Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: deLzPCOYiK4C5Rt/khySU65RMDt5vqtfJcim9OGnP38=
Subject key identifier: F0:32:75:18:38:41:68:EE:A6:63:86:2E:C3:9C:72:6D:64:1D:28:2E
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 0198D4732395321819CF7E2A4206FF822C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0EF8
Signing time: Sat 23 Aug 2025 01:02:52 +0000
Manifest this update: Sat 23 Aug 2025 01:02:52 +0000
Manifest next update: Sun 24 Aug 2025 01:02:52 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: ibtTaFV7bvQUUwoSWw8bFJXf/dE7WU6YPlcRNc8RUPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:23:95:32:18:19:cf:7e:2a:42:06:ff:82:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Aug 23 01:02:52 2025 GMT
Not After : Aug 24 01:02:52 2025 GMT
Subject: CN=f0327518384168eea663862ec39c726d641d282e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cc:82:79:1b:d0:70:d2:c7:37:49:9c:e0:1b:
e4:98:99:d6:5c:74:29:5c:48:78:e1:0e:cb:67:3d:
49:a8:0b:57:16:fb:53:00:1f:c5:f9:75:73:09:0a:
a4:0d:a7:0b:0b:fe:2c:1d:e1:85:47:5b:1a:5c:be:
e5:96:e5:4d:40:e9:fe:c0:01:61:75:ad:8e:6d:e4:
b0:aa:84:dc:f9:ba:93:97:8b:eb:fa:a3:4f:57:bc:
68:21:a1:32:46:36:58:67:f9:74:58:2c:da:d7:c3:
f9:dc:58:8a:08:f8:e2:4a:24:f7:85:c7:db:19:7d:
20:02:7d:60:d2:5b:f4:e2:65:1f:c6:a6:c8:f6:26:
a1:45:fe:b1:ea:dd:77:f1:c2:13:15:5a:0c:84:83:
ea:c1:c4:67:e6:dc:aa:5b:f6:61:fd:0d:12:23:73:
f7:5e:d1:99:f9:cb:48:33:e5:f5:7e:67:e2:90:4b:
aa:db:41:01:5e:8f:97:97:9a:7b:47:b8:29:88:fb:
93:b6:bb:ff:a9:eb:91:a4:e3:38:ac:6d:d7:3f:18:
30:72:29:d5:7e:00:b5:71:2f:e3:23:55:bc:fc:d0:
5b:c4:ed:6a:be:41:c7:19:09:f4:2b:65:f2:74:f9:
fa:4b:c7:f7:87:dd:a8:57:c2:05:9f:82:c0:f8:2b:
76:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:32:75:18:38:41:68:EE:A6:63:86:2E:C3:9C:72:6D:64:1D:28:2E
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:89:90:c1:48:2c:e9:a0:6a:6a:90:b0:6e:33:38:d3:8e:01:
29:82:21:d3:4c:41:b7:3b:f8:1a:19:20:1b:20:a1:fb:85:1a:
ec:8a:83:83:f1:9f:56:6b:90:86:d8:58:c2:0d:d7:cf:17:8d:
8a:ae:6a:67:1c:5a:02:ea:15:49:32:eb:84:f5:56:24:18:1d:
b5:31:6c:ca:b4:64:27:cc:41:78:dc:3a:96:d2:03:96:02:69:
1e:1e:af:38:d2:bc:9e:f7:6a:ab:5e:e8:71:26:12:49:af:24:
1c:91:09:32:03:2a:61:4a:f4:bf:82:60:2c:77:63:fc:37:a8:
61:d6:c1:ec:30:bb:fe:2b:c2:7a:2e:a6:6f:eb:60:ae:ba:de:
d7:72:6f:0b:b7:87:d7:e4:ef:6b:4c:5a:f6:bb:b2:8b:3d:65:
12:d4:96:6d:19:23:83:e2:96:3f:d2:36:39:a1:f5:9b:4a:28:
dd:c4:2e:30:3b:a8:11:8f:bd:86:4d:fd:4b:35:58:5a:a1:69:
72:74:61:cc:56:75:5c:6c:de:90:a8:b2:3d:d1:f5:af:18:b0:
ce:13:b7:c4:f6:2e:17:95:c8:ef:9d:aa:87:0f:a5:e0:b6:34:
0b:0a:d2:c6:23:cb:47:d9:26:2e:88:08:7e:19:51:28:f3:2b:
44:84:54:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:37 2025 by rpki-client