Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
File: CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft (raw, json)
Hash identifier: H2kj9i61PhIaTr90j4BtquBWgaIUbGocYKTz8+v/P6M=
Subject key identifier: 7B:B5:F0:8D:CF:19:66:85:A3:17:61:DD:3D:BC:22:AE:F3:6A:AF:25
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 01974AB1A6AA2D47B4C2DDA40F29A90FB2DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
Manifest number: 0DC1
Signing time: Sat 07 Jun 2025 14:00:45 +0000
Manifest this update: Sat 07 Jun 2025 14:00:45 +0000
Manifest next update: Sun 08 Jun 2025 14:00:45 +0000
Files and hashes: 1: CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl (hash: 6/10Ku3kVDNVKA2XlSS5zAlSAJHtTmVZKi0Ak714MeU=)
2: xhegVBAKk0XT86_ijfwUPQBwbjE.roa (hash: HzUtvDRCwVOU+h+rA3imDZdqrxNmwf2Nw3JBM6GcfyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:a6:aa:2d:47:b4:c2:dd:a4:0f:29:a9:0f:b2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: Jun 7 14:00:45 2025 GMT
Not After : Jun 8 14:00:45 2025 GMT
Subject: CN=7bb5f08dcf196685a31761dd3dbc22aef36aaf25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a9:c2:32:d4:08:88:31:74:cd:5a:7e:9e:9b:
b5:11:ad:d8:d0:70:d3:61:da:b4:1b:1c:8a:39:e3:
a3:43:65:a0:14:7c:2a:92:ce:39:c6:c3:ef:5c:86:
00:67:ad:80:c0:85:54:bc:5f:01:59:02:6f:02:a7:
1e:d0:66:bf:af:ca:9e:64:6d:af:6f:7b:d0:74:df:
7e:cf:23:77:01:58:8f:1b:10:11:38:5b:7e:a4:79:
00:a9:54:4e:ad:37:b9:fb:f0:98:4f:99:8e:50:64:
90:4c:43:8a:53:9d:35:01:5a:19:39:79:64:72:1a:
ba:c4:35:f9:19:b8:b7:3a:f7:fe:0e:df:d3:63:40:
f6:b1:6e:04:e0:69:21:ea:42:27:ea:66:8f:1f:60:
40:42:8c:dd:fa:6e:7e:d2:18:ca:a9:15:60:58:f6:
32:57:d8:38:68:31:80:29:a1:0e:d8:12:39:ed:7d:
1b:08:78:32:11:dc:9e:44:3b:03:2d:5e:fd:a8:33:
43:50:b4:25:90:ba:97:d3:de:3a:e1:c0:59:51:76:
55:c8:26:39:03:64:32:78:b9:2a:f1:d5:17:fe:21:
cd:d7:5b:62:6f:df:13:29:12:ef:00:56:b9:54:5d:
54:c0:c4:af:6f:e6:da:9b:3a:23:ad:b0:a2:4c:dc:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B5:F0:8D:CF:19:66:85:A3:17:61:DD:3D:BC:22:AE:F3:6A:AF:25
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:59:b2:e6:50:4c:86:f5:45:67:bc:2d:b6:27:1f:31:da:e4:
be:d6:dc:bc:35:c0:79:6b:a1:72:d9:2b:1a:0b:b6:17:2d:46:
0a:0c:b1:52:c9:7d:bd:4a:59:c7:00:45:49:0a:5c:cb:3c:03:
3c:b7:02:59:3e:ad:e2:c3:a4:35:26:fb:44:fa:3d:8b:68:9a:
d0:bc:2f:df:21:bd:dc:ad:94:d3:c0:4b:1c:4c:99:40:96:f9:
05:82:1e:17:2e:d7:ae:b4:b5:27:3e:53:39:0c:6f:cb:38:90:
c8:00:01:c5:47:7a:0c:2b:64:a8:6b:4e:91:a4:37:73:62:75:
37:82:34:40:3d:23:c3:a0:40:69:de:fb:a3:af:f2:da:f0:a6:
3a:26:2d:01:f1:c4:c9:b8:28:1b:6e:ff:27:72:9a:a3:64:25:
3d:f9:31:cf:b1:c1:04:43:b6:bd:c1:dc:28:d2:be:8d:b9:1c:
92:dd:e1:52:6a:d3:2f:f3:91:6e:e3:00:70:7b:55:ed:c5:d6:
d6:a1:11:bd:55:15:87:26:05:25:06:4a:ea:e8:63:03:92:fe:
1e:f9:63:ec:9e:02:8f:e9:a9:23:91:91:c7:d9:3e:91:03:83:
f1:06:13:20:03:87:64:5d:8e:8b:cc:1d:9b:d3:76:8a:1f:f9:
0c:75:a2:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:29:22 2025 by rpki-client