Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
File: zEH27mce6lNY5xzn_BHJNsw3bGE.mft (raw, json)
Hash identifier: ojeURyBW/pUty///uCMAuYxi3/uK8gA4UGk4bSPQOoU=
Subject key identifier: F4:2B:63:66:FF:D8:F7:E0:5A:7A:6F:EE:E9:08:35:C0:50:C7:25:90
Authority key identifier: CC:41:F6:EE:67:1E:EA:53:58:E7:1C:E7:FC:11:C9:36:CC:37:6C:61
Certificate issuer: /CN=cc41f6ee671eea5358e71ce7fc11c936cc376c61
Certificate serial: 0198D5BB8166B1E5F8D3375447681692B7E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
Manifest number: 1076
Signing time: Sat 23 Aug 2025 07:01:31 +0000
Manifest this update: Sat 23 Aug 2025 07:01:31 +0000
Manifest next update: Sun 24 Aug 2025 07:01:31 +0000
Files and hashes: 1: zEH27mce6lNY5xzn_BHJNsw3bGE.crl (hash: 0KdbVLOZMppvJOZknYXtRFXRxFFpW0/Lvln65BH2360=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:81:66:b1:e5:f8:d3:37:54:47:68:16:92:b7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc41f6ee671eea5358e71ce7fc11c936cc376c61
Validity
Not Before: Aug 23 07:01:31 2025 GMT
Not After : Aug 24 07:01:31 2025 GMT
Subject: CN=f42b6366ffd8f7e05a7a6feee90835c050c72590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:34:b2:e3:31:9c:f0:94:87:81:9a:3c:f4:
a3:34:b8:43:27:6f:f8:b8:5e:63:b4:a6:ad:86:8a:
a9:c5:61:07:34:19:69:c4:c9:5b:b7:6a:21:90:b8:
c1:07:1b:81:14:d1:ee:ec:52:5b:fc:21:7b:65:4f:
b7:c9:67:98:ec:0e:fa:9d:43:88:af:42:92:48:ea:
21:be:6d:8b:6a:7e:c2:d2:d5:84:aa:4e:be:bc:92:
68:ec:2e:d5:10:fa:65:30:5f:57:c7:75:3a:3f:6c:
ec:c7:97:29:40:21:d4:99:e4:8d:45:03:91:82:20:
e2:f6:ee:9d:85:45:a5:0f:fd:8a:31:b8:1e:c7:da:
b4:84:e8:53:37:e5:bb:42:cb:c5:af:0d:2a:65:4a:
ce:7a:0c:5c:be:e2:83:bf:73:81:81:f4:d3:ce:70:
97:ac:6b:7f:e8:89:61:62:34:17:cb:af:43:0d:d3:
4f:5a:fa:6f:4c:93:7b:d1:8b:a6:88:a9:7e:11:1d:
9f:f9:59:ff:27:69:67:d3:9d:7f:f2:c9:bf:a6:a2:
e3:13:1b:15:1d:cf:95:76:03:d2:1d:9b:a3:c8:a0:
e3:42:a9:f5:2b:f4:b3:7f:14:d7:8b:51:ac:ec:8d:
50:5e:b3:84:1b:31:92:62:de:45:ad:43:d9:d5:00:
68:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2B:63:66:FF:D8:F7:E0:5A:7A:6F:EE:E9:08:35:C0:50:C7:25:90
X509v3 Authority Key Identifier:
keyid:CC:41:F6:EE:67:1E:EA:53:58:E7:1C:E7:FC:11:C9:36:CC:37:6C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:d3:87:db:ca:ba:6e:27:15:82:a2:ce:4a:d0:72:ce:0c:f2:
3e:d5:bf:59:df:97:89:a0:d5:3c:fa:77:28:2b:31:7b:5b:c6:
62:94:e2:8d:65:cf:c6:b5:4d:a3:0f:54:26:df:a3:73:11:24:
95:2e:b2:4f:ab:83:bd:9e:c0:30:58:47:04:bf:cd:3f:1f:42:
7e:ca:de:b9:96:f6:85:81:14:fa:2e:27:cd:cc:81:cb:67:70:
d4:dd:3c:bb:91:47:cd:55:35:86:18:2d:4f:63:c1:12:f0:3c:
5f:20:2b:44:8e:fa:1c:2e:8d:d9:1a:fc:ca:0a:11:7c:84:48:
be:e4:99:0f:41:a6:ab:bc:f3:d0:ac:e5:74:1a:7e:31:95:c1:
85:b7:8d:e9:ac:c3:f4:4f:93:2e:f9:dd:cf:c8:61:56:f7:ef:
61:11:b9:ae:e7:48:ec:72:a2:6f:8d:c5:40:6d:08:1e:9a:ec:
a5:84:00:95:f9:ae:96:f0:d9:d1:68:68:0b:a4:7f:26:44:d0:
c2:ab:c7:1b:7b:a1:99:d3:ea:2a:b2:08:25:22:c3:5a:bb:66:
ab:2d:40:7a:1e:78:3e:9d:d5:49:89:bc:b0:07:b2:01:b5:eb:
3e:b7:35:26:6b:5c:0d:01:ef:17:a9:90:bb:87:8a:4c:26:6b:
af:60:d1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:09 2025 by rpki-client