e5858aea586f3fbad774cb81f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:16:e0:60:71:cf:11:7b:7b:12:e7:1b:ea:
43:7b:a1:dd:3c:6d:22:4e:ef:fa:07:07:95:6c:79:
2b:e0:ae:06:17:d5:10:86:95:9f:ea:12:1c:af:b9:
ef:cb:fb:35:ea:66:20:49:bf:cd:9c:29:45:00:ff:
5c:98:6a:ce:7f:b4:fb:5c:84:45:6f:03:d5:f7:6a:
8b:cc:a7:0c:c9:b9:e4:9a:64:fa:32:f8:31:41:6a:
86:79:c2:b8:3d:b3:66:c2:5f:46:f0:6f:ff:ab:bb:
cb:9b:b9:7e:34:67:eb:ea:9b:2a:9c:2e:15:13:14:
d6:ab:fb:16:e1:73:de:95:de:64:81:52:5a:8a:2f:
d3:d7:28:8b:da:d2:20:96:11:9a:b4:84:f8:35:29:
36:9e:05:2b:cf:f6:2a:0b:89:73:1d:4d:7c:d2:46:
33:bc:f7:97:ca:d5:fd:a5:c6:4d:4c:95:31:6a:06:
dc:7f:44:a3:b5:1b:a3:91:1d:8c:a3:3e:2c:2c:f9:
31:df:1f:b2:a8:4f:2b:cf:44:87:a0:94:07:53:98:
9f:c4:5a:eb:21:23:ae:5d:35:31:80:b4:16:73:f6:
9e:58:bf:0b:75:c6:6c:03:fb:b8:27:8e:76:e0:24:
9b:68:61:72:68:16:ad:b9:1f:e9:e7:49:04:b4:55:
8f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:90:63:B1:AD:7E:58:58:AE:A5:86:F3:FB:AD:77:4C:B8:1F:5E
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:22:57:fb:4a:6e:16:fd:0c:b0:0a:51:aa:66:31:ae:be:ec:
21:45:9e:a1:11:a7:60:48:26:80:ca:6a:6a:99:27:66:7f:36:
4b:cb:52:f2:d5:b1:e3:22:68:6b:8c:90:cc:74:c4:0a:da:56:
65:11:e8:14:5a:f9:46:4d:bb:94:fc:66:4e:3d:42:c4:72:47:
0d:64:5d:40:ef:3a:23:ca:bb:b9:11:a7:26:d7:02:d3:90:87:
41:55:88:ed:93:90:0c:9f:5e:3a:be:c9:65:f4:31:92:18:3e:
4a:ab:dc:c9:87:e9:b9:87:ea:33:db:37:36:c5:21:c5:f0:d2:
c5:cc:5c:45:6e:8a:35:09:be:79:de:e9:6e:1e:70:6e:93:14:
02:07:dd:38:0c:3f:02:30:fe:5a:41:96:b9:a2:8e:e6:fa:8f:
bd:56:a6:8b:2a:ef:23:ed:e9:03:ad:7c:6d:c7:7e:b4:ea:3c:
75:37:c3:67:08:dc:44:b3:17:5a:0c:54:57:55:97:64:1a:3b:
4c:07:e9:1f:0a:7a:bb:8b:76:1c:8d:ed:9a:01:fe:22:56:e5:
d3:74:8a:22:33:6c:5f:e7:02:29:7b:e3:7a:cd:87:bf:a1:81:
0b:9e:54:83:18:4c:f7:77:7f:d3:fc:71:8e:1f:13:7c:96:e4:
62:fe:0f:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2ob+DwGGal0ujnH+TOGNIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YTdhNmNkNTgzODE0ZDM5M2JlZTI2MzViNTQ1NTc0Y2M3
NTYyMGMwHhcNMjUwNjI4MTMwMjIyWhcNMjUwNjI5MTMwMjIyWjAzMTEwLwYDVQQD
EygzM2I2OTA2M2IxYWQ3ZTU4NThhZWE1ODZmM2ZiYWQ3NzRjYjgxZjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh4W4GBxzxF7exLnG+pDe6HdPG0i
Tu/6BweVbHkr4K4GF9UQhpWf6hIcr7nvy/s16mYgSb/NnClFAP9cmGrOf7T7XIRF
bwPV92qLzKcMybnkmmT6MvgxQWqGecK4PbNmwl9G8G//q7vLm7l+NGfr6psqnC4V
ExTWq/sW4XPeld5kgVJaii/T1yiL2tIglhGatIT4NSk2ngUrz/YqC4lzHU180kYz
vPeXytX9pcZNTJUxagbcf0SjtRujkR2Moz4sLPkx3x+yqE8rz0SHoJQHU5ifxFrr
ISOuXTUxgLQWc/aeWL8LdcZsA/u4J4524CSbaGFyaBatuR/p50kEtFWPnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDO2kGOxrX5YWK6lhvP7rXdMuB9eMB8GA1UdIwQY
MBaAFGSnps1YOBTTk77iY1tUVXTMdWIMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84ZDZmMWEtZDMzNC00MThmLWI3MjYt
NmY1ZDhhNzRhMGU0LzEvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84ZDZmMWEtZDMzNC00MThmLWI3MjYtNmY1ZDhhNzRhMGU0
LzEvWktlbXpWZzRGTk9UdnVKalcxUlZkTXgxWWd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASiJX+0pu
Fv0MsApRqmYxrr7sIUWeoRGnYEgmgMpqapknZn82S8tS8tWx4yJoa4yQzHTECtpW
ZRHoFFr5Rk27lPxmTj1CxHJHDWRdQO86I8q7uRGnJtcC05CHQVWI7ZOQDJ9eOr7J
ZfQxkhg+SqvcyYfpuYfqM9s3NsUhxfDSxcxcRW6KNQm+ed7pbh5wbpMUAgfdOAw/
AjD+WkGWuaKO5vqPvVamiyrvI+3pA618bcd+tOo8dTfDZwjcRLMXWgxUV1WXZBo7
TAfpHwp6u4t2HI3tmgH+Ilbl03SKIjNsX+cCKXvjes2Hv6GBC55UgxhM93d/0/xx
jh8TfJbkYv4Pxw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:54:34 2025 by rpki-client