Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
File: zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json)
Hash identifier: O6EkCqXfA3RCqPOODn65Fww6pJlHesGAxEbkxmmKgzw=
Subject key identifier: 39:32:1C:A4:57:DE:08:A0:10:3B:8B:EE:3A:7F:DD:7A:D9:5A:F7:AA
Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
Certificate issuer: /CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Certificate serial: 019A71B8FB9A87D8B81271A6B99379C225BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
Manifest number: 02B3
Signing time: Tue 11 Nov 2025 07:02:19 +0000
Manifest this update: Tue 11 Nov 2025 07:02:19 +0000
Manifest next update: Wed 12 Nov 2025 07:02:19 +0000
Files and hashes: 1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: 5G1/OetUD/uBWLxcL8tR+oTFiVodjqLmRcYgSTsoJNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:fb:9a:87:d8:b8:12:71:a6:b9:93:79:c2:25:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Validity
Not Before: Nov 11 07:02:19 2025 GMT
Not After : Nov 12 07:02:19 2025 GMT
Subject: CN=39321ca457de08a0103b8bee3a7fdd7ad95af7aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8b:41:79:9c:a5:b8:7f:05:f9:79:e4:84:9c:
48:0c:a3:a5:89:f9:63:d1:14:d0:23:35:b8:ef:0d:
f4:37:5f:c6:f7:29:7f:37:77:fa:f8:ed:5c:17:e9:
d2:65:1d:44:1e:1a:6d:78:74:63:26:66:8e:15:ab:
85:23:56:f2:75:a8:31:2e:cd:b4:d4:01:b1:16:0a:
bb:21:a4:e5:32:e0:51:1a:0a:2c:fb:b3:8f:ea:aa:
c1:32:83:7f:ee:b6:02:17:07:62:ab:1b:64:e0:7a:
31:6e:13:5f:ab:39:d5:83:2c:7a:50:56:e6:03:a5:
1a:1b:3b:bc:f9:fa:cf:0c:e6:c9:d9:09:ed:cd:bd:
43:24:92:e6:b9:fa:f8:38:0f:6a:b6:c8:1d:05:22:
1a:89:a4:14:30:8c:22:b1:db:9d:e3:d8:8a:fa:29:
31:ef:e8:cd:83:40:f2:e1:e4:38:43:57:2a:e5:17:
79:82:f1:f8:14:22:ab:68:db:7d:0c:4b:c9:03:ac:
21:0c:af:b7:40:65:44:2d:b9:32:12:1c:95:5a:9e:
e4:33:2c:63:0e:6a:65:97:81:f9:1c:5a:4f:9c:af:
2b:e1:8f:0d:7a:fe:16:6d:21:a2:5f:98:15:9e:86:
52:d8:08:7f:e4:42:ed:e3:fb:93:ce:f1:86:c7:2c:
7b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:32:1C:A4:57:DE:08:A0:10:3B:8B:EE:3A:7F:DD:7A:D9:5A:F7:AA
X509v3 Authority Key Identifier:
keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:70:6a:fb:b3:5f:58:06:55:0e:94:99:f7:30:42:33:d1:58:
d0:91:67:cb:b2:e4:a8:0a:24:ad:b9:e2:fd:51:69:40:bd:4e:
98:51:af:c5:38:d1:94:84:03:fb:ea:37:a1:5c:37:10:d3:d7:
b7:63:5b:b3:de:19:88:da:f4:04:4b:3a:21:ce:18:72:0a:1c:
e9:d0:34:18:7d:f8:48:f8:cf:17:7b:8f:50:bc:cd:04:b2:4c:
46:e5:01:18:9e:ad:ac:6f:d8:27:02:80:8a:dd:d0:a0:6a:8e:
d6:6e:cf:a8:42:40:8a:0b:0f:98:c4:15:9c:46:91:f5:0d:9f:
55:6b:17:4a:22:6c:3c:5c:a9:6a:59:e3:f4:b7:c4:cd:94:04:
c6:f5:da:e6:e0:35:80:55:71:78:77:56:48:1f:4c:77:6a:5d:
54:4a:4f:8f:11:d2:28:13:b8:5b:60:a3:53:45:f4:64:7f:3d:
db:25:bf:5b:e8:ea:21:35:ee:a7:bb:98:90:99:02:8a:9b:9b:
c9:34:a0:ce:b4:3f:36:6a:ef:87:6c:bd:3a:4e:aa:35:f4:84:
f7:88:60:56:18:4c:e5:82:31:46:27:cc:12:97:93:28:64:7f:
d4:6e:67:93:46:b2:06:00:5d:a7:6d:1f:4d:7f:70:23:5e:9b:
57:57:a4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:55:32 2025 by rpki-client