Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: sYsmVDBujG1uhCuKnMSDL/Yn5aIgBZSBJFtMjijlElM=
Subject key identifier: E5:C2:69:11:F7:30:36:B4:0F:AB:89:BC:B9:28:42:0D:28:6A:2A:BA
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 019A4F991876A8260898BE575E0C9C691AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 16:00:24 +0000
Manifest this update: Tue 04 Nov 2025 16:00:24 +0000
Manifest next update: Wed 05 Nov 2025 16:00:24 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: EOnRnzdztvf8wfNkYMf/umQBw+oizY5ywjZO3a72Wvc=)
2: J2pjS99ea6SMp7lb4ewsQffNh8c.roa (hash: 704wqH0ujui7TKq+2h1aj9AcNsB+Fn+EgZ7FOUmvebI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:18:76:a8:26:08:98:be:57:5e:0c:9c:69:1a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Nov 4 16:00:24 2025 GMT
Not After : Nov 5 16:00:24 2025 GMT
Subject: CN=e5c26911f73036b40fab89bcb928420d286a2aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:eb:a7:70:20:b5:2a:93:b2:2d:88:e6:ff:
b5:3e:da:c6:7e:44:b4:9a:2b:5d:09:af:62:23:46:
b9:c6:e5:44:1d:03:6d:f3:26:96:ab:3f:e4:fa:4b:
c8:56:2d:08:8b:24:fb:85:a5:8f:91:9b:6c:b2:89:
71:2e:ec:1b:6a:43:bb:e8:3e:fd:4c:89:d4:8e:1f:
bf:a9:87:72:01:29:c1:44:14:7c:93:f2:e8:eb:42:
e3:41:5d:d4:aa:df:6a:b6:42:be:c4:e5:d6:6a:f2:
60:fb:89:1b:b5:83:97:56:81:c6:6a:a9:c1:11:56:
8d:fd:36:22:d8:e0:fe:2f:6b:b7:f4:5d:27:c9:1a:
ca:00:a5:ee:7c:12:4c:03:5b:f1:49:e4:60:f6:ec:
30:a7:86:db:f8:17:c2:59:4f:b5:18:ca:a0:db:80:
a1:eb:55:c4:f1:3a:18:02:37:87:e2:f1:cc:bc:3c:
3d:ec:4a:1c:49:02:97:8d:37:33:16:fe:d7:dc:28:
a2:3a:cc:89:f9:7d:bc:e6:ce:2e:d9:39:c9:d2:4b:
34:0a:00:77:b4:d8:fe:22:39:45:ce:a1:60:56:03:
b0:ba:dc:f7:29:97:c8:2e:70:c6:c3:77:5b:76:b9:
0c:6c:7b:af:3e:1e:aa:46:39:6f:a9:e5:d2:b1:7a:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C2:69:11:F7:30:36:B4:0F:AB:89:BC:B9:28:42:0D:28:6A:2A:BA
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:b1:ad:8d:59:47:8d:a0:a3:10:18:8c:57:b9:87:ce:e6:5c:
ef:f5:a6:e1:8c:dd:89:5e:43:90:b3:ac:28:91:bb:2f:b2:18:
0e:a4:e7:8b:42:b7:74:a3:b2:c8:f3:2d:e5:cd:c9:b9:57:e5:
f5:64:b3:a1:11:95:b2:91:e4:1f:92:54:66:a0:05:fc:f1:04:
0f:ed:00:a3:4a:b3:6f:56:2b:bd:a0:6c:05:01:10:6d:0c:17:
fa:87:bc:55:da:32:33:e1:0e:57:3b:69:c1:a0:87:1f:62:31:
94:1b:c9:25:3f:fb:88:67:2b:4f:0c:8c:c1:05:ff:88:b4:ea:
12:1d:d9:a4:95:02:89:c4:bc:31:0e:ad:5e:e8:b8:22:2d:c5:
5b:6c:91:f8:e9:2b:34:65:f1:24:ef:60:ca:ab:76:ef:4b:35:
60:a3:fa:4c:e8:79:1b:50:4b:e9:ca:31:fc:27:f7:a6:78:71:
18:84:79:0a:9f:03:b9:1d:99:20:17:19:07:85:83:ec:12:73:
a1:c8:ce:3b:38:15:47:f9:ae:ff:f1:3b:ca:7c:fb:34:81:22:
03:a2:c1:e9:d6:90:01:88:28:d2:20:43:e7:16:c9:dc:fd:63:
e6:db:68:c0:4e:e6:f3:74:eb:5b:a8:18:55:26:44:cd:4a:36:
8a:f0:9e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:17:57 2025 by rpki-client