Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: ExgssB0GEY7jR+Y2RY3/NiJBUBxj9W2ZPL4YZ6xMR4s=
Subject key identifier: 9D:AA:D6:FD:82:4D:4B:33:9E:83:24:A2:26:9C:19:BB:ED:8A:26:FE
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 01974A7AB002B9953204AEFD268C5B66C1AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 046D
Signing time: Sat 07 Jun 2025 13:00:43 +0000
Manifest this update: Sat 07 Jun 2025 13:00:43 +0000
Manifest next update: Sun 08 Jun 2025 13:00:43 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: 3Q1GcBuR5s+dPeTfVg5SDp/aU6s9OSrLIK3msKQkKAM=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:b0:02:b9:95:32:04:ae:fd:26:8c:5b:66:c1:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Jun 7 13:00:43 2025 GMT
Not After : Jun 8 13:00:43 2025 GMT
Subject: CN=9daad6fd824d4b339e8324a2269c19bbed8a26fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a6:b8:05:60:55:91:14:85:99:d2:56:e1:8b:
1f:8d:b8:1c:4e:ce:cb:ed:2e:a6:7c:f5:52:aa:5c:
03:75:a6:a4:33:da:c5:a2:26:c4:27:c3:16:db:56:
ef:54:f4:54:a6:bd:51:7e:95:86:5b:75:65:86:7a:
bf:1a:35:24:3f:c8:c7:10:29:74:9e:13:31:58:f4:
e0:47:e0:a8:d2:70:b3:1c:ac:2a:82:c0:75:59:60:
e3:1b:ee:70:a9:cc:98:93:e3:56:b4:8a:eb:c2:4d:
4a:74:b6:37:52:90:0f:07:68:f3:86:d5:4c:38:52:
20:92:83:88:b5:bb:93:33:f4:a5:46:9d:f4:c8:47:
f2:2e:b1:0c:fb:38:75:e4:0c:6c:68:be:46:4e:6c:
68:2f:df:38:d6:bc:7f:bd:2a:5e:62:58:31:5a:34:
0c:ed:44:f2:7a:3e:cd:ad:fb:38:c3:9c:46:40:d0:
97:a4:de:d6:7e:fb:75:9b:26:76:cb:04:d5:a8:ae:
f1:9e:e5:ec:f2:74:14:88:e0:01:43:4f:bc:04:cc:
81:ee:48:c9:82:1d:8a:8a:7a:b2:13:24:0d:72:c2:
30:d7:f2:2e:06:5d:cb:56:96:9d:06:64:5d:1d:03:
e2:a1:b6:57:db:82:4a:9d:47:5f:cc:9a:20:8a:b1:
72:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AA:D6:FD:82:4D:4B:33:9E:83:24:A2:26:9C:19:BB:ED:8A:26:FE
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9f:f9:1a:5c:56:c2:b9:46:de:d6:b3:8b:28:79:b9:ce:2a:
b5:ea:ac:1f:3f:37:e6:52:be:05:e8:d8:82:f1:e9:c9:65:24:
bc:d0:21:f0:fd:28:04:5e:29:cb:e4:8f:3c:73:42:f9:a0:0c:
21:c4:53:1f:8f:b1:46:95:0f:93:ec:3e:03:30:05:4e:f7:91:
60:88:46:d8:9e:4b:10:e6:e3:a1:db:41:50:a0:75:84:bb:7c:
cb:1a:03:2f:d6:da:ca:a7:44:a3:65:e1:fd:94:53:95:72:f5:
ac:3e:7e:b0:80:92:06:88:d8:ef:29:02:5e:09:40:63:77:3d:
3d:9e:b9:d4:9c:f1:27:31:dd:63:98:27:80:22:60:6c:68:68:
f5:33:64:3b:c5:f5:b1:e4:a2:cb:84:ce:2e:03:1f:76:8b:7f:
c8:53:b9:e0:df:dc:83:48:46:96:6c:f5:3d:16:14:e1:34:61:
9c:d5:1c:50:1d:b5:58:fa:46:7c:43:f1:35:34:04:bc:62:69:
dd:2b:f4:1a:4b:cf:21:53:8e:15:a3:95:94:d0:8c:9b:c3:36:
00:38:5d:a7:5a:24:65:6b:95:f6:2b:b1:d4:7b:62:7d:ae:b6:
72:80:c1:ba:4d:76:98:0e:f8:b3:e0:95:dc:19:80:4e:e1:7b:
96:4a:23:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:27:43 2025 by rpki-client