Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: 8G/TkOvVJTEJ6ld05djwmIi1vpwijyiyiVyYtR3oz34=
Subject key identifier: 22:1A:04:98:CF:15:AE:D1:4B:78:C0:94:31:58:31:8F:63:4B:85:82
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 0198A04DD97B04ACC649CDEE6F6A969326CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0EDD
Signing time: Tue 12 Aug 2025 22:01:53 +0000
Manifest this update: Tue 12 Aug 2025 22:01:53 +0000
Manifest next update: Wed 13 Aug 2025 22:01:53 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: EN3iTYSmGgdbD+DjxLaR5ShNLqPn8VeAOPwsqlZ5CD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:d9:7b:04:ac:c6:49:cd:ee:6f:6a:96:93:26:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Aug 12 22:01:53 2025 GMT
Not After : Aug 13 22:01:53 2025 GMT
Subject: CN=221a0498cf15aed14b78c0943158318f634b8582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:79:34:73:96:7d:ac:6b:3f:d5:80:43:f9:
b2:38:49:29:2b:9c:5e:eb:da:3b:97:33:d4:2a:da:
94:18:04:87:23:61:55:fe:f8:fa:2c:9f:fa:62:02:
91:f8:e0:c5:1c:5a:b0:85:6a:44:0e:d5:37:4e:1b:
a1:87:05:40:95:2b:7e:76:dd:d0:8d:9f:91:5d:ae:
ae:fb:30:95:b9:33:ad:cc:b2:78:33:44:77:7d:2f:
99:96:52:d2:9c:1a:23:6c:1a:18:76:25:a7:96:62:
c5:b0:26:a9:83:58:81:c0:a8:c2:70:b5:18:47:cd:
7a:66:72:ce:22:ea:42:e1:a3:e4:fb:84:76:6d:4b:
c3:96:2c:d4:04:84:3a:36:42:bf:aa:87:0b:c4:91:
6c:ba:fc:c0:0b:bd:8e:0d:7e:42:bc:26:33:46:12:
40:d1:95:17:79:a6:30:93:f2:9f:e2:d3:0c:96:7d:
7c:22:77:e9:f0:a5:7e:a8:6a:61:40:0b:d6:b2:16:
4d:ea:dc:c0:0d:ad:f5:33:5c:68:e1:36:8d:16:aa:
9d:6c:3d:02:9e:3f:b2:16:be:07:a5:b6:6e:f8:65:
f7:9c:95:c8:ca:e4:15:79:7f:0d:14:ab:74:0e:bd:
de:8b:47:b4:48:8f:a9:50:9a:b8:e7:2a:10:79:bc:
98:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1A:04:98:CF:15:AE:D1:4B:78:C0:94:31:58:31:8F:63:4B:85:82
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:8d:c3:e1:a2:e6:9e:c6:f5:64:b0:9f:16:1f:ee:b6:94:45:
d5:f9:86:ee:79:af:7d:25:ae:d3:e4:17:65:9e:e1:ae:43:c5:
51:e8:de:86:7f:c5:d9:c0:29:65:52:6f:a9:16:02:4a:47:26:
03:da:47:de:22:c0:2e:d5:6e:af:4d:9d:87:ba:4d:32:7d:29:
10:1f:34:66:d0:e5:84:91:b2:9d:55:60:31:54:14:b1:b6:6d:
82:3c:83:d5:39:4b:97:ff:da:db:41:02:f3:9e:d2:b4:10:c4:
cd:a1:91:89:b4:e1:69:e0:11:0d:a2:3a:17:3f:2b:e9:58:0c:
9d:fc:7d:52:3a:9a:c5:b1:0b:56:02:c7:97:6d:06:c1:40:c0:
da:be:85:19:b9:ef:79:77:b5:6a:ea:3a:30:cd:2e:7b:83:46:
13:6f:db:24:c7:12:a5:e3:4f:21:34:5f:94:4f:e2:0c:a2:36:
18:b9:2c:19:6d:86:a9:c8:55:9c:8d:7e:27:d2:a7:54:b5:ea:
74:a0:16:46:40:cd:fc:42:6a:df:a5:1d:83:05:03:d3:85:1b:
fc:1c:7f:e9:69:c0:f8:04:7c:7a:9b:10:b3:b8:89:24:4f:20:
17:96:4d:52:8b:c5:01:7a:9b:75:1f:47:30:fc:2c:95:df:4d:
47:69:0f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:14 2025 by rpki-client