Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
File: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft (raw, json)
Hash identifier: 9/4XLS35lzbk/iAygZa5qCVR+ffUKsI+IlZAanMlcgc=
Subject key identifier: 12:84:05:10:47:BE:64:3E:C3:8F:7F:36:FE:97:43:E0:BB:B6:EC:18
Authority key identifier: D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64
Certificate issuer: /CN=d99becd088794b11daf34c7f54e59f6939fe9864
Certificate serial: 019A70DC518D6F5DEAA117B0A1CCF5847EFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
Manifest number: 043C
Signing time: Tue 11 Nov 2025 03:01:18 +0000
Manifest this update: Tue 11 Nov 2025 03:01:18 +0000
Manifest next update: Wed 12 Nov 2025 03:01:18 +0000
Files and hashes: 1: 2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl (hash: eKkt79Mp7DQYSOZQJH2L6Ki1NBkncOgc5Bv+kUD0g2M=)
2: P6mLuYTWcn0KuLmD43cJ982GF44.roa (hash: lthkyf0qk/Tj3D6L/66lHDSOVo0evf5q6TD/uKiHGiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:51:8d:6f:5d:ea:a1:17:b0:a1:cc:f5:84:7e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99becd088794b11daf34c7f54e59f6939fe9864
Validity
Not Before: Nov 11 03:01:18 2025 GMT
Not After : Nov 12 03:01:18 2025 GMT
Subject: CN=1284051047be643ec38f7f36fe9743e0bbb6ec18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:80:62:c0:46:a8:86:82:c2:eb:cd:26:da:38:
3e:06:58:82:47:09:f9:1f:b9:24:55:34:d1:e7:ec:
10:d6:5c:40:a5:b0:cb:00:d0:ce:05:cf:2c:0d:c9:
f0:4c:14:a1:28:b5:22:a2:0f:d1:cd:9c:f7:09:09:
94:f8:cf:a0:fa:f0:04:b3:0e:84:c0:61:87:a4:64:
5e:86:eb:e8:2b:4a:6a:91:ed:a0:05:67:d9:65:12:
77:ae:6a:57:2b:3e:e8:54:c4:4d:53:44:ad:ee:24:
d2:0e:09:d6:09:4a:c5:d0:75:66:7d:c4:f0:b7:21:
7c:f1:e0:6e:ec:16:f0:72:62:5b:df:31:2d:b9:64:
39:4f:cf:94:a5:2b:f0:c5:2d:25:44:00:b8:f0:44:
21:08:11:67:5b:96:56:73:30:17:14:28:96:4b:60:
27:72:6e:d1:36:f9:c6:0d:a2:c6:ac:46:e0:c0:d3:
36:90:f5:bf:ff:4f:43:17:4f:82:60:57:0d:f2:35:
a8:ec:c4:74:65:79:03:e4:65:84:90:b0:43:9d:22:
a1:63:fb:94:40:e4:27:a4:28:4b:e1:e9:2a:5a:1b:
47:79:be:fb:9c:31:91:7d:c5:48:14:da:27:57:1d:
0d:ec:45:a3:4e:43:68:51:06:3e:39:47:50:5a:9f:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:84:05:10:47:BE:64:3E:C3:8F:7F:36:FE:97:43:E0:BB:B6:EC:18
X509v3 Authority Key Identifier:
keyid:D9:9B:EC:D0:88:79:4B:11:DA:F3:4C:7F:54:E5:9F:69:39:FE:98:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/94aab2-b41e-460e-9fcb-242b58140e37/1/2Zvs0Ih5SxHa80x_VOWfaTn-mGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:d4:42:88:27:ec:2a:0b:85:df:8d:2c:d6:be:e6:57:40:43:
6f:c6:71:c2:87:29:d4:84:4f:69:ec:ae:62:41:b4:cc:a4:ff:
bd:5d:b3:73:2a:5c:79:d8:c9:ea:ff:59:eb:b8:45:94:5e:26:
9f:89:b6:65:d4:9b:fe:2e:72:30:c3:03:b5:14:ab:fb:5a:64:
8a:1d:69:a9:e7:3b:8c:1d:df:92:ac:8a:68:eb:35:89:f1:a4:
34:b5:85:88:e6:f7:ec:5c:23:48:38:e4:76:3b:26:cf:91:80:
22:56:a0:8f:fc:75:56:a3:30:4f:28:19:0c:39:9a:ce:3d:2b:
14:b2:25:86:be:a1:3e:0c:91:b0:31:20:d0:74:e2:15:2d:75:
09:c2:6f:bb:50:00:5c:38:96:67:9d:09:f2:db:1e:84:56:a9:
09:8f:91:57:4f:0f:5c:e7:92:aa:33:5b:d9:c7:fe:aa:f9:95:
9b:71:af:37:16:08:4f:c6:8c:9e:fd:53:c5:34:3c:0b:ef:0b:
21:18:63:3a:67:e6:25:0c:c9:dd:60:49:d1:c6:53:03:8b:59:
e8:46:9b:cd:40:40:87:47:fa:02:c3:73:04:3d:72:0e:36:a2:
6d:b7:ae:12:d9:a7:25:02:a4:97:cf:c7:44:45:7f:c4:61:c7:
51:70:4d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:21 2025 by rpki-client