Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: xpsG0TuT6h58t0kj9C+ZFIKN1UtXDLxAac2BmZelTSY=
Subject key identifier: 03:40:4B:44:99:6B:58:8B:58:A3:C1:49:26:92:D7:99:60:9D:44:4A
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 019934924D1AD182E33E67F038F2385EAD06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 160C
Signing time: Wed 10 Sep 2025 17:00:27 +0000
Manifest this update: Wed 10 Sep 2025 17:00:27 +0000
Manifest next update: Thu 11 Sep 2025 17:00:27 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: tq+nCiTHzgrLdPVb3MoAS68ZmuZepGl93MyWocpujn8=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:92:4d:1a:d1:82:e3:3e:67:f0:38:f2:38:5e:ad:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Sep 10 17:00:27 2025 GMT
Not After : Sep 11 17:00:27 2025 GMT
Subject: CN=03404b44996b588b58a3c1492692d799609d444a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cc:3f:e8:54:1c:9f:dd:01:43:43:3d:3e:a9:
e4:a3:2b:2f:49:31:73:35:55:36:91:1e:b3:b8:7f:
f6:56:23:ca:d5:87:84:44:d7:43:ab:2b:3e:d2:37:
1a:f3:02:a5:7f:f9:42:56:42:a1:5e:74:99:f6:65:
96:87:9a:5c:53:2e:4a:82:a2:d8:40:12:7e:62:62:
d6:59:cc:29:99:1b:59:e7:89:a1:c0:bf:bd:7a:34:
e4:87:a9:53:3d:e2:3d:ed:ed:1c:9c:5e:f7:8b:7d:
d2:f3:e3:f7:95:cf:fa:44:23:67:8a:77:67:77:0b:
db:7e:fb:16:d8:3c:3f:56:77:b1:4a:6e:62:a8:d4:
62:d4:f9:cf:33:e7:08:9b:50:db:69:2f:02:51:27:
15:c8:17:f7:d5:c1:81:8d:d8:38:c5:47:98:46:8c:
6c:14:3f:fc:67:cf:ac:c8:fa:98:eb:31:e1:0f:c9:
65:dd:3e:29:6f:08:9f:e2:ab:f5:ab:64:83:bf:0e:
5c:d2:17:84:c6:95:f3:d5:56:de:35:87:c8:7a:ab:
0e:04:63:47:d3:9d:e2:c3:21:6b:f1:a2:20:21:fe:
2e:98:83:ed:a9:f2:d1:38:a3:13:01:2c:a2:87:28:
ac:d0:ee:30:4d:e3:94:93:fa:1a:a9:1f:46:5d:4e:
67:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:40:4B:44:99:6B:58:8B:58:A3:C1:49:26:92:D7:99:60:9D:44:4A
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0c:97:80:18:22:f2:0f:64:c9:12:bf:50:bd:10:d6:40:dc:
e4:fd:e0:38:51:8a:22:4d:af:ab:3c:6f:3a:68:60:fe:e1:37:
0b:d7:ba:1c:2b:9c:9a:63:84:62:21:d5:29:c6:ba:91:59:d1:
78:44:14:6e:e5:16:be:6c:20:9d:b8:1e:d9:d7:c8:c1:c4:f6:
62:a6:2f:ab:7f:56:03:67:56:0c:e6:83:68:7f:d1:0b:6f:e3:
41:fb:bc:8e:73:fe:28:28:33:fc:3b:b8:fd:d7:59:62:91:72:
5f:18:4c:89:be:d6:3f:f0:2e:12:05:55:fc:78:2b:df:d5:bd:
43:47:1a:81:98:27:4d:8c:40:65:94:5f:e1:77:fd:d4:76:b7:
76:69:b6:6c:fd:7a:72:bc:b6:77:9c:ed:8c:0c:c0:2d:e3:65:
98:90:e7:79:d1:a3:e9:d2:e5:99:58:48:97:6b:18:26:fa:c1:
2d:ae:d2:10:f1:ca:0d:32:bd:52:8e:a8:97:ab:df:30:27:2b:
d4:91:df:b4:e9:34:58:71:3c:6d:47:d0:ce:8c:50:7a:34:f3:
4e:ac:17:1e:69:51:e4:13:14:d3:46:27:6e:d4:ac:d8:d2:1a:
25:91:bb:ef:73:9d:68:95:73:09:5b:25:80:10:46:56:99:2b:
87:c7:67:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:19:43 2025 by rpki-client