Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
File: zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft (raw, json)
Hash identifier: HKpLW2t+NA1SWtd7uonP5N4W4QEyvdaQI6XEQvovs+0=
Subject key identifier: 03:63:BE:51:D0:DC:64:E1:B7:68:C2:8F:18:B4:3E:0C:40:B1:EE:11
Authority key identifier: CE:42:B4:38:5E:57:72:F5:1D:58:8E:2B:B7:21:9A:12:23:99:58:7A
Certificate issuer: /CN=ce42b4385e5772f51d588e2bb7219a122399587a
Certificate serial: 019A4D73B95CEED886B51431BA43CE40237E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
Manifest number: 0B30
Signing time: Tue 04 Nov 2025 06:00:20 +0000
Manifest this update: Tue 04 Nov 2025 06:00:20 +0000
Manifest next update: Wed 05 Nov 2025 06:00:20 +0000
Files and hashes: 1: zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl (hash: 5BlhRwtd5KcddBYxVhrYdVHmHq2oLuk1tjVO71z/1Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:b9:5c:ee:d8:86:b5:14:31:ba:43:ce:40:23:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce42b4385e5772f51d588e2bb7219a122399587a
Validity
Not Before: Nov 4 06:00:20 2025 GMT
Not After : Nov 5 06:00:20 2025 GMT
Subject: CN=0363be51d0dc64e1b768c28f18b43e0c40b1ee11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9a:fa:b3:64:b1:ca:c9:19:5f:9c:7c:dc:aa:
28:e5:e1:34:db:6e:e2:f2:11:7c:4b:b8:83:34:ff:
cf:1f:6b:8b:4d:90:d7:4a:7c:b3:63:fb:9c:36:75:
8e:3c:8c:8f:94:ec:89:0b:a3:ac:77:5e:4d:49:08:
b2:f6:f3:e6:a9:2b:20:de:0a:b0:d7:1d:b1:53:d4:
90:1d:85:0a:5b:e5:e1:8f:a1:19:14:d1:ab:48:ea:
47:3b:17:39:98:4c:63:2f:7e:a0:3d:da:f3:39:c5:
54:70:a3:96:76:40:4c:41:18:15:83:f1:af:76:3e:
be:a3:11:31:bd:5b:a9:42:57:08:81:6f:ae:35:54:
8b:8d:d1:2f:da:bd:2e:34:17:36:d0:0b:76:58:a1:
31:d1:37:36:e2:ba:c8:00:9a:f0:3a:0d:ea:ab:7b:
ec:b1:f9:fd:3c:a8:a7:ac:78:4f:69:63:9d:44:60:
78:b3:8e:27:a6:b3:e6:5d:cb:67:c6:76:2a:35:2b:
0f:33:11:6b:00:b9:d0:05:e4:5b:28:08:cf:5a:36:
5f:9d:22:0a:c9:f9:d7:8d:43:cf:90:37:dd:d0:43:
bf:71:b2:23:51:6b:5c:0f:ba:bc:c4:50:63:05:ad:
98:1c:76:8f:ca:fa:99:35:66:ec:a5:a4:12:4c:e9:
3d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:63:BE:51:D0:DC:64:E1:B7:68:C2:8F:18:B4:3E:0C:40:B1:EE:11
X509v3 Authority Key Identifier:
keyid:CE:42:B4:38:5E:57:72:F5:1D:58:8E:2B:B7:21:9A:12:23:99:58:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:f2:c2:3b:18:9f:2d:7a:90:38:cc:d0:32:6c:2d:f1:94:9c:
9f:02:e3:72:e2:5d:58:ce:69:54:df:23:85:4f:ba:09:7f:aa:
18:79:3d:5a:55:a4:cf:4c:45:e6:6d:57:c1:98:fd:8c:0c:21:
41:bd:0c:d5:6f:83:90:3d:c9:8f:7c:5d:07:10:48:cb:01:f4:
7b:d1:09:b1:dc:af:b7:53:e0:bb:e7:8e:8a:0d:f0:2d:96:90:
c6:36:a0:13:f6:b6:3d:3d:97:56:d3:c8:ff:d0:ee:25:ba:8c:
5a:28:ea:de:32:ce:08:17:5e:2e:3e:28:e3:86:94:d7:bd:6b:
ec:83:46:18:45:fb:30:5c:dc:d0:a1:6c:0a:c2:25:e0:96:84:
0a:2b:ac:9c:f7:bb:dd:49:e5:87:c0:b4:d7:bb:47:58:c1:b3:
46:a7:ee:c3:bd:df:67:2b:b5:37:1d:da:bd:72:14:78:ac:f6:
35:e8:19:91:b3:d6:c1:3a:c1:5d:5f:e3:a7:71:e0:6f:59:57:
dd:09:b3:d1:03:9f:a0:8a:61:74:ce:e8:de:ef:26:d2:25:32:
45:33:83:9c:d0:af:3e:b0:c8:4d:39:b0:b2:d6:9b:20:49:78:
1a:19:b9:29:fd:bf:a6:9a:e0:ee:14:f3:d8:cf:cc:79:36:05:
bf:5f:31:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:50:57 2025 by rpki-client