Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: j3MqUR/KvwZhfWVzoPwnL7Stize9wrsTErznO1ts9Cw=
Subject key identifier: 02:2E:DA:4B:B1:56:15:55:C4:A9:1C:C4:54:E3:72:32:B7:59:F6:04
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019A4EF4180E13FBB9328E224599E7923180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 13:00:10 +0000
Manifest this update: Tue 04 Nov 2025 13:00:10 +0000
Manifest next update: Wed 05 Nov 2025 13:00:10 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: MnJ4Y9NfJKZTNHijnBVtyiHZukJf0PRQ3gbtvAIGUL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:18:0e:13:fb:b9:32:8e:22:45:99:e7:92:31:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Nov 4 13:00:10 2025 GMT
Not After : Nov 5 13:00:10 2025 GMT
Subject: CN=022eda4bb1561555c4a91cc454e37232b759f604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:c1:5d:a3:4e:97:b1:4e:f4:40:a5:84:e7:a1:
26:33:bc:8d:bb:98:2b:41:e1:6b:30:0e:3f:20:32:
cf:f6:70:c2:aa:33:1f:3a:36:4f:70:6a:86:36:60:
db:30:0b:ce:c4:54:29:0d:a8:21:94:59:a1:0e:e3:
8e:fa:9b:f0:4e:fd:1a:56:42:51:d1:41:04:4f:09:
6c:c0:a4:53:b6:d0:8a:79:aa:45:c9:36:b2:a3:e0:
b2:e8:1b:c8:95:32:d2:b2:39:eb:2c:bd:7a:d9:00:
72:b1:59:c0:3a:0f:66:56:22:fb:2d:32:0d:b6:ed:
6f:ba:ee:64:1e:d3:e8:7e:27:7c:0d:b4:3d:e2:a3:
27:47:66:d9:16:60:f7:ed:80:a0:e5:ae:5d:29:b5:
da:9b:04:a3:5e:5b:0a:d1:70:5a:20:28:f8:02:bc:
d0:7d:9e:14:48:4c:50:f1:40:fe:55:0d:55:fc:6f:
46:90:11:d8:1f:9f:f2:cf:58:73:c9:c3:e3:9e:06:
b7:d5:49:7f:38:bd:bd:77:a3:c1:b4:51:1f:cb:14:
94:66:07:a0:61:86:96:a2:df:f0:c2:4f:47:74:89:
69:cd:b0:66:9f:30:b1:c5:c3:20:89:63:ac:7c:b7:
5f:5f:2d:fd:80:d5:71:d2:62:17:7d:60:6c:f0:6d:
d7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2E:DA:4B:B1:56:15:55:C4:A9:1C:C4:54:E3:72:32:B7:59:F6:04
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f3:b7:e8:68:a3:89:bb:6f:8f:cd:f1:ea:28:34:58:7e:7d:
7d:8e:08:6c:e1:92:ca:bb:33:6b:26:60:43:56:05:fe:4f:2b:
94:14:27:99:66:01:4f:d0:6b:1d:cd:39:fc:e6:c5:86:07:2a:
36:7b:ea:7d:01:42:c1:4b:94:d5:50:26:ef:e9:55:95:16:8e:
44:12:fe:1a:f4:2c:7f:ec:f2:49:d2:9e:6f:84:b4:47:c1:2b:
4a:8e:14:52:bb:04:81:9e:8f:78:41:ee:f1:f6:66:b2:71:5d:
07:67:9e:89:51:50:f9:4e:14:6d:f1:f2:73:1b:9e:5b:8a:f2:
0a:46:9f:99:5b:1c:12:6c:50:bc:3f:e4:8e:8e:2d:33:8f:d2:
0f:96:7a:e0:d2:a9:9c:a9:99:1d:bb:10:3b:e5:6d:3a:b6:09:
41:a9:4f:f2:e7:92:4f:72:fd:52:43:0c:11:ea:1a:f3:1f:ee:
f4:58:c5:94:20:3c:22:55:b4:13:16:3b:3c:1f:84:b8:f6:70:
bb:8a:ba:51:31:5f:63:07:50:2b:95:3d:1a:9e:d3:6e:44:1e:
8e:25:01:f2:ef:69:c9:c1:fc:be:49:d6:0a:50:15:fd:b0:6d:
ed:c7:6b:78:46:84:17:05:54:d4:c8:c9:aa:d8:ac:da:4f:57:
fb:22:45:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:42 2025 by rpki-client