Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: lo1FyimyhFz5RQlmE1G7OVMqFMGvfS+RJ97lcpmdwq0=
Subject key identifier: 95:7D:E7:18:9A:8C:F8:41:C5:91:A9:EF:9D:7C:3E:11:DE:F8:4B:44
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 01984B534612FEA0584099BC1AA5F78DB028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1180
Signing time: Sun 27 Jul 2025 10:00:05 +0000
Manifest this update: Sun 27 Jul 2025 10:00:05 +0000
Manifest next update: Mon 28 Jul 2025 10:00:05 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: lhNMWlezxyhaF6xfOZ4v8C5eWuAIITYY1439yEOw0Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:53:46:12:fe:a0:58:40:99:bc:1a:a5:f7:8d:b0:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Jul 27 10:00:05 2025 GMT
Not After : Jul 28 10:00:05 2025 GMT
Subject: CN=957de7189a8cf841c591a9ef9d7c3e11def84b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:1a:4e:52:05:4d:07:3c:96:ef:e3:5b:ba:
8c:b8:9d:6e:8e:19:ad:27:dc:6b:2a:ab:ff:27:80:
11:c2:94:fa:d2:2e:63:ed:ab:2d:92:d8:87:5a:66:
ab:86:ec:8d:d6:1b:b0:6b:3d:1f:e3:59:3e:d2:85:
8a:06:0b:4e:25:02:55:b3:04:85:7f:76:c0:ef:bd:
ea:58:04:4d:03:a3:6d:70:8b:9c:0b:c7:01:f7:7d:
31:26:13:f1:c1:db:90:cc:f1:c3:cc:30:ef:7a:ec:
68:e3:c3:e7:de:db:3b:56:d8:52:2f:5b:fd:60:42:
82:ca:9d:57:16:6f:3a:a0:de:5a:f5:c2:43:30:6b:
20:90:09:9f:56:f4:74:a9:ff:b8:7a:9e:94:d6:e5:
60:f7:a7:60:39:38:4e:2b:ff:68:64:be:bc:1d:fa:
aa:f8:c1:3d:0b:ee:b7:43:fb:3e:47:d1:f0:c4:c0:
38:c4:4b:f1:f2:dc:cb:9f:d3:98:d1:85:8b:d5:ef:
14:eb:24:14:23:42:aa:b1:22:db:47:42:b2:77:9d:
fe:6f:07:6a:03:7d:ba:38:4e:c0:f0:fe:30:dc:85:
e0:b1:ac:bd:6c:00:8c:2d:3b:26:13:41:6f:be:20:
3b:b0:a7:4e:5f:5d:4d:26:06:cf:47:b3:69:52:36:
93:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:E7:18:9A:8C:F8:41:C5:91:A9:EF:9D:7C:3E:11:DE:F8:4B:44
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:2f:3d:33:09:86:26:08:b9:b1:e6:5d:f2:3d:81:06:88:4e:
ef:8c:b4:1c:57:ab:9c:fe:39:2b:22:d0:61:2e:da:9d:5c:5a:
70:f1:63:e0:df:39:47:ce:9c:46:06:c3:c2:2b:9a:51:15:c9:
78:9e:fa:3a:a8:de:76:79:b1:2f:30:e3:ab:29:2c:ff:2a:85:
be:17:f4:3b:50:71:57:ba:8f:02:db:ea:dc:30:15:50:c2:e7:
d7:6e:52:31:6a:68:84:19:35:5f:71:ce:a3:5d:b5:cc:52:1e:
d8:f9:d9:5c:14:ef:b6:29:02:d2:2f:5e:78:4d:f4:90:87:f9:
0f:e3:42:1a:7b:83:a6:ae:db:21:aa:75:44:b6:b4:fd:6f:a9:
ed:90:d7:2e:70:dc:7a:c6:cb:b6:e0:9f:73:06:a9:4b:0e:85:
ae:ec:47:fe:ef:fb:27:8c:f2:1a:77:e0:3a:61:97:09:a1:51:
20:c8:fc:2a:30:3e:0b:c7:9e:b8:6d:ff:6a:25:8b:35:e6:a5:
79:e6:83:4c:11:53:aa:ec:76:02:f5:74:fb:20:27:eb:ca:57:
97:03:c8:4c:95:5b:5d:69:63:13:ef:fc:7b:07:e6:37:96:dc:
c7:88:c1:2b:e6:3b:f4:0c:63:48:78:a2:ca:94:9e:98:71:4b:
46:72:1b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 11:56:16 2025 by rpki-client