Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: VupHP4JZsCNyTOf0tHiRxIhflfC/RHNCsINMhs3p+L0=
Subject key identifier: 1F:5C:33:BA:DF:16:9D:13:4A:09:1F:53:71:A7:BC:88:36:C5:9C:13
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 019A71B9349D4D3E6B835BC85792BEC4D999
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 1351
Signing time: Tue 11 Nov 2025 07:02:34 +0000
Manifest this update: Tue 11 Nov 2025 07:02:34 +0000
Manifest next update: Wed 12 Nov 2025 07:02:34 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: T1uyK3Hojf/dUmXkjlx1GVKNgb5xtGxhveKPGbxfZwY=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:34:9d:4d:3e:6b:83:5b:c8:57:92:be:c4:d9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Nov 11 07:02:34 2025 GMT
Not After : Nov 12 07:02:34 2025 GMT
Subject: CN=1f5c33badf169d134a091f5371a7bc8836c59c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a5:6c:0e:ea:3b:3c:63:89:f2:ac:49:10:78:
65:ca:b4:44:ad:c8:29:4e:91:1d:88:cb:bb:af:28:
20:76:e7:6a:0d:57:82:21:1c:27:65:2c:37:1e:1d:
41:74:de:7b:35:64:14:b2:93:d6:3e:57:d0:f2:db:
b5:4c:fd:9a:36:f3:0f:8c:b3:1c:b9:e2:3e:d7:69:
4e:f3:4f:43:7d:11:28:71:8e:ae:48:99:21:89:37:
8a:95:2f:40:79:ec:86:30:a1:b3:30:f1:2f:73:e1:
be:94:70:3f:6c:2e:e7:08:78:97:85:79:8a:d9:a2:
48:3d:03:11:f6:46:3d:2d:90:1b:d8:f9:ac:b7:60:
b7:0f:28:63:aa:2a:09:cd:a5:dd:02:da:95:d0:c9:
d4:34:0e:d3:87:4e:1f:17:49:75:87:26:55:64:c0:
3f:60:42:be:4f:e6:8c:35:37:d5:f8:f2:cd:7b:a7:
cc:54:1c:dc:3d:e3:30:61:0c:5f:80:4e:6b:ec:2d:
fe:a0:ab:46:bf:30:8e:72:28:37:80:eb:e8:a5:93:
b8:9d:2c:71:42:92:2c:c2:3a:bc:17:37:ac:06:8d:
69:7b:dc:39:f7:e4:9f:16:71:2e:12:86:98:46:88:
78:77:13:e0:96:ab:dc:fe:c7:42:5d:9d:c9:86:75:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:33:BA:DF:16:9D:13:4A:09:1F:53:71:A7:BC:88:36:C5:9C:13
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:59:8d:42:bb:13:51:30:64:cf:75:91:49:68:2a:50:e8:61:
9f:41:95:75:c2:7b:54:92:be:33:2e:ab:29:7a:cc:0d:ef:a2:
c4:84:87:e3:50:62:7e:a4:0c:f5:78:46:78:fb:8d:54:4e:fe:
75:f6:bd:56:4f:31:52:a2:88:45:a3:7f:71:f1:6b:c1:47:ab:
79:fe:a6:b3:6d:2c:0b:e5:42:c1:1c:bd:a7:d1:2f:6d:4b:26:
70:1d:ac:5e:93:3a:6a:85:ef:c9:a1:9e:78:93:b6:3b:b0:c3:
93:8a:3c:94:05:11:ce:7e:87:e9:54:00:f2:ba:75:f8:5f:09:
37:2c:fe:8c:20:22:87:17:97:5a:c0:23:c2:a1:bf:08:f9:93:
81:30:7d:8e:e5:2e:cb:14:7c:df:d5:53:09:a2:2f:e4:14:f4:
fc:7d:c9:87:a4:28:c3:16:bb:ea:34:c4:62:29:1e:8a:4f:8d:
b2:7a:18:f3:01:13:f4:ff:0a:4d:fb:24:4e:08:89:39:cb:ce:
68:9f:32:25:5b:4b:b6:09:d1:37:81:5d:79:98:ba:59:25:f0:
de:49:b0:c4:24:a0:b2:8c:1f:81:24:6a:05:b7:6c:8a:a2:c3:
f8:c1:ec:98:74:0d:7b:0f:59:80:39:67:15:50:30:b7:81:d7:
19:30:76:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:31 2025 by rpki-client