Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier: FaGp6plTh6L23GbgEbLbj5NMYhVhchpTh1mcwWUxow4=
Subject key identifier: 85:28:5C:EE:CF:41:F3:94:5A:E9:25:03:3E:E9:8F:C0:A3:56:6A:74
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial: 0198C94A2D6C0B7D994A1399F024A09980AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number: 1559
Signing time: Wed 20 Aug 2025 21:02:18 +0000
Manifest this update: Wed 20 Aug 2025 21:02:18 +0000
Manifest next update: Thu 21 Aug 2025 21:02:18 +0000
Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: YHz70mpY046aAU5siEmDs7vZ7VSIt4CevNjLQsEURLs=)
2: hgdnPYifylvEbRhPG5rcZMHgm-E.roa (hash: kVaA/BoHtOWfVS1UNUVlSYGZdZvXh/V05GtETEpyoE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 21:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c9:4a:2d:6c:0b:7d:99:4a:13:99:f0:24:a0:99:80:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Validity
Not Before: Aug 20 21:02:18 2025 GMT
Not After : Aug 21 21:02:18 2025 GMT
Subject: CN=85285ceecf41f3945ae925033ee98fc0a3566a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:52:bf:28:44:ec:10:29:9a:06:66:4c:70:0f:
9e:7d:8c:f9:7b:17:73:b5:a2:ec:dd:1b:95:9f:42:
ce:81:7d:40:20:f0:e1:aa:16:3e:b8:ad:97:e9:17:
a1:14:7f:aa:01:c5:c0:96:d3:15:8b:7d:eb:8f:5f:
15:e0:22:32:11:78:5d:b9:2c:bd:19:cb:83:44:2a:
82:e3:cb:87:d6:71:d8:56:d5:4b:4e:c1:77:cd:16:
8a:ca:70:60:10:f5:bd:51:9a:f5:44:5f:56:21:41:
90:84:17:34:ce:a2:e1:a4:54:aa:4f:0b:5e:94:34:
59:84:1f:ff:c1:82:e0:8c:35:21:9b:67:a9:59:be:
5f:42:2c:01:0e:e7:70:65:f4:dd:29:8a:4e:bc:eb:
9f:84:0e:0f:ad:9e:8d:da:eb:bd:c8:e3:86:3b:28:
d5:81:f9:04:85:fe:89:f9:08:9b:2a:95:59:45:f0:
f5:ac:2b:2d:07:e9:86:79:d8:f4:75:01:06:26:5f:
cc:56:cf:5a:47:67:bd:69:2d:ff:67:cb:f5:c1:2e:
27:b6:0d:b4:65:17:39:47:02:42:7b:5c:d6:ad:19:
c4:33:d1:51:08:b5:97:ec:62:f4:66:30:91:49:9a:
6d:05:c9:e8:78:96:86:5a:a9:df:20:03:79:f8:38:
6d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:28:5C:EE:CF:41:F3:94:5A:E9:25:03:3E:E9:8F:C0:A3:56:6A:74
X509v3 Authority Key Identifier:
keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ed:1c:64:f9:e2:b6:b5:f1:b1:18:94:78:a4:18:4d:1b:27:
07:57:7c:c1:f3:2f:28:71:ea:8c:27:70:60:51:b5:09:e9:12:
33:73:e3:8c:60:f9:23:9e:ce:51:e5:3d:cf:01:0c:b3:c2:24:
a9:37:65:1a:b8:ae:30:78:a4:80:d3:c4:39:1d:fb:9f:1e:4a:
ff:a2:a0:3c:cb:de:20:13:50:a8:bc:7a:66:72:af:5e:ff:4a:
83:e7:a4:97:ed:d9:ee:a5:8a:67:b8:34:24:27:27:49:54:f2:
a9:54:4b:1e:91:aa:3c:14:f0:95:a5:15:77:b4:cc:6d:18:6e:
74:89:8e:f5:d9:32:5e:99:e8:85:67:89:d5:1a:d0:37:e1:08:
58:a5:b5:b0:c5:b9:84:27:78:06:6b:ae:ee:4e:fa:37:d8:56:
72:39:83:da:e3:30:c9:34:c1:7d:ce:10:e1:33:7a:a5:ef:e3:
ba:71:74:2f:42:e0:4b:18:d1:62:cb:f1:b2:f6:69:7f:d9:76:
16:56:e5:ae:6b:24:2b:3b:69:0f:75:42:50:d9:c6:80:68:f2:
3e:d1:be:33:6e:5f:fe:f8:e3:c2:db:fe:b1:e5:8c:d6:5d:a9:
2f:b2:81:fa:c4:d9:b0:6b:f7:47:a7:ff:78:28:16:ca:30:6f:
3e:e4:8d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 05:40:07 2025 by rpki-client