Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: 2NNIGE+dYj9R1BMJ/bnIs1s8V2YICO4AVHO+Axt2jns=
Subject key identifier: CD:24:01:15:1E:EB:5F:5E:73:96:63:26:07:48:70:47:46:86:E8:B4
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 019A4F620ED9E71CD51D98736689A40E3A8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 0425
Signing time: Tue 04 Nov 2025 15:00:17 +0000
Manifest this update: Tue 04 Nov 2025 15:00:17 +0000
Manifest next update: Wed 05 Nov 2025 15:00:17 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: eoyHJy630gswyvRNmeK7V1Pw//MxuT7tAZXpM3Wffew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:0e:d9:e7:1c:d5:1d:98:73:66:89:a4:0e:3a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Nov 4 15:00:17 2025 GMT
Not After : Nov 5 15:00:17 2025 GMT
Subject: CN=cd2401151eeb5f5e73966326074870474686e8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ae:38:da:6c:45:eb:c4:d2:4a:ed:ee:2f:3a:
2e:44:4a:b9:b4:3a:f4:ab:c7:db:90:f9:4e:e1:74:
f1:a9:aa:c1:6f:9e:27:7d:06:30:65:d9:fe:02:8a:
6f:e8:de:1f:8b:2d:5b:6c:f4:53:88:90:63:b1:8e:
f2:06:9e:e2:bf:db:ac:3d:0a:b1:6d:22:90:b6:7e:
61:be:83:11:f3:c8:94:90:30:b5:53:4c:40:0b:45:
d5:0d:4f:31:71:c7:aa:d0:9f:9a:53:91:43:9e:db:
0f:5e:80:07:74:3f:99:69:30:d2:b3:26:aa:3a:70:
68:b5:cc:ec:12:7c:1e:e4:e6:b8:55:ae:3f:e1:3c:
9f:d5:55:02:8f:61:97:cf:2e:65:58:97:f4:13:88:
d5:0c:3c:2a:16:01:58:77:70:44:42:31:eb:18:c1:
47:f2:0a:97:a8:d9:2f:5a:21:f8:96:cd:3d:eb:81:
34:a3:4a:fc:0b:68:bd:c8:9e:85:da:65:e0:73:99:
1f:d3:10:08:0d:24:ed:74:a4:b2:2a:6d:8e:2d:d5:
83:54:5a:28:8f:c3:4d:9c:4d:e6:46:1d:e9:77:29:
21:b6:a8:bf:60:ce:62:28:89:41:fc:55:3c:3c:2f:
b7:27:b1:95:c6:ac:e2:c9:19:e4:97:53:d8:7f:b4:
bf:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:24:01:15:1E:EB:5F:5E:73:96:63:26:07:48:70:47:46:86:E8:B4
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5d:78:a5:e4:a1:96:d4:77:be:d7:07:9c:d9:3c:c5:ba:38:
19:5f:bb:e7:47:2d:16:c2:f8:d8:9b:e3:ea:4d:37:7d:7e:ba:
41:06:45:f6:fe:66:5f:23:2c:48:fb:6f:a2:28:06:29:63:d4:
89:69:ae:1e:b0:5f:76:f0:1f:1a:80:43:79:8f:2b:1d:e4:01:
ee:03:ac:95:9f:8c:91:8a:6f:72:1c:98:15:3d:8f:a7:14:6c:
4e:43:fb:47:e2:92:a2:96:80:49:06:5c:40:94:0e:5a:95:2b:
6e:36:6a:a8:df:45:e5:93:6b:1d:ab:55:6d:82:a2:bc:76:b5:
5b:94:c0:b9:62:7f:0b:a9:10:c8:56:a7:14:d2:91:d7:26:b4:
bd:c7:56:65:34:44:e5:83:b1:17:6a:2a:18:db:bd:8e:75:3d:
13:a2:19:4f:ed:82:42:7f:e7:26:23:e6:fc:af:3e:fe:7f:1a:
8d:51:3b:2e:e3:16:11:28:80:75:df:c7:72:9c:4b:8b:d7:f3:
08:64:55:2f:6b:99:29:b2:9b:64:49:04:25:3a:ef:05:60:1f:
70:8c:ff:2d:80:a1:cc:e1:a4:4d:8a:5d:12:79:6e:b2:e3:c5:
4f:3b:b4:3f:b2:f7:ef:95:3f:59:c7:9e:08:69:55:61:d0:2e:
1f:5a:18:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:21:26 2025 by rpki-client