Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: pOTiCdf4qqKeQhBIF82jBVu09314D5NOssdlQFeDeQU=
Subject key identifier: 92:F9:E9:9D:F4:EE:41:44:9C:7B:C5:60:66:3D:84:39:CD:6E:7C:70
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019A18E1D125F5071189BF47FDC2E97F245A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0DDB
Signing time: Sat 25 Oct 2025 01:00:43 +0000
Manifest this update: Sat 25 Oct 2025 01:00:43 +0000
Manifest next update: Sun 26 Oct 2025 01:00:43 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: PXpEkFsotzV8AiACz/DsnzAnKHoOkmkOC7KpouIk3Eo=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:e1:d1:25:f5:07:11:89:bf:47:fd:c2:e9:7f:24:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Oct 25 01:00:43 2025 GMT
Not After : Oct 26 01:00:43 2025 GMT
Subject: CN=92f9e99df4ee41449c7bc560663d8439cd6e7c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fb:28:db:79:4d:2a:c7:55:f2:b6:32:ce:11:
fa:86:c4:00:77:1f:75:8a:7c:0e:e3:71:3c:a0:50:
44:2b:fa:cc:ac:da:5e:d0:22:a5:57:40:8d:7c:6e:
89:a3:76:86:5f:96:2e:c1:50:62:03:0b:12:7c:65:
b3:2b:52:96:43:46:96:ca:9b:75:30:71:85:6d:ba:
07:f1:cf:19:40:9a:4c:56:07:6c:b0:60:fd:a8:9c:
6e:56:19:aa:4f:26:12:1d:ed:bc:ab:56:ca:d4:53:
30:fa:42:27:ab:6a:53:1e:3e:f9:5c:75:ae:9c:f1:
41:4a:a6:db:21:ac:97:ba:31:1d:f3:81:ea:12:0a:
a4:fb:3f:bc:34:cd:35:6a:b7:a4:83:87:6f:fb:e7:
8a:65:e9:b8:61:c3:85:40:4d:d5:ea:ed:01:1d:5b:
bc:34:b7:f5:ed:d1:b2:17:62:90:4b:22:ab:74:bb:
ea:ff:83:6a:e9:99:e8:2c:41:49:8c:6e:08:98:09:
da:f6:63:3c:14:ff:b1:e9:a1:38:86:53:19:27:3c:
d7:f7:d7:f7:49:e7:fa:12:de:6d:ad:9a:70:27:03:
7c:42:7c:ba:f3:14:ab:2a:1b:2b:fa:18:c6:87:99:
85:64:8d:59:05:06:74:5f:0b:1f:27:05:72:90:c1:
11:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F9:E9:9D:F4:EE:41:44:9C:7B:C5:60:66:3D:84:39:CD:6E:7C:70
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:fa:a1:ab:db:b4:36:ca:cb:b5:d8:53:70:f6:13:8c:41:ec:
cb:8b:c7:7c:c7:66:24:98:64:e6:b5:ff:1c:6e:df:e2:88:19:
71:85:6a:03:02:df:67:3f:ea:3a:68:b2:31:84:57:a0:e3:02:
6f:47:68:86:c6:e5:d7:32:ab:1c:fb:be:d3:98:93:0a:6b:38:
14:8e:5e:24:75:5e:50:26:0e:10:ff:e7:f3:12:90:8f:05:83:
da:7e:ee:f6:21:81:c4:95:5b:53:77:0c:52:51:ec:f8:4c:9b:
c5:32:7c:28:85:b6:3f:dc:44:9e:c7:df:f8:99:19:fd:57:c8:
1d:f2:b2:8d:5e:32:61:03:16:78:21:a3:e5:35:be:21:aa:ae:
58:6d:ad:c4:ea:5b:90:71:c4:34:3c:7a:8f:59:c3:86:50:76:
c5:ea:02:35:2a:04:40:81:89:14:73:b2:f8:0d:b6:61:a5:a8:
21:05:0b:03:4e:2a:27:1e:c5:cb:da:e4:0d:ba:fe:57:56:ab:
eb:d3:d0:c9:d9:63:c4:36:b9:72:06:77:ec:53:54:09:34:f0:
76:90:ea:63:75:77:fa:bf:ac:c7:8b:47:31:06:28:c0:0b:cd:
c4:e4:02:9d:83:a4:3b:a1:cb:be:0c:af:8c:ef:64:b8:78:59:
f5:66:1b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 08:56:33 2025 by rpki-client