Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json)
Hash identifier: Qq7DqnaBn7Hn7Amt5FFvcUzhIkdzF9WkzYrqvcpMBj0=
Subject key identifier: AB:CB:7D:89:49:10:98:4A:12:A8:9C:62:68:6B:CB:C3:14:97:7B:90
Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba
Certificate serial: 0199239FF9FFDA26CE3F271B7209307DC727
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
Manifest number: 0F1F
Signing time: Sun 07 Sep 2025 10:01:50 +0000
Manifest this update: Sun 07 Sep 2025 10:01:50 +0000
Manifest next update: Mon 08 Sep 2025 10:01:50 +0000
Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: rcI8Wejf1ut11I5U/XzJKJVVdPSRFc0uT3sYO6+0Lwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:f9:ff:da:26:ce:3f:27:1b:72:09:30:7d:c7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba
Validity
Not Before: Sep 7 10:01:50 2025 GMT
Not After : Sep 8 10:01:50 2025 GMT
Subject: CN=abcb7d894910984a12a89c62686bcbc314977b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:62:3f:83:b7:ae:d4:1a:05:7f:ea:7e:ff:a3:
5b:ba:79:89:95:6c:1c:fa:7e:d7:73:7b:0c:d7:bd:
7b:f0:9e:3e:9a:29:05:c6:db:c7:a5:a6:46:b8:1e:
e3:1a:08:43:a7:49:3f:32:13:dc:44:19:4b:6f:f4:
2c:58:7c:06:2a:2b:c3:ad:21:15:f9:e2:d8:ab:09:
53:d4:42:b5:19:f2:02:37:3c:62:ca:96:e2:b9:02:
51:90:6d:c6:00:f3:3d:c9:be:24:e8:96:19:eb:dd:
2a:b8:e1:b2:c6:24:d9:e2:ba:a2:e6:cc:ff:07:f8:
63:7c:b0:2a:41:0c:26:40:56:f5:aa:5d:37:95:fe:
15:b7:8c:49:6b:4a:3b:9a:c0:fa:9f:8d:1f:1d:89:
ed:e7:9e:a1:3a:dc:e0:06:14:31:f2:3d:84:5e:7b:
14:58:bf:e5:9a:73:88:41:f2:9c:67:dd:3c:13:eb:
12:a0:08:f6:31:e8:95:ff:6e:19:97:35:07:d5:de:
64:3d:0e:d6:56:c8:a5:6b:2c:e1:48:a3:3c:24:ab:
92:4e:ff:6d:f8:0d:4f:8c:87:3d:f5:ab:7f:38:da:
9e:70:07:f0:a8:c5:c7:84:d9:95:61:ce:30:f0:57:
cc:54:9d:43:2a:9d:cf:54:73:64:1a:6c:d8:27:27:
42:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CB:7D:89:49:10:98:4A:12:A8:9C:62:68:6B:CB:C3:14:97:7B:90
X509v3 Authority Key Identifier:
keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:fb:fc:24:a9:0b:7a:5e:d6:4e:ae:9d:6c:71:fd:fe:8b:71:
7a:d4:e7:0b:80:24:e5:96:2b:e6:81:10:92:f7:34:f3:93:cb:
a1:0e:7d:19:39:2b:b2:96:b6:e1:8c:6c:a2:24:10:29:fc:1e:
37:67:59:c4:48:10:5b:b0:3b:3e:45:3d:b9:49:56:d7:4b:04:
e1:b4:7c:4f:8a:58:57:ea:04:5b:77:ba:a1:bd:e5:1c:1a:f4:
97:a1:a3:c3:ca:b0:ef:18:04:82:d1:db:89:d8:09:78:c3:ae:
94:f6:c7:51:c5:33:86:40:7a:fd:d3:6b:0e:90:a8:25:e4:b2:
f1:49:95:17:d7:9c:aa:ad:17:8e:df:a4:f7:ea:cd:d3:dd:b2:
ef:4d:9b:e9:07:33:96:a7:ea:8f:1e:5c:f4:43:a1:d3:ff:60:
0b:42:60:99:cc:71:f6:9e:8e:fc:9a:f0:3a:e6:46:24:30:a5:
e9:c8:ff:cb:00:4c:34:a1:be:e9:c2:2e:90:ef:e2:07:fb:f4:
28:e4:78:f5:e5:68:30:60:1c:e1:3c:73:e8:3f:ca:67:a5:a5:
ff:e4:2d:21:02:e7:e0:cc:65:f3:2f:23:4f:e6:8c:b5:49:ac:
c2:67:d7:50:b6:ab:51:35:69:17:b1:b9:33:63:81:62:14:95:
43:81:46:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:45:15 2025 by rpki-client