Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: BzHe9Gs3fIfU1VWjZ/PEBoTYboGmpmh652PEMQnZ/B4=
Subject key identifier: A3:BB:03:4F:D7:4B:19:DD:35:1E:CA:33:1A:17:D4:D7:8B:43:C1:B8
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 01991809EAE1C973454A6CA977A523F650B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 0E05
Signing time: Fri 05 Sep 2025 04:02:07 +0000
Manifest this update: Fri 05 Sep 2025 04:02:07 +0000
Manifest next update: Sat 06 Sep 2025 04:02:07 +0000
Files and hashes: 1: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: UNIU+L1Qss5HafaMS2KsJSa9eeX4B8gPVc+61+8+ZkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:ea:e1:c9:73:45:4a:6c:a9:77:a5:23:f6:50:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Sep 5 04:02:07 2025 GMT
Not After : Sep 6 04:02:07 2025 GMT
Subject: CN=a3bb034fd74b19dd351eca331a17d4d78b43c1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:cf:4d:f2:05:6c:fb:62:33:00:b1:a5:4c:
53:14:cc:55:e5:e2:fa:9d:84:33:0f:61:0f:bd:42:
c0:46:da:cb:3c:bd:90:71:46:ad:77:0d:6c:6f:d4:
a6:6a:e3:61:5e:3c:49:bf:04:a2:21:9d:16:36:72:
5a:78:64:b9:78:ea:14:23:f3:1c:d5:cf:3b:9a:d2:
b5:93:5a:55:68:79:71:99:eb:67:c9:51:af:5c:ee:
19:0e:14:b2:cb:01:91:73:03:4d:89:dc:ac:9e:ed:
f2:b6:73:c2:f1:54:2a:2d:70:95:8f:99:f9:f3:5a:
24:71:36:db:fd:1c:19:79:78:41:ff:0e:57:7f:e4:
9d:80:4d:f8:0a:cb:9d:0b:8c:b4:e5:d0:76:2b:a6:
63:44:a9:23:d3:d3:56:1b:d0:fb:6a:90:db:f7:45:
9c:37:88:d7:13:93:3b:d2:fd:12:b8:20:66:ed:b6:
e8:f4:5b:d6:d7:da:62:12:18:67:dd:1e:f1:93:8a:
de:28:4e:b0:bb:6f:06:3a:ad:76:eb:e9:bf:44:8c:
5b:b1:33:bd:fc:79:a8:7b:e9:a8:14:46:a1:22:4d:
3a:df:ba:6c:da:5a:ab:0e:e5:f2:6b:8f:da:dc:fb:
cb:92:ae:f9:94:34:44:5f:50:fe:02:e4:93:71:0e:
33:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BB:03:4F:D7:4B:19:DD:35:1E:CA:33:1A:17:D4:D7:8B:43:C1:B8
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:78:a6:ec:61:bc:21:c0:83:26:a7:a3:c9:77:00:4c:1c:34:
0c:4b:2c:a5:a3:19:4c:97:a1:e5:88:e5:f1:0a:cb:65:a2:63:
76:be:e1:64:ec:34:ee:08:7e:da:8b:c5:16:fd:aa:5c:fa:0b:
91:f5:b6:95:09:00:d5:93:5d:99:1b:90:55:34:e1:ae:19:76:
56:6e:92:f0:22:ad:51:81:d4:c7:7f:9a:6f:df:b6:f7:48:04:
e3:c6:75:79:5f:cb:ce:44:b0:be:31:8f:8b:c1:38:51:ec:8a:
af:2d:96:24:c8:fd:ef:88:a9:c3:13:98:2e:fd:2f:13:66:0c:
c1:b2:e4:56:dd:58:12:85:d0:0b:f4:3a:10:61:2f:ef:5e:2f:
2d:18:9b:8c:0d:d8:5d:45:d2:07:45:ac:c0:0c:42:80:5c:14:
9b:d5:cb:fc:0e:84:b3:a7:7a:62:88:c7:b1:8d:1f:c6:20:cd:
9a:f0:ce:02:72:a6:1d:16:a5:7d:6e:ec:62:9a:ba:c0:f9:4c:
a1:86:41:58:8e:b8:94:f5:00:0a:56:73:7f:4c:51:02:cb:bc:
81:2c:d8:3a:6c:ab:f7:de:d0:2e:af:3c:d6:6f:f5:68:fc:d5:
9c:5b:ce:e0:c8:6f:2d:0f:94:58:e5:06:c8:af:c6:6e:99:b2:
bc:fb:11:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 09:54:52 2025 by rpki-client