Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: aAFwLBdsbu1TkWsDjN6PFXuGypmER5OT7ZDKi+3wZzc=
Subject key identifier: C8:8F:11:26:B0:32:08:7F:85:D5:A4:46:02:8D:66:37:C6:8C:40:51
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019754FE34083B6D36AD91E646217921E17C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 13D1
Signing time: Mon 09 Jun 2025 14:00:34 +0000
Manifest this update: Mon 09 Jun 2025 14:00:34 +0000
Manifest next update: Tue 10 Jun 2025 14:00:34 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: ty6rhUOtM5bCUqau6MdG4wUucKxBH9qu26mpuZ8X9QA=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:fe:34:08:3b:6d:36:ad:91:e6:46:21:79:21:e1:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Jun 9 14:00:34 2025 GMT
Not After : Jun 10 14:00:34 2025 GMT
Subject: CN=c88f1126b032087f85d5a446028d6637c68c4051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:bd:6d:de:58:3a:b6:02:5c:54:c8:62:0d:
02:cc:2d:86:26:45:10:8e:fa:91:49:34:51:8a:16:
7a:f9:51:81:11:3a:52:01:55:fa:f1:43:b5:ab:df:
9e:9d:60:17:f9:9a:c1:0d:f5:b1:be:59:9b:60:03:
22:62:d9:35:93:55:3b:10:ee:a9:14:80:ed:6e:e7:
2c:d5:c1:84:83:71:a3:a7:a2:fa:5d:40:31:5f:fd:
25:51:9a:41:45:1f:41:ec:b3:20:2f:53:6a:ee:98:
57:9b:85:78:78:d7:ab:de:ea:15:53:3c:32:56:36:
41:28:f8:82:6d:d2:05:85:3c:e2:bd:56:8d:0a:fb:
27:27:64:fa:76:8a:f4:90:14:b1:02:36:f3:52:cf:
1f:b7:a8:e8:d6:f9:88:47:d8:8f:e8:34:35:91:f8:
61:29:82:f2:61:87:32:2d:e9:dc:6a:7a:fa:e2:93:
0c:12:fe:14:71:40:ca:b7:bb:d0:d4:28:d9:99:f0:
70:2c:ee:d9:c9:7a:d0:bf:12:75:0a:cf:42:2e:92:
31:e7:bd:1c:90:85:10:fc:6e:0a:87:8d:32:d1:81:
a1:59:b3:2d:cb:c6:2f:62:ec:db:00:0c:94:08:f1:
91:0a:c0:5b:91:b8:c3:58:3b:58:9e:83:f2:b8:02:
07:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8F:11:26:B0:32:08:7F:85:D5:A4:46:02:8D:66:37:C6:8C:40:51
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ef:3e:b7:42:3a:d0:77:b7:ad:bb:96:42:c7:1b:74:4b:99:
d6:f4:59:52:02:1f:77:9d:b5:d0:61:20:d6:bd:69:7b:da:28:
cf:c1:9b:f8:ae:65:0d:cb:44:6f:38:eb:41:29:65:18:8a:f1:
eb:d5:2f:17:83:03:b6:fb:f4:b1:3d:50:6f:cb:70:91:00:79:
3d:2f:b5:e8:fc:86:29:f6:4f:ac:9a:6d:41:63:c6:ac:2e:a4:
4c:1c:8e:7b:bc:6d:86:29:a6:a2:69:83:da:bb:39:60:84:21:
3c:4a:d5:5b:a7:8f:67:78:8c:89:18:9e:19:61:84:8f:7c:e2:
4f:ac:77:40:a8:d8:04:d0:d7:69:42:5f:3d:31:3e:67:51:e5:
17:97:f4:00:0c:dc:a0:c5:be:37:d8:f9:10:18:78:3d:ed:d6:
4a:58:6f:9e:ad:ef:0b:ba:6d:2f:02:31:e8:44:58:ac:01:b7:
cb:1e:22:a3:44:12:01:1f:86:6e:4e:cb:94:1f:ca:45:e7:cb:
f7:f9:bb:c0:26:3c:21:71:4e:5d:fc:76:d0:80:8e:8e:23:cd:
be:bd:61:ab:67:94:4b:b3:72:86:74:61:59:07:0b:44:6c:1e:
72:d7:8e:05:95:65:e8:e1:c7:14:cc:8d:c3:f5:6c:86:e0:87:
76:3f:92:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:59:15 2025 by rpki-client