Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
File: cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft (raw, json)
Hash identifier: s9XD8f8lamJq+J8iuK5IIw1O07rcfSK2/BOPPpPk5QI=
Subject key identifier: FC:A9:DD:3E:61:0C:32:91:61:AA:BE:96:39:02:31:80:0A:77:6E:FE
Authority key identifier: 71:92:F3:56:0C:15:B9:4D:1E:F4:97:72:68:45:D7:86:78:6B:C7:62
Certificate issuer: /CN=7192f3560c15b94d1ef497726845d786786bc762
Certificate serial: 019921B16803E0A2703B6DB49232859C8D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
Manifest number: 0DA5
Signing time: Sun 07 Sep 2025 01:01:38 +0000
Manifest this update: Sun 07 Sep 2025 01:01:38 +0000
Manifest next update: Mon 08 Sep 2025 01:01:38 +0000
Files and hashes: 1: cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl (hash: e74aw3j1bJSac1w+CuG1uGc1T0F88cpCLHJ68/uctZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:68:03:e0:a2:70:3b:6d:b4:92:32:85:9c:8d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7192f3560c15b94d1ef497726845d786786bc762
Validity
Not Before: Sep 7 01:01:38 2025 GMT
Not After : Sep 8 01:01:38 2025 GMT
Subject: CN=fca9dd3e610c329161aabe96390231800a776efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d1:10:d5:87:61:38:ec:cc:1a:a0:f0:b5:5b:
82:50:d9:02:e2:e9:4f:7f:30:29:24:a6:f9:16:e7:
ef:4d:c1:56:a0:56:64:1a:aa:87:cd:51:4c:3b:24:
a1:aa:2a:06:da:21:5e:56:7b:9c:95:cc:1c:01:f0:
e6:c7:77:1b:ca:69:19:32:3d:1b:0e:2f:6a:e1:24:
dc:7b:86:e3:ea:80:7e:a5:98:73:c2:b0:e6:93:60:
24:d1:0d:d5:45:bd:14:b5:02:5d:d2:e8:d4:22:00:
af:c9:17:42:7e:da:96:b3:10:83:1e:86:11:f2:ea:
ea:f2:04:d6:41:07:e3:43:e7:55:cc:2a:d3:05:a6:
0e:d8:fa:12:f6:6c:86:18:c5:67:25:c9:b6:72:65:
60:e5:d2:b5:df:76:c5:8b:b5:6e:f6:2f:09:19:b4:
7a:fc:bc:3e:1d:9c:b3:0f:d2:1e:bf:b0:8f:49:20:
26:02:ff:eb:57:07:ea:f7:8e:7a:21:fd:24:1b:28:
49:90:35:49:08:1a:5d:43:18:40:1f:29:7f:91:7e:
2b:13:ad:d4:48:d9:ae:37:b5:aa:3d:26:84:bd:4b:
e4:57:32:3a:a9:ad:27:07:80:ae:5e:dd:55:16:d4:
2b:dd:6b:ec:9b:57:9b:71:75:eb:51:01:b3:80:70:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A9:DD:3E:61:0C:32:91:61:AA:BE:96:39:02:31:80:0A:77:6E:FE
X509v3 Authority Key Identifier:
keyid:71:92:F3:56:0C:15:B9:4D:1E:F4:97:72:68:45:D7:86:78:6B:C7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZLzVgwVuU0e9JdyaEXXhnhrx2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/69a034-b508-42e8-99e8-75ee24a3f96b/1/cZLzVgwVuU0e9JdyaEXXhnhrx2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:f0:20:6e:2c:b6:e1:79:0f:6f:c2:84:7e:b5:08:51:13:1a:
4a:a6:b4:6d:ec:04:17:b9:e4:b4:be:9f:31:1e:78:9f:8a:69:
a7:6c:fa:ef:e2:13:61:26:55:85:bf:a0:0b:2c:44:b2:78:e8:
bb:6d:2b:75:6f:77:e8:78:93:d7:b9:0c:76:dd:7c:30:78:88:
0f:18:51:53:a7:57:4e:de:4a:ad:fe:4f:f7:30:f2:94:7a:d5:
ab:4f:91:b6:07:ed:8d:98:6f:da:e8:78:38:79:1d:7b:d2:e9:
c7:00:50:9c:8b:db:aa:51:2d:ea:95:75:4d:d8:89:d4:73:3a:
03:b6:5e:5e:89:2b:5c:0b:0c:ae:53:7e:bf:e8:5f:e2:ac:65:
00:52:27:24:1e:d0:17:96:51:cc:c4:0d:e3:4d:3b:b5:d7:6a:
65:22:82:82:40:4e:55:42:f8:5a:a6:d7:d6:f0:6e:d8:1f:e2:
6a:be:3e:df:f4:68:64:49:48:d0:3f:7f:fd:91:ff:9e:8a:e6:
90:2d:3e:9e:2d:b8:dd:9b:69:11:bd:70:a3:c5:62:b9:00:83:
ef:be:86:67:a0:54:bf:3d:ae:e0:e0:0a:6c:ce:be:ef:56:a5:
a8:04:66:8b:53:c1:b9:24:65:a4:42:4d:b1:4a:af:05:b7:d5:
3a:14:0f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:32 2025 by rpki-client