Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: W7vPN1j2VL6B9RY/VdEnn7Af5d1pM1/GCkK5aj4vXsE=
Subject key identifier: CE:77:7F:5D:94:55:84:D4:2F:56:EF:BE:CB:27:37:12:24:AA:A2:15
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019764711A9D02607C5C7247A859EDA075B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 13D9
Signing time: Thu 12 Jun 2025 14:00:23 +0000
Manifest this update: Thu 12 Jun 2025 14:00:23 +0000
Manifest next update: Fri 13 Jun 2025 14:00:23 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: J/UIGtU+Tsifb9JEdM3TGOWX04euKsgGDsPX4fjvj7U=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:1a:9d:02:60:7c:5c:72:47:a8:59:ed:a0:75:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Jun 12 14:00:23 2025 GMT
Not After : Jun 13 14:00:23 2025 GMT
Subject: CN=ce777f5d945584d42f56efbecb27371224aaa215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c8:39:d7:bf:2e:97:e4:ef:31:e9:ab:7f:e5:
bc:98:59:16:9d:29:4e:97:38:13:b8:6e:b0:5c:3a:
70:be:55:5c:8d:c9:56:85:68:70:fe:33:1c:82:66:
77:8a:b6:ad:65:08:f1:da:4c:4a:bc:8d:a9:30:f0:
b4:d1:31:16:1d:b7:01:c2:58:47:47:e5:f6:ef:c8:
90:3c:24:60:83:a7:c1:60:97:d6:d1:47:ef:a5:f5:
a6:e9:16:aa:3a:15:d2:94:ba:7d:9b:f3:46:a3:45:
9e:51:f1:e5:ad:51:2b:84:25:ee:eb:cb:d8:5f:5a:
6c:8c:a2:09:9b:2f:1f:70:8e:41:64:4f:d7:a7:81:
3f:72:b6:5c:f4:5b:24:7b:c8:f1:57:9f:cc:65:a4:
bf:0f:94:80:5c:df:4a:76:a8:e5:f1:63:2c:fa:99:
37:17:bd:eb:e4:84:4e:44:96:04:fe:c2:01:50:c8:
8a:45:cf:e1:d1:45:b0:48:0c:df:10:3d:3c:8b:71:
73:57:99:89:99:81:3b:f2:3f:75:73:c1:94:95:73:
9e:7b:3b:7f:75:34:d0:cf:4e:62:99:e4:58:6d:fa:
87:11:e9:20:84:a0:1d:79:c3:08:40:54:f0:f2:ea:
35:b6:8d:ec:75:87:03:b1:08:f4:81:51:5d:08:55:
4b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:77:7F:5D:94:55:84:D4:2F:56:EF:BE:CB:27:37:12:24:AA:A2:15
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:72:87:2f:81:10:d5:93:7a:ff:94:79:69:13:1b:25:98:f0:
86:ce:9a:15:e9:2b:36:5d:2a:80:93:3c:2a:9b:9d:69:50:b7:
01:c4:22:ed:6c:eb:57:04:85:07:70:74:34:92:35:6b:bf:25:
a8:d0:79:29:10:74:09:bb:48:52:0a:cd:92:b3:55:72:30:6f:
37:f8:f8:7c:6b:19:da:63:1b:3b:51:6e:9e:1f:98:f2:fe:be:
59:16:a2:34:64:c0:81:6f:37:93:b7:97:56:07:c9:ec:45:fc:
b8:0c:2a:14:dc:01:8e:4d:92:3e:fd:90:45:b0:f7:2b:ac:f6:
7a:6e:5e:21:a3:fb:b5:37:a0:f1:7f:18:47:89:50:41:dd:c9:
d1:f6:bd:7f:85:2f:13:28:87:e8:ad:94:0a:c1:03:64:dd:be:
5c:51:4c:6c:d6:4d:17:59:7e:1a:f6:ba:d9:24:a2:5c:41:bd:
fb:31:22:79:8d:91:6f:74:e8:ff:f6:ba:cd:6c:f4:0e:19:bc:
f3:eb:77:cd:3a:04:b2:e6:6d:c7:aa:a2:f5:7d:33:ee:8e:36:
d9:68:9a:0e:51:c8:21:5f:aa:5d:34:73:78:f8:c5:36:5b:05:
ce:b3:1d:16:6a:bf:d5:9f:ef:50:cd:5e:3e:1c:37:17:f2:1b:
6c:c8:7c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:58:34 2025 by rpki-client