Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json)
Hash identifier: 6MxSgM93aJnVQesYvWeyx6xqzs2bW3KEv8N94pGb+58=
Subject key identifier: 09:FF:3C:AC:88:AA:A8:35:62:A6:A6:4A:5D:C6:EF:6B:85:F3:10:64
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 019A1EADE0FD4F4A34817D72B3BD9D0B0012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
Manifest number: 1134
Signing time: Sun 26 Oct 2025 04:01:43 +0000
Manifest this update: Sun 26 Oct 2025 04:01:43 +0000
Manifest next update: Mon 27 Oct 2025 04:01:43 +0000
Files and hashes: 1: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: GjxuCWAB+0GNC4bcaZglCNcBEowMtLt4LUhGpxqjMqs=)
2: jPXJlh-t4_XYR3J0eKKhQRTzmMQ.roa (hash: LCBAN0N7xGJeaqTX5AAQMXZtcLuwBKPNcwcKiOcd8Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 20:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:ad:e0:fd:4f:4a:34:81:7d:72:b3:bd:9d:0b:00:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Oct 26 04:01:43 2025 GMT
Not After : Oct 27 04:01:43 2025 GMT
Subject: CN=09ff3cac88aaa83562a6a64a5dc6ef6b85f31064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ab:17:e0:24:0e:41:dd:7a:e5:3c:ef:c9:9c:
3e:eb:c6:43:34:ee:64:05:c3:f3:89:5b:80:a0:06:
b5:59:57:38:76:2d:9c:84:b6:fd:4c:74:9b:df:0b:
32:4e:16:ab:98:7a:0e:3d:20:f1:89:da:2a:f7:82:
6a:85:b2:29:96:e8:fe:c2:58:77:ae:b6:45:c3:6f:
d7:b2:57:f0:3a:c8:28:85:6a:9f:f4:92:d8:77:ae:
f1:8a:78:f1:f0:41:67:ad:b4:ee:2d:03:93:b9:eb:
59:1e:22:52:cc:b9:37:3c:ee:c0:05:be:af:98:dc:
79:f6:45:4e:ab:89:18:79:d4:87:c9:b9:57:51:e8:
75:34:3a:40:bf:3d:2d:9b:35:a6:9e:d9:ff:13:d2:
a0:39:8b:1c:a7:c8:f2:32:6e:50:bb:20:c3:85:21:
a4:a6:71:b6:cf:8f:c7:1c:85:54:c5:c7:f1:a8:62:
28:5e:49:29:d9:b5:39:66:13:bb:75:67:b4:0b:67:
68:65:58:2d:44:bb:ec:0d:39:6c:c4:32:0c:2d:e7:
6e:6a:89:f0:4f:1f:a5:c9:df:e2:8e:05:b8:b0:f6:
5f:b1:c5:f9:4a:fb:44:e5:51:c4:17:bf:28:a0:96:
08:ca:63:76:86:91:4a:24:0f:08:b4:63:c1:1a:67:
59:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FF:3C:AC:88:AA:A8:35:62:A6:A6:4A:5D:C6:EF:6B:85:F3:10:64
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:73:00:a8:0b:0b:9b:3f:18:83:51:26:5b:62:3d:37:aa:18:
cd:52:d8:42:34:80:57:2c:d3:86:9a:b2:de:ea:5a:57:42:45:
04:5a:50:cf:19:79:3e:d4:8d:bd:36:f8:77:e5:9d:14:53:f7:
fb:21:da:9e:fc:71:92:65:0b:29:ed:e6:1e:38:c0:e3:d1:ab:
1e:23:9e:01:95:d7:35:cc:3b:50:e3:f6:b5:52:a7:2a:2a:63:
1e:c7:a8:05:8d:fa:5d:78:e8:80:08:cd:8d:7d:a7:ae:b2:fc:
ca:a8:b5:de:4d:bc:38:3c:aa:16:ed:dd:0f:4c:8f:4f:a3:65:
5c:51:80:73:88:5f:b4:cf:5a:f5:79:3d:75:8b:a0:79:0d:67:
a5:63:1b:cb:57:05:f7:db:e0:9b:52:d1:d9:b7:6a:8a:da:bf:
ce:47:2c:57:7b:1b:54:a7:5b:76:f4:1c:9e:71:5d:a5:41:75:
99:07:da:89:83:5c:4c:a3:2f:67:3c:65:04:cd:8b:14:9b:c9:
3a:67:cd:19:c8:ae:06:9c:91:99:f0:51:51:4a:24:12:2c:8b:
fa:72:d3:23:4b:41:b3:e4:9f:88:55:8a:b9:67:94:0a:97:ab:
58:94:35:65:e5:36:8b:54:53:ef:33:ca:2d:91:6a:21:34:97:
93:65:f6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:41:23 2025 by rpki-client