Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: mLDJIr683ceCRscgKZbaCHH63UEE9Q37yhlGB5zRo7g=
Subject key identifier: 93:C9:F4:EB:E0:A4:BC:3B:EF:80:EF:5A:F8:2D:FE:2E:F5:41:03:D6
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019848534039EFEEFA4FEEF067355736EE6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 121A
Signing time: Sat 26 Jul 2025 20:01:12 +0000
Manifest this update: Sat 26 Jul 2025 20:01:12 +0000
Manifest next update: Sun 27 Jul 2025 20:01:12 +0000
Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=)
2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: CWGUtjUGljy1m+Ozd2QZVSOFB0nId5shN62M8Ovp9II=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:53:40:39:ef:ee:fa:4f:ee:f0:67:35:57:36:ee:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Jul 26 20:01:12 2025 GMT
Not After : Jul 27 20:01:12 2025 GMT
Subject: CN=93c9f4ebe0a4bc3bef80ef5af82dfe2ef54103d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d7:2e:0f:09:a0:a7:b4:b7:41:b7:70:00:74:
6e:5b:f6:15:d6:1d:a1:00:9f:f3:45:57:71:9e:a0:
b3:d4:83:21:23:66:bb:84:24:da:de:fd:96:a8:f1:
d3:9c:66:f9:ec:1a:6b:59:78:ef:88:49:fc:c1:f8:
27:3a:41:55:26:9b:df:56:aa:48:17:ab:4a:9b:48:
8f:0d:e0:4c:62:33:f1:0b:55:29:24:63:d6:8e:82:
09:9c:71:ab:a2:40:5f:62:ab:62:21:0a:2f:a0:c5:
35:d8:27:06:f3:83:44:c0:26:26:f4:45:d6:84:8d:
32:6e:37:1a:0f:b1:2e:3f:52:21:aa:5d:02:c3:60:
b7:6d:cc:de:72:a8:24:0a:8a:d4:4d:a0:84:d9:b2:
e9:0b:96:af:cf:df:4b:54:8b:31:fa:18:4e:0b:86:
6f:5f:4a:2f:ea:7b:62:2c:d4:7e:6d:82:2b:65:23:
6b:11:a3:3f:35:7c:51:e4:b8:47:ff:37:67:31:26:
2e:9a:0d:44:07:a9:9f:59:15:9e:7e:85:55:1d:9c:
ea:84:8e:bd:05:ce:80:1d:e7:21:7c:a8:9c:97:84:
e9:46:65:84:d8:56:61:0c:40:f5:ba:a5:26:e1:59:
24:57:95:17:63:c6:d5:bf:4c:89:02:4b:7b:24:72:
65:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C9:F4:EB:E0:A4:BC:3B:EF:80:EF:5A:F8:2D:FE:2E:F5:41:03:D6
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:0a:57:27:7b:82:f6:f4:e3:ff:79:47:9b:37:05:73:0d:8c:
22:3e:ac:a2:72:34:4f:ae:66:bf:19:90:50:6a:24:18:03:4b:
dc:49:0b:1a:ee:e8:24:33:a2:9c:c4:14:9e:46:0f:3f:e8:ce:
4d:da:55:45:e8:e6:98:0a:c8:54:fe:ed:07:e2:5c:eb:2e:6e:
f3:72:18:78:29:03:2b:4d:73:b7:fa:b6:bb:13:a0:3f:3b:25:
80:ff:45:ce:84:8b:da:d0:4b:b1:73:de:e9:79:16:44:05:5b:
94:24:41:9f:28:2a:d2:61:32:03:90:5c:d8:e7:1d:51:d0:63:
fe:75:48:e4:ed:fe:46:9b:70:b5:5e:ab:f8:75:fe:8f:7c:25:
b7:cf:63:a9:e1:9a:24:58:5c:48:4c:e3:c5:93:be:53:ff:99:
1d:43:ea:ff:34:8f:9d:78:3c:9c:27:ce:20:50:3c:c3:84:06:
63:91:11:95:2e:52:7c:fd:7b:d5:f8:8c:94:5d:1a:1b:10:71:
5f:23:29:fd:0f:f1:2d:98:2a:a3:2d:cc:13:ae:f7:3d:d2:f2:
f6:fb:f3:dd:e8:c9:4d:04:aa:9a:e9:b2:ae:85:3c:83:0c:a3:
be:50:6b:91:dd:cd:9a:ca:af:d8:5e:11:fe:f8:87:a9:5c:ac:
7a:22:2e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 03:01:19 2025 by rpki-client