Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: cnFGy2oGUso3CrU0qs5m5X2Jjwdy4R437BsN+E0VZjU=
Subject key identifier: BC:D8:EE:E4:08:4D:7A:63:D0:07:39:B9:34:C6:0D:E7:58:FE:99:DB
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019A270B490A177ADB850EFCEF0E6960CE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 027B
Signing time: Mon 27 Oct 2025 19:00:42 +0000
Manifest this update: Mon 27 Oct 2025 19:00:42 +0000
Manifest next update: Tue 28 Oct 2025 19:00:42 +0000
Files and hashes: 1: 6w-yXh1-tMAIvo8oiWeiA5ImsoE.roa (hash: I2XmgPmlr8AeGcV748BNU3DKlg3Epa3bbBrXS+lzrBo=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: g9iWXtRujTdYcz1t0NjllhYBv+cISKVn2/9BAerQo9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:0b:49:0a:17:7a:db:85:0e:fc:ef:0e:69:60:ce:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Oct 27 19:00:42 2025 GMT
Not After : Oct 28 19:00:42 2025 GMT
Subject: CN=bcd8eee4084d7a63d00739b934c60de758fe99db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7a:9e:ad:2b:cd:c6:87:44:02:24:3e:65:ec:
4d:17:3c:bb:4c:18:0a:cf:ba:d3:22:21:69:42:48:
e9:43:49:f2:5d:a2:5e:e1:3c:0e:64:a4:ac:21:f3:
20:70:ca:53:ac:fe:8d:f0:95:28:1b:2b:81:dd:d7:
29:b8:5e:c1:87:fa:d0:bd:43:f1:9a:8e:72:01:aa:
eb:1d:89:6d:24:6d:f9:ec:ee:d5:8c:72:24:e3:84:
c3:cd:d6:8a:f0:d9:e4:71:23:5f:14:64:20:50:fb:
08:a2:73:45:3e:2b:90:da:de:d5:41:4c:f0:3e:16:
36:0c:a9:c0:8c:8d:c6:0c:0a:9a:53:45:2b:f3:fb:
f0:9c:05:dc:7c:01:ea:89:5a:07:67:ae:d9:24:c4:
69:a4:c5:72:42:84:8e:b8:e0:e3:1d:73:fe:ea:be:
76:b4:ba:a5:99:4b:b7:d4:b5:19:1c:2d:cc:52:3d:
ae:54:fa:26:af:01:34:e5:9c:95:f5:da:0c:09:57:
87:c7:29:94:04:86:9a:11:16:31:d2:bc:cf:ad:10:
a4:0e:44:26:08:d4:f3:c2:00:ac:88:b1:e9:87:37:
50:c3:93:74:80:b2:b3:fb:57:17:26:6c:ae:4e:b5:
67:61:f8:c0:f1:8f:21:19:f6:50:f4:e2:98:6e:33:
86:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D8:EE:E4:08:4D:7A:63:D0:07:39:B9:34:C6:0D:E7:58:FE:99:DB
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4d:8e:e4:67:70:cc:92:8b:8f:11:00:11:7c:a1:b4:7e:16:
71:e5:74:88:44:86:59:cb:66:a8:79:4f:70:92:7f:b4:22:12:
b5:cc:47:8a:d1:86:b6:f1:81:80:e9:6f:6f:f3:b1:79:fe:74:
f3:fc:ec:e1:d6:65:9b:a7:4a:d9:f8:25:a2:84:6e:fd:ea:6a:
fb:ef:25:7a:56:e9:d7:7c:46:51:e2:d2:c2:9f:5b:5c:8e:45:
53:e3:65:21:e9:f4:55:0e:42:9d:ae:73:eb:de:e5:7a:91:b2:
4a:35:6f:84:5d:97:09:ae:2c:a1:b2:81:17:06:20:ea:9b:d8:
92:52:f9:99:e8:01:15:b4:02:c3:8c:58:66:56:be:7f:e7:0a:
34:d5:cd:d7:47:64:44:6c:d4:6f:60:76:a1:e4:37:00:c1:d5:
e9:52:73:e1:fe:f0:88:d0:e4:18:6b:55:4d:08:36:a1:ee:dd:
56:3c:f1:3b:a2:34:89:da:9d:5d:aa:17:d3:5f:dd:be:9c:7c:
06:c6:da:f3:3a:8a:45:44:89:96:63:90:c6:9e:78:fd:78:23:
4d:7e:0b:c8:2f:9e:9a:54:f4:2b:71:4c:4c:b9:24:26:f9:75:
ca:3a:d6:29:3d:27:9a:86:b6:eb:ed:60:7a:39:4d:e3:a3:94:
81:3c:d0:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 02:59:48 2025 by rpki-client