Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
File: Zr5SEJO7idx2JQsif39_umbiKNg.mft (raw, json)
Hash identifier: HwADXxrSgiYqAOq7Emrz3we/m+CANhZ+R/2alRw32Jw=
Subject key identifier: 14:70:DB:B9:6E:3A:8C:E0:60:0C:3A:E8:08:76:A8:89:AA:06:70:E4
Authority key identifier: 66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
Certificate issuer: /CN=66be521093bb89dc76250b227f7f7fba66e228d8
Certificate serial: 019A0035361A08C549E533F1B8A3D04F971C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
Manifest number: 0238
Signing time: Mon 20 Oct 2025 06:01:18 +0000
Manifest this update: Mon 20 Oct 2025 06:01:18 +0000
Manifest next update: Tue 21 Oct 2025 06:01:18 +0000
Files and hashes: 1: Zr5SEJO7idx2JQsif39_umbiKNg.crl (hash: j3QxwHvGcIJynaejWl8G+Y0e59GvH6umgZOdfWkLunE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:36:1a:08:c5:49:e5:33:f1:b8:a3:d0:4f:97:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66be521093bb89dc76250b227f7f7fba66e228d8
Validity
Not Before: Oct 20 06:01:18 2025 GMT
Not After : Oct 21 06:01:18 2025 GMT
Subject: CN=1470dbb96e3a8ce0600c3ae80876a889aa0670e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e2:d3:71:8d:3b:b4:f6:b9:9a:39:c0:b1:73:
21:af:92:ac:5a:f7:d3:da:70:6b:79:40:eb:99:3a:
6f:9b:f2:16:78:dc:47:a2:fe:4b:0a:c8:9e:e5:39:
e2:c0:13:35:3a:cc:06:d0:6b:74:f4:4f:67:3f:7e:
d7:7a:ab:a7:ad:2e:c8:4b:0d:94:0c:b4:25:2d:8c:
9b:ab:f3:51:05:fa:66:07:cc:97:a7:04:c7:70:4e:
c9:aa:86:92:c5:93:80:dd:de:98:ec:41:c3:bf:39:
62:30:dd:64:d8:ce:14:0a:5a:4c:89:d8:03:0e:39:
61:a5:54:20:8d:d3:bb:59:9c:8a:0d:1a:8a:63:43:
50:8c:3e:55:24:fc:cc:06:57:0e:01:79:52:05:8b:
9f:94:19:11:64:a5:03:54:46:36:36:75:32:bb:3b:
9b:02:56:d4:86:c5:83:ba:04:d1:23:12:24:d1:70:
a6:45:6d:b8:a2:6f:36:b2:51:2b:04:e7:b9:90:71:
e8:bf:1e:cb:16:d0:dc:e3:7a:1d:7c:8a:9d:a4:22:
2c:c0:6a:3c:bb:2f:8c:1f:52:ce:01:fc:d8:f5:bb:
9a:65:75:51:f4:c2:21:cf:db:47:3d:f9:59:19:91:
2b:82:5f:83:3e:d9:b8:e5:48:d6:83:0a:f6:2d:2c:
18:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:70:DB:B9:6E:3A:8C:E0:60:0C:3A:E8:08:76:A8:89:AA:06:70:E4
X509v3 Authority Key Identifier:
keyid:66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:78:d8:fc:8f:66:14:ca:ef:df:ca:3f:fb:9b:fb:d2:0b:a9:
37:6f:75:ff:9a:9f:0b:29:a4:1c:3e:30:e0:6b:22:58:b0:a3:
c2:65:d5:3c:8b:d5:6a:a5:e9:28:05:7c:11:37:59:5e:71:e1:
34:50:0c:f9:13:30:2f:02:11:59:e6:37:8d:6d:48:f9:fd:96:
8d:91:3d:51:50:8a:5d:e5:6e:9f:7d:60:42:91:e4:03:d6:5c:
e2:10:f9:19:13:e3:ae:60:b3:22:3c:52:89:26:cd:3a:85:17:
70:96:ad:26:43:2d:9c:9d:b0:c9:12:c0:10:45:b3:b9:31:84:
6a:2c:51:ac:07:d6:61:17:7a:6b:08:a9:de:c9:ce:ca:03:bc:
0f:be:04:71:a0:3a:3c:a6:ac:b7:54:15:3a:06:e4:4d:c7:36:
50:e8:f8:d5:37:3f:28:5f:e7:76:97:63:f4:ba:5a:a9:b4:2c:
5e:26:12:72:73:63:99:a0:4c:94:aa:4a:8f:0c:e9:20:58:1a:
0b:8a:e8:5f:d9:dc:f8:c7:d9:7b:89:96:c1:4b:bb:33:2e:44:
eb:55:91:05:27:4e:02:79:79:a4:83:f4:7a:a7:59:8b:58:96:
3a:51:fe:67:ca:9b:c8:da:1e:5f:c6:0d:4d:c7:8e:b4:43:9b:
27:d7:51:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:58:42 2025 by rpki-client