Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: erppEVI/Eb8GjRaBwXPoSsnpCnTGb4oAqY2M/v6IP0I=
Subject key identifier: 56:33:58:0D:4D:0A:A9:BE:21:98:AB:CC:8C:F4:B5:3D:60:1A:23:A2
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 01974A7ACA552C6B55A1A1A77F0BA8663B5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 11AF
Signing time: Sat 07 Jun 2025 13:00:50 +0000
Manifest this update: Sat 07 Jun 2025 13:00:50 +0000
Manifest next update: Sun 08 Jun 2025 13:00:50 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: 2jbMgsZoNpjkWQiKPF461qSPwOogVwJsG85jCmOQKgs=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:ca:55:2c:6b:55:a1:a1:a7:7f:0b:a8:66:3b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Jun 7 13:00:50 2025 GMT
Not After : Jun 8 13:00:50 2025 GMT
Subject: CN=5633580d4d0aa9be2198abcc8cf4b53d601a23a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:b8:ae:ae:8d:ce:35:09:d4:80:26:20:75:
25:5d:6e:cc:63:34:e1:16:c4:be:7e:d0:d2:64:33:
38:a5:00:7e:b6:c6:c9:09:22:9e:af:3d:86:9a:6c:
1e:9e:c9:d7:96:d7:ac:b3:83:7d:4f:a4:99:85:91:
50:cc:6b:30:1a:c0:3d:b9:6f:f4:6f:fe:c0:0d:7e:
f8:20:a2:43:d7:0a:64:86:0a:67:f3:fb:db:7a:04:
c1:b6:60:13:18:94:96:2f:d9:b7:58:b0:45:70:30:
bc:23:9c:76:36:ce:06:fa:ea:c2:bf:1a:c9:1c:35:
43:a5:a9:32:e3:1d:98:0f:dc:34:03:11:1b:bb:e3:
47:2e:47:09:a3:5e:24:38:a9:c9:54:44:99:9b:56:
70:86:76:62:9d:2a:b7:05:2d:62:1f:a6:7f:b3:e5:
ba:5c:99:75:62:a3:06:46:c0:d9:70:96:f4:0f:5a:
3d:8a:92:33:e8:08:00:6a:ef:9e:dc:36:c2:e2:a8:
87:47:20:03:a9:f9:8b:3e:d9:bc:cb:84:fe:67:38:
b1:4c:fa:1e:dc:c3:88:f3:52:08:ea:36:5b:00:e4:
26:bb:92:a1:43:68:43:d0:da:64:e2:fb:3e:a6:4b:
2e:74:c4:47:f7:46:eb:ee:3b:cb:35:cc:85:25:df:
bb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:33:58:0D:4D:0A:A9:BE:21:98:AB:CC:8C:F4:B5:3D:60:1A:23:A2
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:dd:e1:f1:d2:7e:94:bf:25:20:df:e5:80:4d:f3:66:80:b9:
29:09:14:38:f6:11:1d:08:6e:46:08:98:91:c6:2f:1d:2b:a6:
0c:ac:7a:6a:67:e3:fa:1f:ea:aa:ca:06:20:88:b4:71:a1:d8:
52:fa:5a:64:33:af:e3:99:4b:ac:a4:5c:f1:54:02:7d:f3:55:
0d:c8:44:13:78:7f:f8:88:50:1e:ab:00:81:59:31:53:04:e5:
f2:30:96:54:c2:43:50:9b:a6:0e:9c:34:21:8e:50:e8:ae:80:
11:8d:ab:9a:ee:e5:bb:27:ab:14:8f:74:87:40:63:17:f0:68:
e2:24:42:24:fb:5d:b8:77:8d:1d:7e:a3:19:58:87:9f:41:e0:
1d:30:e9:b3:b1:c9:f4:70:15:fb:db:6d:c7:0d:9a:db:fa:ef:
b8:af:bc:f8:fe:9d:5f:cf:97:1c:23:fa:aa:0e:4f:0a:64:56:
16:17:ff:ca:2f:8e:72:77:04:37:b2:16:7d:b0:6d:83:e5:0c:
d9:23:b0:21:a1:6f:24:c7:0c:94:b3:2e:da:23:84:d7:5b:72:
1c:15:46:70:13:15:ec:80:d5:4c:70:b4:4e:9b:b7:df:fc:da:
78:e0:e5:65:d8:43:ca:69:b9:31:ad:d6:f0:9f:88:00:52:69:
f3:20:46:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:05 2025 by rpki-client