Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
File: Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json)
Hash identifier: UDWTtWSJjrPoVe35OwL4j91lYoZuVqo/bnT8hM+CIEk=
Subject key identifier: 28:90:67:B9:ED:B5:2A:25:B7:C9:FD:6D:40:44:24:1E:D3:21:48:46
Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
Certificate issuer: /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Certificate serial: 0199239FC7B36E74F808C4BA5D7E21217C8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
Manifest number: 0F6E
Signing time: Sun 07 Sep 2025 10:01:37 +0000
Manifest this update: Sun 07 Sep 2025 10:01:37 +0000
Manifest next update: Mon 08 Sep 2025 10:01:37 +0000
Files and hashes: 1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: gMyt+wwPsHg2zRQ3MUqw8GA08wJCtr3odjMG6pZU1Ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:c7:b3:6e:74:f8:08:c4:ba:5d:7e:21:21:7c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Validity
Not Before: Sep 7 10:01:37 2025 GMT
Not After : Sep 8 10:01:37 2025 GMT
Subject: CN=289067b9edb52a25b7c9fd6d4044241ed3214846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:87:4c:05:02:f4:f6:05:ec:aa:3e:d3:83:
1f:f5:97:82:05:e6:2d:36:ce:d0:d5:e5:ca:44:f2:
ef:27:f4:e5:de:90:87:bb:c9:f8:75:c7:20:1f:99:
f4:2c:58:70:00:b0:21:ca:5a:5c:bc:d7:37:d0:a0:
01:8c:84:cf:95:04:05:0d:4c:0d:b6:22:1a:1f:17:
40:b5:6e:cd:36:57:f8:7b:1e:15:e0:f1:f5:37:f7:
2c:8c:b4:b2:22:77:23:0a:4c:cc:51:f7:10:3a:a8:
ad:88:fe:de:2f:c2:f2:b9:79:24:f0:ba:18:bd:48:
d2:ff:8f:f7:0d:51:16:56:fe:90:b0:e0:79:d2:a3:
f6:94:6c:0e:d7:66:2b:9c:1f:93:ea:fe:31:9b:4e:
a8:cc:46:27:ca:d0:22:ad:70:65:4c:29:b1:b5:bd:
59:84:2f:e1:db:16:ca:aa:8c:de:b5:ea:e8:26:5a:
e1:07:a3:37:06:67:a5:2e:19:29:ad:2e:2e:9f:84:
b2:60:4d:17:76:e9:07:4a:2e:8c:d2:02:e8:fb:aa:
ac:9e:8a:23:85:e1:b8:66:e1:b4:b8:1c:da:8b:67:
50:f1:3c:e7:29:f5:40:ff:b7:d0:85:de:3a:9c:de:
99:a3:d7:2e:dd:c0:cc:3c:ed:9e:aa:20:a6:0e:00:
fc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:90:67:B9:ED:B5:2A:25:B7:C9:FD:6D:40:44:24:1E:D3:21:48:46
X509v3 Authority Key Identifier:
keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:c4:36:24:be:52:3a:7a:8b:a8:c9:a2:e4:1b:be:40:37:87:
3c:c8:d2:67:74:f1:33:11:5e:34:f6:84:49:ec:45:1d:b5:e2:
02:59:05:7d:3c:80:78:c2:aa:b2:61:b0:a0:86:0e:e7:1e:4c:
5f:f6:50:9c:7a:59:39:10:c6:56:cf:93:5a:6d:07:2c:f9:12:
64:e9:d3:8a:60:a4:a9:ef:33:81:7a:74:78:19:95:d7:ae:40:
82:67:bc:72:be:90:ea:b1:b5:98:26:95:04:ba:00:79:08:25:
1d:83:c0:92:d1:78:3c:d2:f9:aa:b4:b6:02:06:88:5a:06:42:
44:26:48:9a:5d:e3:26:93:fb:90:a8:92:c6:0a:20:d3:33:c9:
b0:61:d7:21:99:9e:0b:20:cd:74:bd:68:cc:5a:d9:05:3d:0c:
0e:63:63:39:f8:68:ac:d2:b4:5e:c4:01:56:3c:06:f6:7b:3d:
64:16:80:24:7d:68:86:7c:6c:02:a0:2f:9d:65:78:46:18:7a:
5b:eb:5b:e2:68:e2:91:2f:c9:e0:f2:5d:14:4b:ba:65:20:a9:
ea:2e:a8:9a:04:4b:ee:a3:22:9d:4e:d4:1a:90:ab:79:c0:df:
27:6b:cf:de:09:a3:04:0f:33:b1:5a:14:27:ce:35:85:eb:5c:
7a:85:f2:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:38 2025 by rpki-client