Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json)
Hash identifier: /S2nkBfCZZA6TFmGLnArMAVQgVSwvMUZIAW+thsviX8=
Subject key identifier: AC:FC:9C:BC:31:DC:75:6D:F6:08:18:0B:6E:B8:25:EA:8F:42:81:E3
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 019643D6CBEA8EF0686A819DB9574B6FF386
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
Manifest number: 113A
Signing time: Thu 17 Apr 2025 13:01:12 +0000
Manifest this update: Thu 17 Apr 2025 13:01:12 +0000
Manifest next update: Fri 18 Apr 2025 13:01:12 +0000
Files and hashes: 1: 1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa (hash: hFOtYhVCGxVTmNvasMZGAdD1D7TMmY398V7CPu+M+nU=)
2: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: A9uK3nf7Dpb5qG0c8imC+wcAd2m8m5NiPh9lqq8P0Is=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:cb:ea:8e:f0:68:6a:81:9d:b9:57:4b:6f:f3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: Apr 17 13:01:12 2025 GMT
Not After : Apr 18 13:01:12 2025 GMT
Subject: CN=acfc9cbc31dc756df608180b6eb825ea8f4281e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0c:a5:01:90:6b:76:b3:ab:a4:32:21:c4:d9:
b6:47:79:69:90:41:be:95:68:4c:0d:9b:cc:57:de:
29:fe:00:01:32:4a:56:d0:0d:8a:d5:f3:2c:11:ee:
06:ab:f4:d7:5f:f5:cd:2a:c4:16:b3:79:8c:30:b9:
34:11:8f:78:3e:bf:47:c2:65:8a:a3:5a:87:53:c7:
95:fd:e2:a8:a2:ab:62:65:cc:af:dd:de:db:2f:91:
3b:6a:fb:54:a0:f5:81:7c:d5:73:81:b0:de:ea:ae:
06:05:a6:3e:2d:b8:6a:1a:c6:9b:32:97:d7:48:e2:
21:fc:b5:19:e6:9d:60:83:e0:e6:f2:e3:ad:dd:46:
8f:cb:ec:0f:38:d1:fc:17:36:e7:49:f2:f6:e7:c7:
98:ae:64:a1:ee:64:15:31:25:5b:3b:96:90:4f:14:
64:33:4f:b6:b5:34:44:61:74:08:c9:4d:19:15:10:
5b:4f:5d:d4:9b:9d:4b:21:b2:65:00:d5:1b:a4:d5:
bf:59:ee:72:a5:1e:22:41:39:d8:27:c6:ac:2e:71:
60:a2:8f:e0:62:1c:78:08:d0:b9:d7:32:04:60:f2:
17:18:e5:d5:07:5f:66:de:a9:bb:69:8d:68:1b:cd:
c1:a1:af:54:e2:e5:5a:84:8b:0d:01:89:5f:36:45:
ff:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FC:9C:BC:31:DC:75:6D:F6:08:18:0B:6E:B8:25:EA:8F:42:81:E3
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:04:89:5d:f3:55:91:22:48:1b:6f:25:45:8e:dc:f8:38:bf:
31:22:7c:3d:59:91:29:86:71:68:19:84:91:c0:3e:58:3d:23:
81:a8:ad:b3:22:d3:99:f3:db:2c:23:7a:f9:bb:28:a6:1c:7e:
95:fb:fc:5f:c9:ac:4d:d3:8e:76:e6:49:b7:fc:e8:2b:08:b9:
c0:78:89:11:ea:9b:b1:b0:37:87:11:b4:ad:2c:9e:b7:c9:df:
1e:67:c1:7c:3a:ca:0c:39:c8:46:92:26:6b:81:56:4c:8e:32:
18:bd:68:81:d6:c7:fd:e8:62:f8:9b:d8:05:ee:a1:14:3d:77:
ee:b1:2e:54:e2:ae:b9:c6:f3:e2:0c:63:44:ed:96:d1:3b:8b:
63:68:5e:4c:01:ca:cc:73:08:3e:8c:49:52:db:ce:aa:a1:a7:
d4:00:cb:24:ad:10:0a:8d:6b:b4:20:f0:62:95:3f:b8:34:cc:
4a:19:71:61:b4:30:fc:7b:25:3f:9b:a9:ab:33:fb:b2:4e:b5:
1a:75:e4:ab:11:fd:f8:54:ea:70:81:c0:d4:69:af:5b:90:f4:
45:39:7d:23:8c:78:f1:40:1a:08:51:35:fd:55:5c:e1:a3:69:
09:2c:ff:08:2a:d4:e3:5c:e6:38:52:71:ee:27:3d:7b:7b:d5:
90:62:ba:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:45 2025 by rpki-client