Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: EWzgxad2wS0kkLY4wt7K9yjmWF6o+LqxBZ6ElBzbWSI=
Subject key identifier: 44:40:65:44:34:20:B2:9D:CE:08:FD:A8:8C:BF:C1:02:5D:95:7B:C0
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 0199FDDA2C0DEBB683729317251EBA7385B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 19:02:37 +0000
Manifest this update: Sun 19 Oct 2025 19:02:37 +0000
Manifest next update: Mon 20 Oct 2025 19:02:37 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: 6NO5mpzIaRafDh3omqcQfeDR9qEC+c+40x7lyJqLjSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:2c:0d:eb:b6:83:72:93:17:25:1e:ba:73:85:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Oct 19 19:02:37 2025 GMT
Not After : Oct 20 19:02:37 2025 GMT
Subject: CN=444065443420b29dce08fda88cbfc1025d957bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b8:b2:17:86:44:97:92:02:02:a3:ed:5c:b6:
04:e8:ee:a7:0f:59:ac:eb:bb:51:f5:41:46:72:8e:
d5:10:92:2b:a5:8e:5a:fd:bb:54:84:62:fd:dc:b7:
a6:6e:a6:85:0c:2b:a9:81:77:1c:b0:1c:7b:a7:dc:
2f:82:44:01:3f:0f:3c:af:a7:28:05:7c:35:7f:73:
41:cc:51:c5:e1:f8:ab:9f:66:c2:82:d3:71:d4:09:
b4:45:41:cc:31:d6:2d:ff:d1:64:af:88:81:31:23:
82:93:68:83:e5:e2:36:2a:c4:9a:fd:6f:c9:eb:a5:
45:b6:e9:ae:0b:51:d6:8a:89:ec:fd:f4:6b:80:62:
09:84:3e:57:eb:24:5a:76:76:5c:a4:fe:d0:a0:53:
23:bc:c4:5d:20:6f:76:41:3f:af:44:f4:12:01:b5:
5e:a0:be:20:47:5d:92:0a:e0:03:02:9e:dd:90:c4:
f4:d0:92:79:9b:38:5e:61:68:5d:6a:bf:a7:6f:3e:
e9:ec:11:03:bd:2c:8f:a3:07:91:3f:73:3a:11:73:
c0:69:3e:8a:8e:e1:aa:48:66:fc:c6:a2:9b:8c:df:
8a:33:36:35:5f:5a:50:2f:1f:ac:86:de:cb:cb:b9:
7c:d6:4b:48:3c:df:27:06:3a:86:23:3d:7b:d3:d7:
9e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:40:65:44:34:20:B2:9D:CE:08:FD:A8:8C:BF:C1:02:5D:95:7B:C0
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ac:15:3f:23:73:49:76:e2:62:45:00:e5:cb:13:8f:93:52:
6d:45:d3:ae:0c:2b:ba:14:91:ff:fb:d9:6e:4c:b8:bc:8a:28:
03:0e:9a:d6:a4:2e:1d:4e:16:4b:5c:83:8f:df:09:3b:5d:6f:
df:58:a4:f9:65:d3:af:b4:33:dd:a4:7f:71:8f:99:ec:3b:b3:
7f:ba:ca:b8:03:2c:27:06:af:41:ad:b7:2e:68:dd:0c:9b:c2:
81:bc:0f:a4:f1:f3:c3:ba:ea:07:75:58:50:59:1b:d4:e7:3e:
c5:94:13:be:53:c8:e4:1e:e6:7b:c3:47:2d:bb:2e:ee:16:e7:
71:ba:a0:08:cb:6d:2b:d9:5a:f8:7e:9a:79:53:2e:e7:8b:47:
6d:81:8a:29:1b:52:a7:07:74:a4:f7:64:4b:ae:ab:a5:6f:3d:
05:8a:fe:84:bf:9e:30:0a:b7:0f:de:fb:85:80:e9:e8:c7:77:
84:d2:ea:8b:85:47:5c:ae:30:ac:a2:f2:6f:36:0f:02:82:de:
e3:3d:ee:8b:4a:7f:09:59:3b:c0:9a:c9:93:4b:b9:66:15:2d:
ac:44:16:3f:8c:b8:e9:1d:4c:8c:f3:90:55:01:00:7d:25:e6:
08:ac:a8:ce:2d:4c:3e:70:62:c7:00:b4:c9:ea:4d:81:9f:c3:
b3:10:14:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:06:35 2025 by rpki-client