Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: 34OHIjenguA8k6aCEJLL/br2Rp7WgdpEPxmEwWHpWMA=
Subject key identifier: 6B:B0:D9:72:9F:47:42:A4:20:A2:BB:E7:A0:CE:2F:A3:79:E2:76:72
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 01992B5A833A4BDBE3D5C5B7A872C745EE67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0566
Signing time: Mon 08 Sep 2025 22:02:56 +0000
Manifest this update: Mon 08 Sep 2025 22:02:56 +0000
Manifest next update: Tue 09 Sep 2025 22:02:56 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: FqgcK1dr+CryDRARRo4by7ybrm6LO3fmiNzw3ihCuSI=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 22:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:5a:83:3a:4b:db:e3:d5:c5:b7:a8:72:c7:45:ee:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Sep 8 22:02:56 2025 GMT
Not After : Sep 9 22:02:56 2025 GMT
Subject: CN=6bb0d9729f4742a420a2bbe7a0ce2fa379e27672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d3:6b:a5:c8:ed:a1:30:60:27:65:db:a0:5b:
4a:35:62:16:1e:25:de:e6:ec:bc:44:1e:17:d2:78:
41:24:e2:45:b8:1d:0b:67:ce:83:cb:1b:a1:49:07:
70:c5:bc:4d:d4:80:45:7c:e7:56:30:1f:e9:16:7f:
dc:d5:22:96:54:f8:7d:fd:d8:55:ec:d3:24:9d:22:
6b:9a:8b:ab:a4:f2:b7:56:91:66:01:18:b8:22:f0:
4e:62:05:f1:c7:1c:5a:b6:e5:52:7e:23:56:a3:0b:
68:79:9f:6e:a1:42:f4:65:63:e6:51:24:6e:66:f7:
4a:95:4f:89:aa:c7:04:1b:9e:72:93:78:af:25:dd:
d1:89:b8:9e:25:0d:92:f6:15:4b:ef:04:a3:3c:5a:
ab:d1:8b:05:e1:56:2d:a5:0b:72:32:11:ab:83:1a:
7d:9b:b7:4c:b8:63:f2:c8:0f:13:93:98:a8:a4:41:
c3:7c:ef:83:e8:44:8c:d6:92:c7:15:e6:b9:06:fe:
65:2d:ed:76:68:ca:1e:de:44:01:e7:e7:74:af:76:
95:6b:6e:41:d7:58:62:fe:1d:e3:5c:7b:27:13:18:
c6:f5:a7:b3:a5:cc:ec:8c:c2:b8:21:58:66:03:6e:
0b:30:4c:ef:37:c4:ef:8f:d7:ee:77:52:ae:30:b4:
a6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B0:D9:72:9F:47:42:A4:20:A2:BB:E7:A0:CE:2F:A3:79:E2:76:72
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:25:c2:8e:b1:70:46:8c:17:11:f3:1e:84:06:08:12:98:02:
2b:70:78:35:eb:57:90:77:8e:c3:41:45:4b:88:b7:5d:57:82:
ec:7a:9e:c0:8f:86:59:be:e3:f5:d0:7c:4a:96:58:ed:01:35:
5e:fc:cf:8d:a0:18:77:b5:e2:68:1d:01:52:62:da:e5:21:bc:
e3:fc:42:4f:97:7d:60:28:3d:98:66:cf:ee:9c:fb:ea:87:f1:
81:47:83:42:31:df:67:2f:01:11:9d:44:dd:5d:10:80:55:a9:
2b:56:a4:f1:99:a8:5b:a0:38:74:07:04:42:8b:92:66:4e:8d:
31:0a:28:dd:1e:54:42:dc:57:23:fc:cc:35:b7:45:27:f4:f6:
90:01:b7:f4:4a:08:b6:a4:3c:89:dd:61:86:31:7c:91:09:98:
00:a4:99:99:3e:72:81:ff:c7:59:3f:7d:d9:d4:1f:d8:07:4a:
3d:46:a2:03:b5:71:37:a9:28:d1:bc:c7:ce:83:41:33:2e:f8:
90:d3:6b:c7:6f:d8:66:65:56:5c:01:71:49:f5:f5:4f:9d:7b:
7d:a4:95:7d:db:27:14:8a:1c:9b:ac:d5:e8:26:51:dd:84:0e:
94:bf:a9:68:ea:63:6a:12:09:a4:61:e0:4c:44:37:92:d9:36:
53:c4:54:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 01:38:41 2025 by rpki-client