Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: rT0bpbgc048J7vfDRhFWuwW7JsZqYDL3FDxziCpqKEI=
Subject key identifier: E5:C2:67:76:44:D0:4A:FD:4C:3D:A9:C0:89:73:C1:30:B7:D9:AA:14
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 01964D7DEE6510CBDA7DA091AFF7C45B09F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 03EA
Signing time: Sat 19 Apr 2025 10:00:20 +0000
Manifest this update: Sat 19 Apr 2025 10:00:20 +0000
Manifest next update: Sun 20 Apr 2025 10:00:20 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: ls2XhJwgOHW8awuxiAMlKOFVM5vm9nYvaAnMS6v27Us=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7d:ee:65:10:cb:da:7d:a0:91:af:f7:c4:5b:09:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Apr 19 10:00:20 2025 GMT
Not After : Apr 20 10:00:20 2025 GMT
Subject: CN=e5c2677644d04afd4c3da9c08973c130b7d9aa14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:07:34:d2:64:fe:ac:1a:2a:3d:9c:0b:35:7f:
b9:97:4f:09:19:5d:b0:4a:d1:70:b8:d9:d5:41:8b:
ee:94:69:48:98:82:12:fe:83:18:19:b9:76:b1:08:
18:08:f4:18:df:ba:ca:e0:c8:0e:21:bf:be:5f:a2:
05:c0:a2:00:d9:46:c3:f3:26:0b:13:e9:dc:4c:6d:
c9:c6:32:74:97:c2:83:4e:04:7e:d6:2e:5e:97:35:
04:10:e1:a1:bd:8b:1d:2f:81:f8:2f:91:ed:cf:b4:
a5:aa:2c:ac:2b:e9:02:c3:bb:4a:75:50:2a:91:e0:
d8:38:88:8a:68:1b:a2:59:b8:7e:62:eb:1b:40:e5:
45:31:f4:a8:10:fb:a6:59:ca:82:73:d9:0e:24:a3:
83:e5:bf:fc:e0:99:5f:19:87:44:e8:66:88:ce:00:
eb:c7:d9:b9:06:f1:50:a3:1d:c1:dd:87:c4:ff:ae:
49:06:8c:a4:3b:e3:06:0c:9f:4d:18:6e:c4:3b:3e:
ed:9b:e8:5d:65:5b:65:d6:36:c9:b5:85:4f:d2:eb:
73:e8:b2:10:5b:87:5c:43:f7:9a:fa:b4:d4:7b:5d:
8b:77:9c:35:f1:e5:82:f5:92:4d:50:98:18:54:27:
bb:00:a0:40:38:e7:0f:6d:1e:73:e7:c6:09:76:2c:
6e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C2:67:76:44:D0:4A:FD:4C:3D:A9:C0:89:73:C1:30:B7:D9:AA:14
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b6:c2:9e:d0:a0:5c:36:e5:7a:d7:e7:15:63:e6:69:e3:39:
d9:c0:ac:d7:69:34:0d:2a:01:1d:60:84:19:3b:a3:03:77:0e:
99:f1:38:d4:2c:dd:71:c6:50:dd:0e:d5:63:67:7f:66:d4:57:
75:83:e6:32:0e:04:37:71:cb:7a:a7:12:5d:ac:1b:89:4a:2c:
a4:96:f1:9a:d6:40:75:7e:35:81:e0:fc:50:62:d7:23:1a:f6:
b7:1c:1a:fa:83:64:54:92:72:64:37:6d:a2:f2:53:d6:30:16:
54:72:2e:74:83:ee:ff:c0:fe:72:7d:92:56:f2:1c:a1:1f:f3:
06:1b:9b:89:57:12:da:bf:02:77:c4:47:9d:b4:e7:b3:1c:14:
5e:bd:1f:78:14:04:f6:e8:73:e8:88:cf:98:8a:b0:ba:11:d2:
3d:7c:ef:31:4a:83:05:84:37:03:9a:7f:80:da:f3:97:61:5c:
e4:12:38:d4:9e:0f:33:f6:25:a7:9a:bc:dc:07:5e:d7:fd:c4:
1f:84:f4:dd:c8:ec:68:91:3e:10:9d:f3:cb:a1:79:0d:46:d8:
81:6a:a5:f1:ee:c9:75:55:48:5c:35:f4:7c:02:5d:3a:12:cf:
ba:9c:40:53:d4:94:5f:89:47:60:2a:b5:1b:e4:c9:a1:cb:c1:
9a:db:d3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:12:18 2025 by rpki-client