
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
File: ZTwsX-3AjoxdH2VGksPkVkDIou0.mft (raw, json)
Hash identifier: WUS72JUyeMWrUGy6FvV6LnyoV0IlwJFj77EPvHyBybg=
Subject key identifier: EA:7E:6B:17:B1:B5:9D:37:ED:81:ED:7C:81:41:CC:82:70:51:B3:E1
Authority key identifier: 65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED
Certificate issuer: /CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed
Certificate serial: 0199FBEAC23EF86A38905696652EA354C9FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
Manifest number: 0BE5
Signing time: Sun 19 Oct 2025 10:01:30 +0000
Manifest this update: Sun 19 Oct 2025 10:01:30 +0000
Manifest next update: Mon 20 Oct 2025 10:01:30 +0000
Files and hashes: 1: ZTwsX-3AjoxdH2VGksPkVkDIou0.crl (hash: aKdtKTnaP5x5sJ8aiwkiGC52OVEB/5FvSh9tUubOgw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c2:3e:f8:6a:38:90:56:96:65:2e:a3:54:c9:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed
Validity
Not Before: Oct 19 10:01:30 2025 GMT
Not After : Oct 20 10:01:30 2025 GMT
Subject: CN=ea7e6b17b1b59d37ed81ed7c8141cc827051b3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e2:c0:ae:ee:14:91:5b:b9:ea:77:9a:cc:0d:
fe:56:b1:2e:d1:dc:7e:8d:09:57:bf:56:fe:ee:d3:
92:03:94:b4:91:50:e8:49:f1:9f:15:a0:c1:bb:47:
72:1e:4b:80:63:1d:09:51:82:c0:9a:8f:58:fe:ff:
40:e9:fd:17:29:87:2e:90:b7:75:67:20:a8:41:1e:
ba:7a:fd:34:30:ca:14:0a:c7:e9:fa:b9:a8:f0:c5:
01:fb:b5:c7:9e:ca:d9:66:62:2e:53:67:d4:74:2d:
46:31:a7:60:28:93:3e:b2:49:1b:05:ee:ac:a8:ce:
6f:28:00:b2:68:6b:2c:9b:11:7b:66:e6:52:80:e2:
ef:2c:cc:d5:b0:f1:44:59:23:f9:e1:52:93:86:06:
2d:63:34:94:ab:57:b6:4e:8c:c9:a5:cc:0c:7e:1f:
e0:fe:fe:0c:fd:9a:aa:eb:ff:db:66:b4:35:1c:37:
09:6d:a8:48:74:c1:8a:1a:d2:0c:29:f3:5e:e6:b5:
4e:50:be:b2:bb:5e:64:8b:0d:93:b2:7f:84:0f:a0:
af:ca:73:ba:cf:96:35:7d:b8:b8:6b:bb:a3:58:5f:
9d:d1:2b:c8:1f:eb:70:1d:ce:ad:ae:0f:19:62:62:
ae:f2:eb:61:71:11:63:82:10:de:a8:ed:e8:53:4a:
87:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7E:6B:17:B1:B5:9D:37:ED:81:ED:7C:81:41:CC:82:70:51:B3:E1
X509v3 Authority Key Identifier:
keyid:65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:55:1c:ab:01:bf:55:7f:0a:7d:a7:17:8d:ae:6c:d9:88:49:
65:54:4a:8a:3d:7d:df:8e:c4:c9:1f:93:48:cf:6d:7e:8c:3b:
48:37:76:09:21:91:e3:d2:fb:a5:90:2f:14:4c:7c:b6:9f:ab:
01:37:c5:98:17:82:50:f0:fe:f7:13:6c:d9:20:e6:29:f4:d6:
cf:a6:d1:08:03:7c:3f:47:96:0f:75:35:1d:93:43:67:20:9f:
be:7a:d5:3d:31:fa:2b:16:81:f6:23:c2:7e:6d:db:f0:56:2c:
4a:ec:f3:71:18:94:9f:ec:b8:c0:f1:79:1e:12:c3:10:58:1f:
31:a6:d3:30:92:51:3c:3b:99:4a:f8:08:e9:27:c3:0b:df:b2:
ec:b5:c2:d6:02:d5:8b:72:33:e3:b2:12:9a:19:fa:a4:f7:44:
3d:a0:f3:d5:f2:dc:d1:f8:97:40:5e:56:d8:08:69:52:74:d4:
21:d0:fd:f1:bd:d3:fc:0d:c9:24:17:e6:7b:28:14:d3:5c:ed:
9e:a4:9b:d5:55:08:af:a2:17:b4:8b:5a:89:5f:b3:b9:a1:04:
32:d9:4c:37:6f:00:2a:89:d6:ce:02:78:5f:3e:5c:e7:ff:9e:
64:45:4f:0a:58:92:9a:d8:ea:b9:f8:e2:99:09:17:68:8d:21:
e5:ff:ef:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:23:11 2025 by rpki-client