Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: y3KpqrIQE260AjcecuSTiRENfvPv+hFHr6q+4Ih+/qA=
Subject key identifier: 95:E9:4B:92:6F:C3:DB:45:88:0D:B8:A6:F4:7A:14:23:8C:45:BD:DB
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 019A522C54F9C2509B003D11E4DB7423A2EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 0498
Signing time: Wed 05 Nov 2025 04:00:28 +0000
Manifest this update: Wed 05 Nov 2025 04:00:28 +0000
Manifest next update: Thu 06 Nov 2025 04:00:28 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: TtULR1x2qLUhppNgOQ1h7r+7StVasrlLW5RdqYV/sCM=)
2: VWgiKeUlZyr_tkfBtwpTnh3j5es.roa (hash: F+rSoMMmSh1ZRMmb8OY6V8ChtegfB1X8DkMugPNoNpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:54:f9:c2:50:9b:00:3d:11:e4:db:74:23:a2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Nov 5 04:00:28 2025 GMT
Not After : Nov 6 04:00:28 2025 GMT
Subject: CN=95e94b926fc3db45880db8a6f47a14238c45bddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:93:68:a6:6e:c6:23:89:d2:6a:61:7b:27:
1c:35:d9:cb:7c:15:78:49:8a:e8:04:56:85:d8:68:
f0:30:3b:ed:76:93:8a:16:5b:52:4b:8f:04:c4:e3:
ef:27:d9:64:65:07:9e:b0:bb:5b:93:8a:74:c5:3f:
45:98:9b:5a:c6:34:27:5f:86:1e:09:15:bc:67:90:
bb:b9:19:5e:a3:08:e0:9c:b9:81:ef:7d:a2:92:db:
ab:ee:11:5d:59:b3:f7:85:44:59:7d:c0:8e:4b:42:
55:14:c1:29:1e:5b:61:67:c5:30:42:c8:a1:be:65:
bf:d8:4e:ea:7f:b1:d6:11:56:06:bb:1d:dd:fe:07:
55:1d:2f:5a:82:63:b5:0c:c2:0f:81:aa:48:5e:2d:
d2:d8:d1:9b:c4:d7:79:e6:5d:64:e8:75:29:d2:2e:
c8:98:67:6f:10:83:c6:c1:4b:89:49:60:c9:a5:54:
aa:2c:65:e0:a3:00:2f:90:b2:7b:c9:9e:cf:0f:e1:
68:2c:9b:7f:37:4b:01:20:6e:c9:b9:da:d7:3e:f5:
52:c7:d1:12:ed:d8:33:64:0c:df:98:59:f7:af:b2:
8b:60:6a:fc:9c:bf:bf:0f:06:19:30:d1:ef:cc:64:
e6:2e:65:30:08:cc:fa:39:fe:83:12:37:d3:b7:7f:
3e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E9:4B:92:6F:C3:DB:45:88:0D:B8:A6:F4:7A:14:23:8C:45:BD:DB
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2a:a4:2a:bb:9f:53:a8:06:56:8a:12:11:ae:d0:28:a2:da:
d8:70:1f:82:96:0c:1d:43:40:47:83:d1:b6:a1:ff:74:ef:3b:
1f:0b:33:d4:5b:68:2e:e2:f0:fe:18:0e:c1:74:e1:c9:9c:1c:
d7:2d:b0:ea:7e:11:45:6d:1b:82:80:96:a5:c9:03:37:84:a0:
53:a0:df:c7:43:b0:dd:d1:28:2a:ed:8e:e1:98:ad:76:20:3d:
b0:38:a0:4b:3e:e9:76:a0:f4:ac:be:b3:36:74:e5:de:6b:b6:
2c:18:e2:ae:1b:3f:2b:aa:fe:83:e8:ea:82:38:82:dc:74:ae:
d5:f6:5a:53:bb:4f:d8:b2:e1:2c:70:7d:12:eb:ca:de:a5:22:
22:02:88:9b:ea:5a:00:6e:00:d2:41:8f:d0:35:f6:c6:f9:da:
44:ce:7a:ec:f7:40:ba:3c:8e:5b:c2:b2:2f:e4:7b:b4:b5:55:
dd:f5:f0:f8:9f:67:2c:23:01:f9:bb:42:3d:ad:90:27:41:bd:
92:43:0f:eb:9d:76:bd:a2:26:9e:62:78:ec:22:c7:5e:99:73:
f3:7c:56:ba:77:f9:7e:29:a0:d5:0e:b3:7a:9c:9d:55:1f:98:
fa:12:66:2d:37:28:46:d0:8c:2b:c1:e2:ab:a2:07:9b:02:06:
95:c3:f7:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:20:30 2025 by rpki-client