Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: hSmM/F92NW15QxmmerBtAF8JzlaecUf8RtVSOeVJ9tM=
Subject key identifier: EF:9B:77:F4:28:38:F8:D1:BD:36:CA:34:82:DC:D1:8E:EE:BA:C7:80
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 01991CC1D7FD2C7C527E0B1AA38F4064EA12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 14BD
Signing time: Sat 06 Sep 2025 02:01:29 +0000
Manifest this update: Sat 06 Sep 2025 02:01:29 +0000
Manifest next update: Sun 07 Sep 2025 02:01:29 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: fWBVbB14Nw23kVLk4L7gefw9JwlwL3eNCseEvN1jvAQ=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 19:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:c1:d7:fd:2c:7c:52:7e:0b:1a:a3:8f:40:64:ea:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Sep 6 02:01:29 2025 GMT
Not After : Sep 7 02:01:29 2025 GMT
Subject: CN=ef9b77f42838f8d1bd36ca3482dcd18eeebac780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d8:0c:87:4f:43:25:3b:72:b0:b6:27:29:75:
f4:e8:2f:96:b4:95:dd:03:ae:80:4c:6c:ec:c6:ff:
ff:d3:f9:e3:cb:e2:20:a5:c3:90:44:88:86:6c:a9:
70:b1:88:ce:33:ae:5f:f3:98:67:eb:c6:76:9b:9c:
9c:32:b1:63:e6:20:a5:83:b2:b8:38:d9:46:c0:6f:
81:7a:c1:74:81:c7:47:be:e5:4d:6f:80:16:b5:9b:
15:5a:57:02:f4:20:01:46:69:9e:9b:cd:e5:93:4d:
4d:91:9a:9b:45:61:b9:29:08:60:a5:62:1b:5b:16:
a5:e7:62:7d:79:bd:5d:72:91:2c:89:bd:79:de:0e:
61:c7:1b:41:98:2c:02:f6:ce:14:d5:e5:20:e9:6a:
02:26:12:67:14:c8:3d:37:a4:be:b3:4a:ae:6f:4f:
22:87:5f:d1:f3:24:64:fc:8b:cd:0a:65:b5:71:87:
0a:d5:74:d7:dd:3d:40:6e:d9:ce:fa:b5:76:15:87:
4e:4b:b9:61:4c:6a:f6:71:d7:46:0c:dd:43:47:d9:
62:d2:ac:57:71:b7:93:d2:60:a9:c9:5d:ce:47:f0:
1f:1e:0f:f2:dc:69:8c:64:dd:d6:52:0e:69:52:01:
4a:eb:90:48:25:d4:0a:e6:b2:49:ee:a4:87:57:7c:
26:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9B:77:F4:28:38:F8:D1:BD:36:CA:34:82:DC:D1:8E:EE:BA:C7:80
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:34:bb:c7:a4:29:f2:be:d1:ce:91:32:42:4d:e7:2f:6c:54:
7f:c6:25:d1:9a:9b:28:5e:60:c4:a3:08:24:e6:40:45:61:91:
ec:89:3c:55:d1:1b:59:e2:44:10:9e:52:b6:3c:cc:6e:6f:b0:
c8:c8:7d:ec:a3:f4:7e:ef:b3:a9:93:d5:54:aa:45:f5:c4:2a:
fa:16:f4:4b:3e:a6:fa:60:a9:65:40:3f:65:c6:66:7c:ed:47:
28:9c:4b:46:30:1d:77:31:00:09:10:3a:d7:d0:89:c8:e1:ea:
c9:ab:ce:80:0b:95:3b:cb:6d:db:a0:5d:f3:a0:82:fe:c7:29:
80:91:29:1e:a5:e1:30:f7:66:25:fe:b6:34:68:d2:aa:0f:88:
0f:10:48:01:c7:cd:bf:c4:03:d9:49:f7:26:a2:89:cd:40:9d:
1e:96:7e:b0:06:b6:cc:b2:f8:9b:a8:f6:90:d5:09:69:d0:18:
39:f7:59:12:fb:ac:15:20:1f:7e:62:1e:d7:01:06:07:64:2a:
06:c2:2e:b1:4e:79:8e:59:3b:79:f9:b2:58:9b:5e:62:18:88:
e5:62:82:eb:9b:b6:d7:1c:12:a1:9c:27:d4:10:d4:56:25:07:
5a:ce:04:82:03:8f:16:87:b6:8c:17:81:5f:a7:36:65:64:d4:
2f:f1:30:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 03:20:51 2025 by rpki-client