Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: G0tkn95QuHNTq3A8UH1RQWHTH/zDwOlqZ1iPTTMUIWM=
Subject key identifier: 30:90:27:61:E6:F6:DE:ED:02:55:28:D0:66:19:A8:E7:9E:7C:D6:DB
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 0197470BDC66CA3A3CB4F504C09FE7C851BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 04A3
Signing time: Fri 06 Jun 2025 21:00:48 +0000
Manifest this update: Fri 06 Jun 2025 21:00:48 +0000
Manifest next update: Sat 07 Jun 2025 21:00:48 +0000
Files and hashes: 1: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: 91fFhgaKoYu77y+wESil0DteGBaJCQd7vBSvZ+BNSE4=)
2: l0CnYB9TqdwdMbmMIDN6gmU04y4.roa (hash: uHgPuHlAwsjfMv6nb8pkc75mAM6+gk2FAGFMxkvLSjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:dc:66:ca:3a:3c:b4:f5:04:c0:9f:e7:c8:51:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: Jun 6 21:00:48 2025 GMT
Not After : Jun 7 21:00:48 2025 GMT
Subject: CN=30902761e6f6deed025528d06619a8e79e7cd6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:07:0d:b4:da:88:c5:01:b1:d7:16:96:7d:1d:
86:71:10:ba:97:47:fb:21:25:ff:7c:75:da:d8:2b:
a5:a4:b9:42:34:6e:45:8c:27:0b:6e:1d:8b:0c:fe:
d8:c8:26:05:83:fc:fd:e7:1a:e4:2c:44:84:b2:f3:
7e:52:a1:a1:d9:12:35:4a:95:cf:be:9e:8d:ab:b6:
e5:a0:c9:33:84:f1:d7:fa:ab:d6:87:5f:8d:35:cd:
c0:7c:b8:27:d8:97:f4:c6:69:7a:f0:5f:3f:af:84:
5d:fc:f1:49:19:27:7b:98:bc:74:eb:18:6b:12:d0:
70:eb:d4:ea:76:cc:b2:ed:fd:98:e9:ec:a2:72:9f:
0f:6f:9c:c5:4b:00:2b:28:35:88:07:c1:17:ff:f1:
a4:c9:1f:92:f4:fd:f4:38:c5:fc:e3:18:90:6f:d7:
d6:72:a4:ef:c9:08:c1:04:0a:53:2a:27:d1:1f:7b:
d1:35:69:b4:48:4f:59:e9:d9:90:9c:58:b1:8e:7d:
4f:43:29:01:6f:4e:05:44:ed:9f:24:0a:0a:2a:54:
19:81:00:36:3f:ce:8e:40:87:04:bd:c4:c5:f0:c8:
a8:48:b3:49:e1:cf:9e:0a:b3:6e:34:f1:b6:75:c1:
dc:2a:59:61:82:71:b8:8d:bf:f5:f6:6b:98:f5:e1:
4f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:90:27:61:E6:F6:DE:ED:02:55:28:D0:66:19:A8:E7:9E:7C:D6:DB
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:10:56:b4:dc:ce:d4:f4:5e:50:e2:29:b3:bd:0d:40:02:07:
a6:9e:9c:bb:34:27:3f:72:f0:eb:b6:5b:67:70:55:8a:b9:03:
7c:ca:0c:cd:1c:3f:76:d3:01:7c:71:f3:be:b1:d8:48:59:75:
88:8e:f3:4b:dd:c1:44:02:d1:d7:ec:58:7a:df:c2:b2:5b:2b:
19:38:64:ac:c3:0c:3a:9e:24:b5:3e:19:ed:15:c9:b4:2d:3e:
53:85:11:96:6d:8d:0b:d2:5d:22:ad:b7:db:ef:73:91:00:f7:
40:b0:5e:91:9a:e0:77:4a:d3:8b:7d:1e:f4:5f:52:2c:4b:ee:
bd:07:ef:7c:58:85:f9:59:6a:78:59:dd:07:f0:19:86:e4:db:
f5:58:21:5b:3d:0d:45:ab:86:dc:6e:70:02:51:68:6f:57:8f:
9a:83:62:f8:f1:6f:6d:92:03:35:70:0d:08:d7:ca:66:b4:48:
78:de:f8:74:07:e3:d1:7a:4a:48:bd:8b:ea:33:a1:32:1d:12:
07:b3:56:f9:fc:a3:f5:8c:66:94:ad:30:39:aa:74:65:ae:8f:
2b:42:07:9f:1a:80:2d:11:89:b4:da:d5:f7:a9:e0:8a:2d:b8:
77:4d:06:16:1b:6c:ef:97:da:b6:7c:0d:c0:25:3f:58:69:9b:
49:d2:a2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:24 2025 by rpki-client