Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: yLmnnqL8BUFTae647WFE0FTkZTOrK3+03kFz7zkkW4E=
Subject key identifier: 12:6A:7F:50:44:69:E3:77:84:D3:D7:83:E5:71:EE:EC:0E:6E:B2:1D
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 019A725C85F5127DB202F8E659963D65BFC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 01DB
Signing time: Tue 11 Nov 2025 10:00:57 +0000
Manifest this update: Tue 11 Nov 2025 10:00:57 +0000
Manifest next update: Wed 12 Nov 2025 10:00:57 +0000
Files and hashes: 1: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: FZII4lJqbAgpMkv8VRlGlpMnmkjJXcaAltIFdwDWaqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:85:f5:12:7d:b2:02:f8:e6:59:96:3d:65:bf:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: Nov 11 10:00:57 2025 GMT
Not After : Nov 12 10:00:57 2025 GMT
Subject: CN=126a7f504469e37784d3d783e571eeec0e6eb21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:b0:f8:55:b0:e2:8b:cb:23:28:83:40:8b:
6e:52:04:ad:e0:45:0b:f8:33:96:c3:36:64:e6:8b:
26:71:90:98:0c:80:0c:5f:81:71:9b:d4:e2:e4:f7:
ea:a4:d1:0a:b3:38:6f:78:d5:7c:b4:a1:f4:17:3c:
8e:38:32:db:9b:fa:79:8e:05:7a:88:d2:b3:e3:f4:
ad:a2:e6:69:ff:01:98:81:b2:3e:5e:b6:d0:0f:ca:
43:1a:16:f0:9f:1b:88:e6:56:de:d6:64:3a:d3:4f:
5e:70:ec:09:11:e4:08:5d:0a:b3:be:c3:54:be:1a:
95:78:b0:b9:5f:40:50:3e:f3:9a:65:1c:9a:24:72:
66:05:ad:51:93:7f:6d:cb:2f:da:37:77:69:5e:19:
4e:c5:c6:72:24:61:ef:68:57:27:24:6d:82:4c:0d:
17:9d:7f:fc:57:e2:7b:be:12:b3:28:42:b7:1f:1b:
ce:20:23:f9:ee:9f:d1:86:ab:fa:c7:44:da:d1:98:
a3:4c:d4:89:6c:53:eb:f5:82:26:a2:bd:83:b6:01:
24:ea:ec:fa:9d:57:91:b7:c6:d2:d8:18:15:8d:87:
63:8f:bb:8e:26:b2:1f:2d:9d:fe:f5:98:40:d7:c3:
0d:27:db:6d:d1:19:a0:54:1a:7a:53:8a:cf:f1:d6:
56:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6A:7F:50:44:69:E3:77:84:D3:D7:83:E5:71:EE:EC:0E:6E:B2:1D
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:74:ee:d4:a2:c8:52:e5:38:fc:02:e4:7c:cd:f6:a6:5c:ad:
5f:6f:28:03:dd:34:54:82:c7:c8:4b:54:63:b4:d4:a7:04:c4:
b5:47:af:2c:16:6b:6b:09:f0:08:c4:b1:d1:6e:ab:4c:06:4e:
af:39:2d:48:0e:8c:63:7b:8f:8b:e4:65:6d:36:10:64:49:a3:
78:9a:e0:ed:dd:b6:7a:e5:b8:1b:07:19:28:20:74:0b:4e:92:
25:ee:89:1b:72:6d:c8:33:b7:ab:e5:b6:d1:61:6a:83:7e:32:
7a:3b:56:6e:07:09:60:10:32:23:20:74:13:d6:fc:55:cb:1a:
6c:07:1a:20:86:79:89:af:87:b5:cd:ab:a2:7a:e1:b4:bf:09:
23:1f:19:9b:76:9d:5a:90:4e:38:63:f1:8c:46:ea:df:34:19:
b0:5b:4b:0e:98:86:44:2b:ae:86:6b:5f:b6:dc:8d:cb:91:52:
d5:42:6f:f3:f2:99:94:b6:cf:43:24:9e:82:44:96:9c:58:47:
29:3d:cf:c2:25:22:22:2f:38:56:8d:ad:80:b8:7d:60:3e:01:
6f:21:65:e7:ec:3a:0c:42:46:29:19:db:77:91:63:8a:65:6d:
2b:2a:5c:6e:57:7e:01:bc:c0:ec:5d:34:ce:81:de:ee:bc:47:
d5:c6:be:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyXIX1En2yAvjmWZY9Zb/AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTZhOGViYjAxMTExOWIyZjY5NTMyN2ZiMTZlNTFmODg3
MDQ0NzkwHhcNMjUxMTExMTAwMDU3WhcNMjUxMTEyMTAwMDU3WjAzMTEwLwYDVQQD
EygxMjZhN2Y1MDQ0NjllMzc3ODRkM2Q3ODNlNTcxZWVlYzBlNmViMjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXqw+FWw4ovLIyiDQItuUgSt4EUL
+DOWwzZk5osmcZCYDIAMX4Fxm9Ti5PfqpNEKszhveNV8tKH0FzyOODLbm/p5jgV6
iNKz4/StouZp/wGYgbI+XrbQD8pDGhbwnxuI5lbe1mQ6009ecOwJEeQIXQqzvsNU
vhqVeLC5X0BQPvOaZRyaJHJmBa1Rk39tyy/aN3dpXhlOxcZyJGHvaFcnJG2CTA0X
nX/8V+J7vhKzKEK3HxvOICP57p/Rhqv6x0Ta0ZijTNSJbFPr9YImor2DtgEk6uz6
nVeRt8bS2BgVjYdjj7uOJrIfLZ3+9ZhA18MNJ9tt0RmgVBp6U4rP8dZWHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJqf1BEaeN3hNPXg+Vx7uwObrIdMB8GA1UdIwQY
MBaAFGYWqOuwERGbL2lTJ/sW5R+IcER5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9kY2Y0YTItYzM3NC00NTczLTk0MGEt
ZWQzZDI3MDU1MDIwLzEvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9kY2Y0YTItYzM3NC00NTczLTk0MGEtZWQzZDI3MDU1MDIw
LzEvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS3Tu1KLI
UuU4/ALkfM32plytX28oA900VILHyEtUY7TUpwTEtUevLBZrawnwCMSx0W6rTAZO
rzktSA6MY3uPi+RlbTYQZEmjeJrg7d22euW4GwcZKCB0C06SJe6JG3JtyDO3q+W2
0WFqg34yejtWbgcJYBAyIyB0E9b8VcsabAcaIIZ5ia+Htc2ronrhtL8JIx8Zm3ad
WpBOOGPxjEbq3zQZsFtLDpiGRCuuhmtfttyNy5FS1UJv8/KZlLbPQySegkSWnFhH
KT3PwiUiIi84Vo2tgLh9YD4BbyFl5+w6DEJGKRnbd5FjimVtKypcbld+AbzA7F00
zoHe7rxH1ca+ZA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:10 2025 by rpki-client