Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json)
Hash identifier: YUOPDRe5xxCKDRTcjhJtzrVLgB0TDXPkARuk8y9aNT8=
Subject key identifier: 84:F9:6B:84:3F:35:D0:5C:54:65:5B:37:75:8A:78:96:F2:BB:ED:E9
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 01974C6A290B15058C9E0F5ABD440EF50B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
Manifest number: 11C3
Signing time: Sat 07 Jun 2025 22:01:55 +0000
Manifest this update: Sat 07 Jun 2025 22:01:55 +0000
Manifest next update: Sun 08 Jun 2025 22:01:55 +0000
Files and hashes: 1: 1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa (hash: hFOtYhVCGxVTmNvasMZGAdD1D7TMmY398V7CPu+M+nU=)
2: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: 5A39jGINipY2mr/nX8OdgIGX34uP1lIcEL6r7eyt7VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:6a:29:0b:15:05:8c:9e:0f:5a:bd:44:0e:f5:0b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: Jun 7 22:01:55 2025 GMT
Not After : Jun 8 22:01:55 2025 GMT
Subject: CN=84f96b843f35d05c54655b37758a7896f2bbede9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b3:e7:fa:bf:1d:b1:2b:e7:f2:f8:85:6e:78:
f5:98:97:44:a3:6e:af:b2:7a:27:90:ae:09:e5:2d:
0b:22:fb:82:1b:ef:81:b1:82:0d:38:d2:19:17:b7:
96:50:a3:46:3e:74:42:ea:ed:f6:5c:1b:a6:86:77:
da:25:75:73:fc:36:e2:9b:22:aa:4e:10:42:95:87:
49:2c:80:4f:95:e6:7f:ce:8a:f9:85:1d:c5:4b:70:
ea:09:df:35:51:b8:8d:6f:f9:ad:5f:e6:ff:fd:37:
90:fb:63:4a:72:6b:a3:47:79:55:f2:73:56:48:ce:
eb:8d:c0:4d:ea:1e:b1:ec:d8:8c:8d:6b:f5:d3:b9:
7b:0b:a9:e7:99:0b:ba:8d:b1:b8:19:4c:0e:1f:f2:
e9:38:95:0b:22:16:3c:87:3d:19:b4:c0:4d:af:3c:
b2:c3:08:12:4c:a5:97:db:21:19:3f:2e:7b:a3:d9:
6e:da:80:00:1f:09:63:a0:58:3e:bc:0b:e7:86:3a:
48:28:45:17:50:5e:08:9e:04:69:39:7c:b6:e7:70:
7c:7c:c5:35:49:b9:8d:e8:5b:d1:90:72:76:56:20:
7a:35:81:92:e8:21:e6:27:61:a3:76:c4:40:22:a6:
a6:33:04:12:f1:c5:26:bb:3c:1d:8c:3c:8f:83:b9:
d0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F9:6B:84:3F:35:D0:5C:54:65:5B:37:75:8A:78:96:F2:BB:ED:E9
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:32:1f:8e:35:38:18:c3:81:65:c6:b3:92:8b:e2:0b:55:72:
da:8c:7d:83:e8:0e:d0:fe:f3:2e:f3:38:cc:54:44:2e:9b:61:
d2:d2:31:a1:89:28:4f:18:d0:e2:9b:0f:43:d9:b4:85:bc:91:
71:d4:4f:4b:f2:26:54:b3:99:26:2f:a3:4b:e2:ed:5d:cc:82:
58:36:90:3a:c0:15:18:40:2e:f9:b4:d5:9f:01:fa:a7:f7:ae:
5c:1c:3e:ba:e7:3c:1d:05:84:c6:b5:46:14:47:a1:e6:77:53:
bb:b6:ef:0a:32:3d:63:b3:e2:38:7b:2d:dc:c8:a6:cc:67:ee:
68:24:c8:a9:87:2e:a9:37:15:ed:23:3c:ad:e0:df:80:fb:cd:
63:0d:14:3b:03:80:29:d6:ea:aa:6b:ec:52:e1:3a:fa:8f:71:
58:83:72:62:d9:88:ae:a3:26:d9:05:b2:a3:90:e1:4d:5b:76:
2e:28:dd:d1:a7:65:ab:8c:ca:87:f6:46:4c:3e:d7:45:f4:61:
12:78:4c:bb:b5:7d:93:82:49:9b:91:4e:10:61:3e:80:47:f6:
86:75:cd:c6:ad:e7:d9:dd:3f:8d:38:1c:9b:70:54:75:1b:7e:
d8:0a:01:aa:25:53:7d:f0:b5:2a:6e:16:cb:49:98:a9:f6:01:
6c:40:dc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:17:30 2025 by rpki-client