Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
File: CZ-qshYRGNsbd8GnTszLc-doHDY.mft (raw, json)
Hash identifier: fQaHr1RQAt2s7DEgI2KjJjcdIzQmB4DiUN2yK2KJCao=
Subject key identifier: D6:ED:3A:57:2F:C2:45:46:96:05:C2:CD:12:AF:C2:42:E4:78:DF:FB
Authority key identifier: 09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
Certificate issuer: /CN=099faab2161118db1b77c1a74ecccb73e7681c36
Certificate serial: 019922C3843095CE194A21407F065031C0DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
Manifest number: 94
Signing time: Sun 07 Sep 2025 06:01:02 +0000
Manifest this update: Sun 07 Sep 2025 06:01:02 +0000
Manifest next update: Mon 08 Sep 2025 06:01:02 +0000
Files and hashes: 1: CZ-qshYRGNsbd8GnTszLc-doHDY.crl (hash: ssv5nDP4Q3q/+SO2397Z3fVYD9qHqyD1yOYZaNV+QG4=)
2: cOJF3c93EdtdcnQUgbiiqTgw_1M.roa (hash: zobvfeY7LZCgjAH4tIKeBPeHEqZ12dFg210JqNHCaCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:84:30:95:ce:19:4a:21:40:7f:06:50:31:c0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099faab2161118db1b77c1a74ecccb73e7681c36
Validity
Not Before: Sep 7 06:01:02 2025 GMT
Not After : Sep 8 06:01:02 2025 GMT
Subject: CN=d6ed3a572fc245469605c2cd12afc242e478dffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:59:63:ab:ca:d0:2c:e7:18:fb:d9:fc:03:34:
7f:3e:d6:34:0c:18:b6:6a:f0:f9:7f:cd:8c:de:d7:
09:e4:94:0a:e8:bd:e7:e7:7a:47:8e:f0:dc:dd:08:
2a:d8:ac:ef:ff:9c:0c:3a:a7:c6:9d:f3:a7:4c:05:
d5:8a:8d:78:87:32:4b:ad:d2:6e:5f:43:8f:d9:e9:
a0:86:bb:8d:ab:30:0a:15:5e:50:d4:e0:f6:7f:d1:
b4:c3:b7:ad:93:9e:c5:a2:80:4f:fb:e7:28:31:7d:
70:c6:fd:bf:13:6d:4e:e6:5a:0a:ca:a8:3d:d3:c2:
ef:30:ab:8a:39:ea:a9:04:b6:55:df:75:ee:62:5c:
b0:17:bc:6d:b9:b8:0e:71:13:21:90:23:e1:dd:c0:
19:95:e1:63:30:7e:a7:6f:7a:d8:cd:1c:13:5b:d9:
86:4f:fe:0c:b7:0e:08:2e:4f:ca:85:2b:de:a1:c2:
62:35:98:7f:09:c8:80:c8:55:8d:1f:32:7c:b6:0d:
69:c6:9f:9d:1c:12:30:a6:60:33:4e:78:b4:35:68:
df:84:45:f7:30:1f:86:8d:18:d4:82:db:ac:a6:a5:
b2:68:b6:1e:fd:b3:bc:14:1d:76:2e:72:98:a7:88:
93:21:59:60:a8:d7:57:eb:ae:19:63:75:99:d5:7f:
0a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:ED:3A:57:2F:C2:45:46:96:05:C2:CD:12:AF:C2:42:E4:78:DF:FB
X509v3 Authority Key Identifier:
keyid:09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:45:2b:5f:53:d9:d4:87:0a:b2:33:8a:79:8a:44:ad:7b:a8:
70:fc:90:df:de:11:cf:ab:23:71:2a:77:66:c0:a8:57:e1:0c:
bc:aa:04:20:36:9d:91:44:d1:45:bb:29:e6:a5:e8:06:ff:ff:
8a:d9:a7:db:b7:1c:15:d5:96:59:34:e7:bc:d2:2e:24:36:f5:
c6:36:99:25:e2:c7:4f:31:62:5a:92:b4:5d:5d:db:34:b3:df:
aa:39:c0:d0:f1:da:a9:d8:de:a2:9d:a7:11:db:d4:de:1d:0d:
4a:a7:6e:15:3d:e9:3c:27:9f:f2:a9:0d:cc:9f:83:22:dc:bf:
38:76:3c:88:47:51:cf:c5:3d:bd:1e:ae:43:9a:56:b8:c5:35:
33:ea:b9:5b:6e:af:ce:b3:38:28:4d:03:cd:00:92:e9:6d:bd:
53:7d:03:d0:18:2d:d2:37:72:66:d3:c3:48:aa:47:90:e9:36:
af:2f:2b:0f:02:1b:fb:3e:9f:02:6d:03:9a:12:47:e7:e4:72:
2c:1a:dd:6f:8d:5b:f5:7a:8b:da:a5:c8:7e:08:ca:04:34:3d:
e8:5c:b0:4f:d5:1d:c6:c7:02:2b:a4:fd:7d:a7:ec:8d:d7:22:
37:a1:e8:2f:e8:59:99:ce:90:9c:5e:16:aa:51:f1:ca:3d:ba:
80:62:86:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:47 2025 by rpki-client