Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: yDKRMAD4apXMgTxR97Feov4l+Ck4afJCeKsrbGWP7us=
Subject key identifier: 3E:1E:68:4B:43:A5:C8:04:7F:46:C1:74:A0:6D:B7:C8:7A:C6:A9:CC
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 0198D54E1B0918E13DFC33043C5EB2F9D17A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1263
Signing time: Sat 23 Aug 2025 05:02:02 +0000
Manifest this update: Sat 23 Aug 2025 05:02:02 +0000
Manifest next update: Sun 24 Aug 2025 05:02:02 +0000
Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=)
2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: d1dpFoe1sP1IcJGl7iD/p3dNEdsofhqE7+aEWh4c+9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:1b:09:18:e1:3d:fc:33:04:3c:5e:b2:f9:d1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Aug 23 05:02:02 2025 GMT
Not After : Aug 24 05:02:02 2025 GMT
Subject: CN=3e1e684b43a5c8047f46c174a06db7c87ac6a9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0a:10:5e:1f:eb:bb:c3:81:85:6d:c4:f9:85:
1c:cc:ad:6d:b4:6f:d9:82:e4:90:b7:0b:79:2c:fb:
a8:26:43:77:05:11:cc:e7:ff:e9:08:5c:2d:a7:13:
28:76:19:c9:70:08:9c:8b:ef:0f:6c:97:9d:c5:f8:
45:dc:e2:99:e1:2c:f8:09:f0:70:b2:41:b2:5c:2a:
ec:59:6b:22:fd:cd:9c:ca:24:cc:d4:a3:1f:f7:a8:
7b:80:79:19:76:14:a4:db:64:07:32:82:cc:22:c0:
69:8e:eb:48:2a:3d:be:e6:60:aa:d5:06:82:65:6d:
12:b9:a5:f9:c6:70:d4:03:56:dc:d4:ae:da:e1:3e:
67:71:3c:bb:80:6c:2e:08:39:1c:1b:65:29:5e:2c:
95:4d:0e:8a:5f:1a:c0:3f:09:fd:e1:f7:27:ee:24:
03:47:7e:2f:3a:be:ae:c3:a9:bb:22:12:16:98:fa:
5c:99:da:06:8b:0f:b7:6a:7c:9a:91:70:ed:48:ea:
65:a6:60:54:d7:3b:04:23:b8:a4:57:82:6c:ac:a2:
69:f5:93:b8:44:9e:49:5b:19:35:a4:07:c8:2a:3f:
70:47:45:d9:b9:70:75:0f:18:4d:9d:05:9c:97:18:
d7:53:43:7b:f3:9d:fb:98:90:f2:90:88:72:82:12:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1E:68:4B:43:A5:C8:04:7F:46:C1:74:A0:6D:B7:C8:7A:C6:A9:CC
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:ba:d4:66:59:65:fd:7c:be:8f:c6:84:09:89:a3:df:95:2d:
b2:00:fe:a4:e5:4c:00:37:a9:7d:41:02:09:4d:aa:6d:36:eb:
1f:c3:eb:c5:98:6c:b1:8c:47:65:78:86:c6:95:9e:27:00:cd:
5f:58:de:99:0f:2c:4b:64:09:cd:af:6b:e5:0d:77:83:d5:e1:
3b:ae:ad:af:85:5f:bb:4f:3e:31:4a:32:1f:83:2d:63:08:b9:
8a:65:2c:35:53:94:22:11:82:ae:64:f9:76:a6:18:b6:bb:ae:
7d:aa:4a:a0:48:67:b1:bd:96:7f:f3:43:bd:dd:13:1f:3f:d9:
46:14:b4:d5:53:67:4f:f1:59:7d:d3:e2:7d:d7:f2:15:c9:35:
5d:10:ba:1a:a8:58:08:31:84:8e:38:2b:ed:41:47:99:ff:d5:
87:8d:f2:62:2d:7d:23:49:61:fe:18:15:0b:cb:86:41:51:4a:
bc:60:6b:76:12:4b:da:2e:27:4d:20:b9:79:99:2f:9d:f7:b9:
3f:d6:8f:c7:f7:a8:00:dc:83:63:42:c1:8c:d7:29:f2:37:ad:
42:c7:e3:d6:f4:46:75:4b:cd:0d:1e:3b:8e:4a:8b:d3:aa:76:
46:1b:18:4c:77:4c:3c:67:4f:ad:ab:96:67:f3:fd:55:71:2c:
3d:c4:2c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:34 2025 by rpki-client