Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: 5d3PCU8SquTYO8nzmSWwGcmXgjDLPZp+bU1+zFkcpOU=
Subject key identifier: A3:2D:F3:10:F7:CD:0A:86:EA:33:2B:A3:3C:63:8A:EC:F6:33:AF:55
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019A4EF4C2FE258823D79CD486881A3FC205
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0DF7
Signing time: Tue 04 Nov 2025 13:00:54 +0000
Manifest this update: Tue 04 Nov 2025 13:00:54 +0000
Manifest next update: Wed 05 Nov 2025 13:00:54 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: 26sugPDH/U8xs9BAt7m4U02rx736MYBS9F4gf8cb444=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c2:fe:25:88:23:d7:9c:d4:86:88:1a:3f:c2:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Nov 4 13:00:54 2025 GMT
Not After : Nov 5 13:00:54 2025 GMT
Subject: CN=a32df310f7cd0a86ea332ba33c638aecf633af55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fe:a2:39:88:69:2c:61:8d:e1:18:ad:bb:8a:
1e:4a:ce:2a:14:f9:9c:c5:3b:10:02:1e:b0:43:52:
44:e1:45:9b:77:ab:aa:c2:53:37:96:b8:19:2f:f4:
59:3f:a0:60:19:7e:8d:51:d1:36:12:21:90:1f:bd:
d1:44:4f:ea:51:f7:a0:5e:69:74:b1:76:ad:a8:37:
0a:b6:08:4c:84:a9:49:5b:40:27:aa:c2:0b:86:16:
ff:bb:cb:c4:77:f8:bf:bc:a8:15:b9:7f:d5:32:58:
74:65:28:f4:35:d4:18:0c:74:b2:df:78:33:fc:29:
f0:a2:97:9e:66:35:79:ee:93:09:7c:38:0b:6e:dc:
fb:ae:30:1b:0f:ef:6b:fe:e8:88:0c:00:29:b5:7c:
bc:4f:f1:e1:57:07:af:16:30:f9:23:96:36:f2:a8:
e5:71:d5:fb:72:32:35:d7:b8:80:93:74:15:67:22:
13:15:33:10:54:cc:5e:58:3f:c4:c0:05:f2:e0:dc:
d4:4d:89:d2:01:71:d1:e9:99:43:c5:b0:25:67:08:
58:00:d4:0e:e0:9e:be:e8:19:3f:5b:4b:ea:bf:7e:
fd:7e:3e:d4:5c:61:88:b2:fa:85:61:9c:73:d1:05:
e3:44:9f:3b:8a:8d:4d:3c:96:b0:2b:7e:57:3b:6d:
3c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2D:F3:10:F7:CD:0A:86:EA:33:2B:A3:3C:63:8A:EC:F6:33:AF:55
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8d:c1:12:7c:ff:e0:d0:7e:3e:78:6a:5c:a0:a5:2e:cd:93:
f6:a4:25:c9:2c:61:a3:a7:98:6e:42:1a:2c:74:05:64:24:10:
dc:68:1a:0c:99:56:d1:84:c3:21:8a:96:21:a9:09:9a:09:31:
07:46:f9:a3:38:a5:27:76:ba:c6:51:fe:fa:aa:b1:83:05:a5:
ca:73:be:a2:2a:f9:18:a8:dc:af:52:6f:c0:03:fc:d4:02:92:
f4:4b:27:fa:3a:e2:f0:5d:d6:46:e6:46:7f:99:f1:94:c3:7f:
6a:a2:a6:8b:fb:48:c0:e6:3b:06:0a:58:26:01:a9:69:c7:4d:
ef:a2:9e:54:97:ee:d8:f3:c1:62:16:33:17:d3:8b:b3:ab:b9:
f7:69:54:19:56:15:b7:21:6a:d3:aa:bf:25:0a:13:b3:30:69:
c0:d8:65:0b:08:7d:f0:c7:6d:2f:b1:83:43:75:a4:25:ab:72:
85:49:39:e3:39:4a:d1:a5:c8:63:ab:97:44:e9:78:91:73:99:
b3:06:3c:70:16:3f:55:87:46:82:a3:4f:dc:21:f3:2b:6a:8c:
28:6e:ff:e5:97:56:25:8a:62:cc:7c:c2:12:b1:f8:21:57:c7:
ca:fc:9c:3e:f0:35:ee:2d:29:f8:53:78:6a:8b:4e:9a:e5:e3:
72:a9:97:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:35 2025 by rpki-client