Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: xrd6DuxREh6t73IS9/4BVl717FUnGG6WqgKAD02//9M=
Subject key identifier: F4:54:BC:80:B1:8B:51:A1:4D:47:40:97:36:39:AE:25:7A:61:86:63
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019A71B800BC6F1C6EFE6D20E254C886A0C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:01:15 +0000
Manifest this update: Tue 11 Nov 2025 07:01:15 +0000
Manifest next update: Wed 12 Nov 2025 07:01:15 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: B0gr5wEL0spzizu2mxddDtvl8yMkC/iderqsnOLCv/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:00:bc:6f:1c:6e:fe:6d:20:e2:54:c8:86:a0:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Nov 11 07:01:15 2025 GMT
Not After : Nov 12 07:01:15 2025 GMT
Subject: CN=f454bc80b18b51a14d4740973639ae257a618663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c6:ba:74:5e:f7:74:47:91:fd:c5:24:9a:02:
07:c5:cb:d6:4f:dc:0e:99:4d:79:5b:68:a2:0a:29:
f0:0d:4b:8b:8b:a1:29:2d:a9:82:fb:33:d1:29:d5:
91:db:47:90:5b:8c:00:1f:a5:7b:5e:1e:e2:17:d6:
c1:8e:f1:9b:e4:ca:90:72:0f:28:ea:c1:1a:2d:df:
fb:33:00:ff:ed:61:cf:50:dc:c1:e2:af:11:cf:60:
2c:58:a6:9c:40:ec:53:b7:28:52:7e:87:39:19:75:
18:ab:ef:e4:96:d4:2a:79:6f:dd:78:f1:14:35:67:
f8:b2:e4:64:c4:16:4a:1e:a0:91:7b:35:65:31:0a:
af:3b:ae:c7:ed:ed:0e:c7:57:1b:2a:78:cb:5f:7e:
77:7a:f4:48:f2:62:cb:06:39:51:71:ff:b2:ba:58:
42:8a:f8:49:40:cc:10:90:c9:4f:be:da:67:84:dc:
84:37:f6:d2:45:1a:7d:5c:ec:fc:b5:66:30:ca:9a:
67:f9:e2:eb:5e:5a:98:f9:3f:ba:6f:7e:55:93:07:
0a:d2:4c:84:a6:26:92:ac:a6:c3:25:a0:15:db:4b:
2e:8d:c9:42:2d:48:b6:c2:39:64:52:54:12:3b:57:
ef:00:8f:c4:d2:ef:b0:7e:2a:91:43:ad:27:d2:79:
3f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:54:BC:80:B1:8B:51:A1:4D:47:40:97:36:39:AE:25:7A:61:86:63
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:8b:6c:3a:f7:38:58:cc:0c:e9:a2:c4:eb:a7:44:d5:d9:06:
bd:b6:63:27:bf:b0:44:13:77:a7:9e:64:2f:1c:29:2d:52:9b:
cf:81:c6:2e:40:99:e7:7d:22:b4:dc:06:b7:d9:7d:e4:f1:17:
b0:05:08:91:59:3a:f6:bf:10:b6:9a:0a:db:da:89:11:f5:ae:
58:48:97:4f:a0:58:e5:11:3e:50:c9:c9:00:50:fa:68:9e:b5:
ac:b3:a3:c8:d5:7a:58:46:04:c2:f8:27:62:e1:6f:f4:c4:47:
59:42:6f:f1:91:20:a5:e2:6f:1a:80:e6:10:5a:9e:d5:af:52:
32:8b:d9:8a:eb:cc:3d:64:e4:93:8e:25:3b:69:01:84:ba:d6:
c3:a9:c6:62:cd:d0:64:d0:5d:54:06:a0:09:3f:7c:27:32:18:
fb:0f:1b:60:80:20:54:3d:96:ab:ac:d8:c9:4e:39:89:c2:17:
aa:80:dd:4c:72:1b:70:b1:1b:73:1d:63:20:9b:5d:01:5e:63:
3f:a6:3f:2b:e6:24:3e:65:83:22:38:60:55:62:03:00:38:57:
94:f6:04:45:16:bb:1d:81:9c:8c:3e:51:ff:af:90:5c:41:68:
a6:78:aa:c4:d4:7f:65:a8:03:6e:1c:95:ac:21:f1:2d:82:33:
f0:1e:5b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:35:45 2025 by rpki-client