Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: zrFluYzlsfzQa/tmVA1vLu81rc/p4iZErXIklSPViYI=
Subject key identifier: A7:D3:D0:DC:ED:A5:01:2B:26:B5:FE:2D:47:09:79:B8:DF:58:53:1C
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 0199FBEA8C9A934E0199FA578D858598DB98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0F91
Signing time: Sun 19 Oct 2025 10:01:16 +0000
Manifest this update: Sun 19 Oct 2025 10:01:16 +0000
Manifest next update: Mon 20 Oct 2025 10:01:16 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: b1TblNkhfXUSsvn8STLPP9linvsvVNKF7uouH5WapGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:8c:9a:93:4e:01:99:fa:57:8d:85:85:98:db:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Oct 19 10:01:16 2025 GMT
Not After : Oct 20 10:01:16 2025 GMT
Subject: CN=a7d3d0dceda5012b26b5fe2d470979b8df58531c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:8e:97:f3:cf:48:96:a9:47:26:ed:d9:37:
84:96:4a:ad:63:02:40:2a:c6:4d:4c:6f:ca:6d:5b:
31:93:38:98:36:86:f1:e6:49:58:72:1f:b2:42:a9:
8e:74:3d:1c:08:db:cd:b9:0f:dd:f6:a4:7a:d1:2c:
91:d2:78:e3:9c:b0:fd:67:19:60:ff:da:8d:41:62:
3d:74:68:a2:3d:bd:10:a0:90:6b:8b:80:8d:64:86:
88:80:2f:d8:86:3a:a4:ec:f9:c5:6b:42:48:0c:a3:
48:b2:38:24:7f:89:38:dc:f6:51:30:a0:fc:b5:1e:
7f:76:7a:e0:43:79:c1:06:a8:66:53:ee:80:d4:c1:
b4:63:dd:5e:11:c0:d7:9d:4f:1d:74:f2:6d:3c:1a:
39:89:f9:ae:a1:db:73:be:89:21:8d:40:4d:fe:60:
cc:ef:06:6d:54:a0:7a:c1:e6:ee:e5:e6:58:40:eb:
7a:09:a6:54:56:67:d2:cd:75:5a:ca:6a:46:be:5b:
dc:ef:b3:16:13:dd:79:a6:43:49:62:95:8a:37:a6:
7d:b7:03:ef:88:db:61:ec:07:51:27:28:56:fc:db:
f6:ce:94:3d:ac:84:c7:67:0b:cb:67:ce:c5:63:4c:
7c:b9:f6:ed:9d:1d:e0:79:32:0f:8d:d8:9d:69:33:
14:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D3:D0:DC:ED:A5:01:2B:26:B5:FE:2D:47:09:79:B8:DF:58:53:1C
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:56:4d:b9:4f:ea:8d:5f:eb:96:61:c8:5c:3e:27:80:9d:fd:
07:73:cd:36:e9:59:46:bb:c5:ee:16:8f:1a:58:41:d5:3c:05:
46:74:d2:7d:b4:8f:75:03:e5:db:3b:0f:ab:dc:16:c4:7e:ec:
9d:2b:88:13:ad:a0:40:33:38:a7:bc:f0:83:17:05:a7:2e:de:
f2:92:c4:01:59:a5:1a:8a:1f:4b:aa:b1:0c:a1:5f:68:a8:34:
f0:5a:71:bd:d6:26:b4:af:79:97:35:7e:07:e4:ea:85:ca:2e:
16:2d:fd:af:29:6f:0f:5b:4b:a6:a8:10:52:1b:5f:dd:91:ba:
80:9c:74:3e:8d:9d:4f:ee:98:23:81:4a:44:15:df:b2:2e:70:
b1:8d:2d:dc:fd:4e:f3:77:a0:ce:0c:9e:48:04:1c:90:60:7f:
14:8c:20:8f:f9:75:02:92:e4:27:18:15:5f:58:85:00:ae:72:
09:bc:dc:c4:d3:f8:2b:9a:90:ed:6f:02:b5:78:e8:ca:a5:0e:
9c:62:a3:c5:d0:08:90:e1:80:d5:e1:2e:aa:80:8f:4c:86:d1:
e8:f0:36:fa:07:eb:4d:9a:b9:0b:46:71:c7:d6:e8:b9:7e:12:
fb:db:db:db:98:94:b8:e1:58:d3:76:f4:6e:79:ea:d6:d0:61:
02:e5:24:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:28 2025 by rpki-client