Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: jc4zfljjDyT1q9gjq5NaO9pAHNso6IkC8Q3YtpGplYA=
Subject key identifier: 9D:71:DF:C1:19:4F:48:6D:AE:0D:A5:EA:9F:90:5D:4B:F7:5D:07:E7
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 019880F8C48D49C84A71EF7324BD7136D76D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 15AF
Signing time: Wed 06 Aug 2025 20:00:43 +0000
Manifest this update: Wed 06 Aug 2025 20:00:43 +0000
Manifest next update: Thu 07 Aug 2025 20:00:43 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: I9jM9B+lPn4HEsMnngdFCd3uV3n9/D0r4NOMcVJ4B54=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f8:c4:8d:49:c8:4a:71:ef:73:24:bd:71:36:d7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Aug 6 20:00:43 2025 GMT
Not After : Aug 7 20:00:43 2025 GMT
Subject: CN=9d71dfc1194f486dae0da5ea9f905d4bf75d07e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3d:65:23:80:43:79:14:72:32:1f:e9:90:1e:
f4:38:0a:78:6a:8f:80:cd:3b:00:05:26:5a:66:a9:
c7:be:d9:d2:c2:83:17:08:85:98:0e:03:66:13:aa:
22:58:f1:5a:6e:32:b8:b0:d5:66:89:c4:15:68:8c:
e5:27:88:de:dc:fe:c4:ba:e5:02:0a:34:21:d0:80:
30:32:b9:a7:08:ea:ce:9a:b2:7b:f1:53:19:de:81:
c0:d3:eb:ed:0b:49:dc:55:da:ea:12:36:4e:c6:b9:
a8:6e:54:c6:25:f2:08:60:33:30:59:84:4f:70:66:
45:2c:e6:a4:ba:55:da:35:c6:59:39:97:2c:1e:6d:
77:df:a3:b3:a7:5b:34:8b:23:d5:39:07:10:fe:dc:
a6:f5:3a:ea:f0:01:f0:fb:ba:9b:05:4c:54:53:af:
18:88:28:4d:b5:8e:8a:b1:af:82:c2:3c:01:78:69:
01:a9:56:fe:f5:65:c4:f3:71:28:29:d3:6b:16:1a:
28:35:34:f3:26:5a:ad:16:6a:2f:76:47:39:e4:ff:
db:4d:1a:d2:1c:ef:b9:dd:83:c1:f7:1f:71:d8:ba:
06:03:18:a0:01:f2:55:31:dd:9b:3f:90:df:0d:f4:
6f:ea:55:69:51:a8:5a:cb:99:cd:c0:26:1e:e3:b8:
e4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:71:DF:C1:19:4F:48:6D:AE:0D:A5:EA:9F:90:5D:4B:F7:5D:07:E7
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:ef:6c:05:9f:43:94:24:db:51:64:45:af:b4:db:2c:1c:44:
7c:11:42:cf:43:02:7d:1c:e1:25:80:8f:a6:59:1b:2f:9d:5b:
88:08:81:ac:5e:b7:65:76:f3:a1:18:bd:5c:04:dc:6d:34:28:
fc:a1:7d:5b:fa:33:85:a4:ed:7d:4a:c9:a6:44:fa:c1:40:55:
9f:e4:9c:c2:40:03:30:43:77:e5:9f:46:66:3b:4e:0d:c2:59:
f2:7e:13:8e:14:6b:f1:94:b2:50:ef:0f:be:9a:14:97:db:60:
ca:a2:14:4c:01:3f:c4:26:e1:6e:5e:f6:44:1a:f3:94:f5:ef:
d0:f9:23:c6:10:86:85:cf:12:1c:e0:a4:86:4b:8e:65:c2:d3:
20:17:1c:63:d1:4c:13:bd:08:80:da:42:02:69:52:36:5a:7b:
13:87:66:8d:31:d1:b3:d4:20:01:4d:8b:ac:9d:dc:fc:90:5f:
3b:d6:6c:ab:c5:1d:b4:13:5a:34:74:06:91:b2:71:ff:fc:59:
8e:d5:fb:45:b8:7e:f5:98:83:99:ed:bd:87:71:10:4b:43:ac:
6d:ae:81:ee:22:95:7b:70:a5:86:cc:7f:c9:40:a3:16:17:7b:
dc:80:c4:fd:ea:05:4a:96:e6:55:de:ea:e5:b2:61:d3:b4:7e:
fb:94:2b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:23:47 2025 by rpki-client