Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json)
Hash identifier: ifVjYjj7L/Jb8wv9fPbvlISI3rtL2zWrW5ldpOCmd+8=
Subject key identifier: 77:E1:DB:3D:18:7A:1C:E4:E7:FA:18:B8:FA:67:62:4D:2C:5A:95:14
Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba
Certificate serial: 019A4EF50E935594DF22D1B5CEED023B4CB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
Manifest number: 0FBA
Signing time: Tue 04 Nov 2025 13:01:14 +0000
Manifest this update: Tue 04 Nov 2025 13:01:14 +0000
Manifest next update: Wed 05 Nov 2025 13:01:14 +0000
Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: 2ikfSoyzjf73fOUZ9+JKwh1f2vtxVZRf+OxCFoaqPfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:0e:93:55:94:df:22:d1:b5:ce:ed:02:3b:4c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba
Validity
Not Before: Nov 4 13:01:14 2025 GMT
Not After : Nov 5 13:01:14 2025 GMT
Subject: CN=77e1db3d187a1ce4e7fa18b8fa67624d2c5a9514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:7a:a2:e3:48:55:a4:5f:e0:55:2e:02:0c:
bc:ff:11:83:94:6d:76:e6:16:99:ef:e1:98:56:75:
74:1a:ba:44:8e:14:be:07:11:4f:d0:cb:e2:7a:1e:
c4:90:dd:02:52:58:8c:63:25:ce:75:80:d6:00:6f:
c7:7e:6b:d0:71:84:ad:d7:fb:5e:fb:a5:39:e4:00:
cb:15:0e:1a:5a:4b:94:4a:b4:a3:27:5a:63:0e:aa:
97:e2:e7:28:e0:11:0f:2b:17:dd:cd:95:50:a3:de:
d2:70:5b:7f:47:8e:4c:c7:23:4f:f3:da:f7:f4:de:
a7:5b:d4:19:0b:7d:88:05:37:ed:ba:dc:7a:20:46:
b4:a1:d8:8e:19:9d:bf:29:9f:68:96:d2:5d:77:bd:
03:05:36:56:ec:58:c7:af:e0:b9:db:cb:6f:0e:21:
78:e8:2f:d3:90:fe:de:12:a7:82:1f:a5:d6:0d:be:
32:40:6f:ce:9e:72:74:40:81:6d:02:91:b1:27:ee:
01:f2:e7:c3:75:a1:e4:6e:41:d7:e0:89:51:f5:0c:
ac:bc:17:35:c4:03:1f:86:1d:4c:88:2a:07:fa:87:
01:af:23:fd:9f:a1:c3:dc:be:10:85:9f:a8:b5:04:
37:42:ff:8a:52:f1:9d:1b:51:ab:13:28:46:87:f7:
02:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E1:DB:3D:18:7A:1C:E4:E7:FA:18:B8:FA:67:62:4D:2C:5A:95:14
X509v3 Authority Key Identifier:
keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:c6:6b:36:fc:66:98:fa:66:89:fa:04:37:98:b3:da:7f:d8:
6f:79:5b:96:d6:c4:3b:67:7c:83:20:89:e7:f0:04:1c:fd:e5:
a6:bb:3b:0a:bd:54:c3:65:47:59:bb:e0:15:bf:9e:2a:fa:cf:
3f:d5:89:63:d2:ac:2c:d9:dc:1d:27:8f:2d:c1:dd:61:87:da:
b0:75:26:e4:a9:f3:a3:af:38:3c:ca:0f:b3:e2:97:a7:c0:54:
56:6f:46:b2:70:e3:a9:e7:60:17:6d:52:35:8e:44:63:ca:4b:
32:c7:36:01:13:fb:d9:80:23:07:90:41:68:3f:2d:3c:69:e1:
fa:f0:d7:75:b2:d4:ed:0a:3e:06:d8:5d:ca:3e:eb:44:c9:99:
f6:a3:ed:be:84:c5:6c:d3:82:f6:dc:98:a2:42:95:f2:a3:3c:
b1:fc:80:91:30:18:2e:da:da:bd:cd:6c:f1:b3:b5:cf:12:3c:
c5:ea:e2:71:da:af:51:0e:85:cc:54:a1:2e:44:00:9a:15:8f:
59:2c:29:b5:84:4b:8e:49:21:97:97:6e:40:96:ad:96:0c:07:
8a:80:11:e5:c4:02:3e:4d:45:5e:fc:f1:35:14:f1:db:ec:6d:
10:0e:cb:dd:49:13:95:78:5f:38:49:22:c1:5a:f3:30:73:2b:
2c:ee:ff:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:44:54 2025 by rpki-client