Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
File: C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft (raw, json)
Hash identifier: 5mmrLx7kqHqSDWq64WWMDfCSEWpzn3HAG4hInxr6ygo=
Subject key identifier: 00:4B:CF:6B:1D:4B:EB:34:79:AA:AE:D9:F8:22:ED:06:7C:41:8A:C6
Authority key identifier: 0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC
Certificate issuer: /CN=0bfa7348d6c1d7186328328720730f684fa20edc
Certificate serial: 0199FC58D6A4D1F48D6E767C17B314ED260C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
Manifest number: 16E7
Signing time: Sun 19 Oct 2025 12:01:44 +0000
Manifest this update: Sun 19 Oct 2025 12:01:44 +0000
Manifest next update: Mon 20 Oct 2025 12:01:44 +0000
Files and hashes: 1: C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl (hash: zZU0knXCN20iOA55KzaJ3KpEmYSEQ8NdVa0EQSl5lLo=)
2: R78hXt59LE7w0KcWm8CyRlL8ojA.roa (hash: cdB5HrXSEQbNHbInJcgn28JFjatfOEw4A//fIUnff/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d6:a4:d1:f4:8d:6e:76:7c:17:b3:14:ed:26:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bfa7348d6c1d7186328328720730f684fa20edc
Validity
Not Before: Oct 19 12:01:44 2025 GMT
Not After : Oct 20 12:01:44 2025 GMT
Subject: CN=004bcf6b1d4beb3479aaaed9f822ed067c418ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:29:cd:8e:5e:7a:9d:48:1c:60:11:e6:af:3d:
5c:12:24:69:ed:50:60:af:77:5b:3f:b9:ed:ec:59:
49:23:60:3d:5e:7e:3b:d2:65:47:05:26:78:42:3e:
be:80:21:ea:77:81:3c:cb:36:6f:f5:aa:f9:09:7a:
97:43:ee:88:6a:e4:2f:1e:a9:e8:a8:7b:63:22:8f:
f5:a3:0d:36:88:3f:b4:d8:58:31:51:9e:94:b7:a1:
e0:de:85:0a:c1:f3:90:da:8c:eb:1a:dc:9c:10:6c:
5e:11:5f:4b:59:64:0b:e4:58:c3:f5:98:38:33:e5:
0b:68:37:92:4e:ac:d6:04:c0:ed:de:74:89:19:bb:
9a:5a:27:38:e8:e8:47:18:76:5a:74:66:c3:f6:1c:
38:13:ce:93:ed:60:34:28:5b:6b:38:d8:77:03:90:
24:95:d6:4b:aa:db:34:3a:25:e0:20:71:cb:2c:e4:
bb:b9:b3:e3:ee:05:51:df:36:6d:0f:5f:7b:31:73:
ae:eb:b2:f8:ff:b9:e0:ed:e0:13:24:73:70:0c:a5:
00:74:0c:aa:6d:11:42:fe:5b:55:ac:27:01:94:01:
a2:07:bf:eb:f2:c1:73:56:2e:8e:e3:18:b2:52:7d:
14:f8:9b:c6:ff:6f:63:1f:68:bb:37:4a:db:78:54:
46:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4B:CF:6B:1D:4B:EB:34:79:AA:AE:D9:F8:22:ED:06:7C:41:8A:C6
X509v3 Authority Key Identifier:
keyid:0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:dc:4a:b1:34:cc:c5:e0:26:e7:ff:5b:2c:09:43:1e:d1:79:
2c:e1:9e:8e:f8:4e:f7:36:ca:38:c5:05:00:c5:f5:88:f1:b7:
cd:d3:2a:2f:42:7f:9e:96:72:a7:88:dc:e5:81:61:ce:90:92:
98:a4:ad:d4:c1:97:c0:87:bc:5c:9c:52:9d:d6:bc:29:76:95:
f8:2f:e4:43:5f:ee:c7:70:60:19:fe:ba:ee:11:2d:ad:48:cc:
ad:cf:7a:7f:d2:41:80:ab:8c:b9:07:47:00:56:46:57:cf:b3:
b4:af:70:44:44:6d:6b:56:18:6d:63:c5:83:8c:5c:34:6c:0c:
02:bb:e3:a8:28:e7:4f:77:22:e4:27:b6:93:84:e2:ab:17:00:
ce:f5:97:7c:dd:3c:f4:86:8b:ac:43:e9:88:80:19:de:3f:5e:
91:57:bc:c0:9c:53:f8:0c:34:83:cf:65:97:20:fd:d7:bb:a9:
2b:e0:1d:f0:34:c4:85:ce:80:6a:c3:37:d2:ba:10:9b:49:e6:
7b:f4:e5:a8:1a:c7:9c:ae:0c:04:53:a3:f1:c8:f3:e6:7b:ab:
5a:66:bf:85:c3:fa:d2:71:bf:80:70:4b:0a:13:8d:17:19:34:
46:2a:80:22:24:54:e6:86:95:b5:4e:e9:c3:27:9e:07:5b:f3:
11:38:f1:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:24 2025 by rpki-client