Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: o225/UmeRTvHYSwAcirDnXqOvr9d7UTS9GnbRXnh3Ro=
Subject key identifier: B5:F4:19:AE:93:BC:81:86:DA:54:ED:EB:19:07:34:46:DE:1D:6C:8B
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 01995BA28053F98F1128C5005F2D9AA00BC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 120D
Signing time: Thu 18 Sep 2025 07:03:19 +0000
Manifest this update: Thu 18 Sep 2025 07:03:19 +0000
Manifest next update: Fri 19 Sep 2025 07:03:19 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: HKTeGJBcWSGh7wgPlzWlNdzFCtXmo6cr5DDDwdOrnvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 07:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5b:a2:80:53:f9:8f:11:28:c5:00:5f:2d:9a:a0:0b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Sep 18 07:03:19 2025 GMT
Not After : Sep 19 07:03:19 2025 GMT
Subject: CN=b5f419ae93bc8186da54edeb19073446de1d6c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9b:96:cf:18:df:b6:ac:64:cf:81:aa:25:78:
cd:ff:06:c3:5b:a7:4c:61:89:92:19:88:fb:3a:80:
a1:9c:7e:45:76:ba:ab:0a:ba:87:72:3e:0b:96:cd:
ac:db:47:ba:31:2d:29:44:a8:1b:01:35:a3:a1:08:
a6:e2:9a:7a:03:63:b0:06:86:2a:20:a4:50:ba:35:
9c:21:e8:07:65:88:a6:bf:f1:cc:a0:56:8f:c1:b9:
b7:7d:23:ef:a1:28:6b:ed:1a:eb:a3:63:ca:3a:06:
1c:56:ec:88:b9:5b:70:1c:05:4c:34:62:65:b8:73:
2e:8b:da:80:6f:a1:3d:86:c5:af:a0:4d:ad:5e:fa:
e2:58:47:56:b6:65:6d:62:fd:0c:0f:24:01:bf:33:
71:93:04:d6:84:f7:a4:63:58:a1:f3:81:d1:d1:ee:
12:60:f3:16:fa:b4:f6:d1:62:ce:a8:3e:28:61:5d:
a9:58:14:14:2c:24:2f:e6:53:8e:e2:f1:29:17:f0:
83:75:12:9d:9a:ce:00:06:b9:f4:99:2b:56:4f:20:
0b:0b:04:a1:9d:16:b3:83:9f:1e:f7:71:56:5e:c6:
4e:1c:2c:d9:3b:7c:af:f4:62:23:a4:99:87:70:a1:
40:6d:30:02:60:d8:6a:b5:3f:d6:e3:dc:b8:9a:df:
de:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F4:19:AE:93:BC:81:86:DA:54:ED:EB:19:07:34:46:DE:1D:6C:8B
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:74:2b:fd:6b:f9:0f:44:6c:11:bc:04:9d:0e:a7:c0:1e:d6:
91:36:ac:06:6e:02:2d:3a:30:c4:9e:4b:d7:df:01:b6:bd:0f:
b7:6b:f2:48:f4:35:05:f5:21:82:5b:53:25:2b:ce:db:09:12:
02:d2:32:35:dc:ca:03:81:e0:d5:2b:e5:ce:d6:8b:e7:52:56:
b1:1a:08:d1:fa:dd:dc:d4:cd:02:c0:b4:87:7e:72:82:12:61:
c7:e4:1b:7c:6a:31:2e:53:4f:8c:10:a3:2c:6b:c3:69:a0:15:
82:6d:4f:61:ca:7f:af:68:f6:18:c2:72:8a:24:e8:0b:f8:ce:
35:1c:c4:3c:1c:36:a5:26:ab:3c:91:5c:3c:43:cd:b6:99:06:
88:d9:a7:b8:ac:52:6e:cf:cb:17:24:36:d4:15:3e:0b:39:b0:
9d:b1:5f:53:1a:34:8d:31:d0:99:31:29:20:1c:49:3a:a7:49:
4d:6f:93:3a:f3:95:49:90:44:d6:d4:1a:c4:06:d8:5c:4c:e7:
b1:5b:d1:33:1d:1f:b4:7b:e0:20:2d:14:ff:3b:d2:75:60:ec:
dc:ac:70:76:05:b6:8f:9d:2d:fb:19:dc:c9:5f:55:f5:77:99:
83:0d:09:b0:7e:2e:09:c5:c0:c3:bf:30:34:3e:36:2f:6b:48:
e5:f8:33:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 10:07:30 2025 by rpki-client