Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
File: CZ05RkE90RFhtGx99q02Kpk41dQ.mft (raw, json)
Hash identifier: q5bWtxs1Ije/9l3F7jbSovuU9TCyrWNhw7OKN0XGYns=
Subject key identifier: 64:77:0E:30:46:66:3C:D5:85:A0:7C:A9:7E:90:CF:52:DB:05:34:5C
Authority key identifier: 09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
Certificate issuer: /CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Certificate serial: 019748F9EE640555022D9A6FB974766A1378
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
Manifest number: 034C
Signing time: Sat 07 Jun 2025 06:00:28 +0000
Manifest this update: Sat 07 Jun 2025 06:00:28 +0000
Manifest next update: Sun 08 Jun 2025 06:00:28 +0000
Files and hashes: 1: 1-jvgd6RnvKghGloVJb1Iw3eDs48.roa (hash: B7s4SajlBd3EvNe+3zoLXiT8A5U0bChHVGW9zyQgNFY=)
2: CZ05RkE90RFhtGx99q02Kpk41dQ.crl (hash: I/26ZqoCAONP+8t4MPlGgK/6ATQMliJpmOLv/SNJUag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:ee:64:05:55:02:2d:9a:6f:b9:74:76:6a:13:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Validity
Not Before: Jun 7 06:00:28 2025 GMT
Not After : Jun 8 06:00:28 2025 GMT
Subject: CN=64770e3046663cd585a07ca97e90cf52db05345c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:83:e7:f8:47:86:41:01:30:ad:df:b6:aa:a3:
81:98:be:05:af:af:11:f8:1b:38:b6:42:8a:41:e3:
6a:0a:e8:a9:d7:5c:aa:8e:ce:9a:1b:a0:18:94:80:
71:b2:9c:d9:f9:3f:d1:4a:c1:ea:ed:89:f8:ba:fb:
30:96:ae:74:9d:cb:50:25:82:b5:e5:48:5c:40:77:
e9:96:36:bd:cd:81:c4:c2:43:63:e5:08:41:ed:c1:
f1:a4:84:34:c0:25:98:fc:ed:b6:df:9b:2e:63:c8:
0b:da:d3:41:bd:10:08:1d:6b:13:06:fc:a5:2d:51:
05:6e:16:31:12:d6:b5:51:1d:4a:7e:53:eb:8a:ef:
1f:46:3d:39:58:37:b8:1d:0f:c0:39:a0:a3:34:e7:
a0:36:1b:91:72:9d:08:86:3f:7c:ee:50:09:79:8e:
4d:9a:24:dd:90:ca:83:15:d4:89:42:f6:1f:a7:81:
39:bc:19:d0:ab:34:15:47:62:30:2a:4b:48:bf:ba:
4a:c4:2f:a2:ac:7f:f6:20:b0:61:4e:59:9c:a3:bf:
97:72:d0:10:71:35:12:ef:18:b4:f6:3a:ee:93:2a:
ae:b0:43:4a:67:1f:92:dc:3a:d4:77:b1:63:66:c3:
74:8c:19:6d:14:e5:3d:fd:91:be:7a:d8:5d:0d:ec:
fc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:77:0E:30:46:66:3C:D5:85:A0:7C:A9:7E:90:CF:52:DB:05:34:5C
X509v3 Authority Key Identifier:
keyid:09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:01:ad:fe:47:5a:59:c6:f7:28:75:43:87:26:3d:d2:61:d4:
54:a2:66:f5:bb:4b:d0:df:ce:f8:c7:4b:11:7d:e8:f9:c6:6a:
d2:7f:55:27:30:39:0d:cb:d7:18:d1:31:87:c7:33:ee:69:98:
1c:53:8c:ec:d1:48:88:97:62:5e:7c:99:51:bc:e2:b0:1f:78:
df:4b:94:1b:84:49:c4:fb:6d:b7:4c:56:57:ca:44:1c:90:69:
00:bd:4c:06:5d:aa:2b:b1:3f:01:2c:29:12:73:aa:ca:0c:0d:
45:66:fe:8c:bb:3d:c5:a3:cc:b7:78:1f:99:53:8a:ee:28:77:
42:e5:91:24:53:1e:a3:33:70:7e:24:d4:0c:ea:64:e4:5b:74:
95:14:f8:f8:07:f6:aa:0c:45:da:85:31:f9:43:a5:9d:65:b6:
a7:2b:80:fe:06:24:67:0c:ed:32:0c:de:cc:f9:fe:34:d7:94:
a6:d3:21:90:5a:52:9f:38:6a:e6:57:bb:1a:9b:66:94:6b:1f:
3c:c2:35:27:ff:e7:49:56:f8:dd:b6:38:a8:d7:fc:62:22:1f:
5f:fc:3f:9b:72:f4:06:3b:06:67:84:e8:db:2d:a9:c0:7a:17:
47:0a:17:a6:d3:7e:d7:16:00:5d:39:12:c2:44:45:51:fc:5c:
4e:2b:f1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:56:34 2025 by rpki-client