Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: EqWEFXfi5IQM4R0UF7+xOldlLc4nyqCUt0wJ77JPsT4=
Subject key identifier: 42:A7:60:68:53:AB:46:EE:9B:CF:46:6F:9B:2C:52:2A:A9:B4:EE:DC
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 019A02FE4A6B69416B6978661EBFD53971C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 046F
Signing time: Mon 20 Oct 2025 19:00:10 +0000
Manifest this update: Mon 20 Oct 2025 19:00:10 +0000
Manifest next update: Tue 21 Oct 2025 19:00:10 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: YHrioDHh/GDEySlW7jVUAgGwfkoz41Ow1H64DdT5LYQ=)
2: VWgiKeUlZyr_tkfBtwpTnh3j5es.roa (hash: F+rSoMMmSh1ZRMmb8OY6V8ChtegfB1X8DkMugPNoNpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:fe:4a:6b:69:41:6b:69:78:66:1e:bf:d5:39:71:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Oct 20 19:00:10 2025 GMT
Not After : Oct 21 19:00:10 2025 GMT
Subject: CN=42a7606853ab46ee9bcf466f9b2c522aa9b4eedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:a6:ae:45:88:ea:e7:a4:05:be:26:02:8e:
95:a3:eb:55:d4:39:db:a6:fe:21:3f:61:35:16:f9:
c1:fd:c4:ff:22:e0:cd:1a:40:6c:86:9a:36:33:11:
b3:11:23:e4:b6:d4:07:2a:21:fa:89:22:ed:6d:c8:
e9:8b:59:2a:a2:8f:1c:22:44:07:f8:87:c2:d5:aa:
16:f4:d2:6c:54:70:6f:fd:04:20:c4:e6:24:66:60:
99:76:b9:c4:d4:63:7d:07:0b:02:10:dc:b4:2c:25:
fb:da:82:24:f3:ee:1f:17:92:df:6d:ff:43:b7:a9:
60:3e:ff:26:9d:72:4e:16:37:3b:4d:93:bd:f5:bb:
36:c1:7b:65:a7:ab:9f:b8:09:64:73:57:d4:ec:60:
94:66:e3:bc:5b:1c:30:8a:cb:a8:9c:79:0c:0c:bc:
25:4d:55:67:0a:6b:e2:79:e1:8d:29:f9:76:6f:0d:
02:fd:91:2a:26:0f:df:d6:d8:97:38:5b:29:89:3c:
82:aa:bb:bc:6d:04:5e:f3:35:ab:d6:7d:f0:54:e3:
e7:b5:80:85:9d:3e:92:28:58:13:1f:d4:b6:e4:b8:
2e:f2:d1:91:eb:7c:98:03:b6:ca:2f:46:77:13:f8:
37:cc:cb:19:7b:d6:97:4e:b5:27:58:5b:d5:28:17:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A7:60:68:53:AB:46:EE:9B:CF:46:6F:9B:2C:52:2A:A9:B4:EE:DC
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:55:7d:e4:fc:59:3c:d0:de:75:e3:1d:37:1a:64:11:8e:ec:
9a:35:59:5a:9c:64:32:48:b4:38:3d:82:f7:f0:26:df:5d:4d:
f1:38:97:97:e2:a9:a4:2e:0f:72:ad:46:cd:18:8a:24:f6:d1:
36:51:c5:84:2f:8f:f1:e8:8b:4d:d7:68:2d:10:15:37:e2:e8:
63:3f:5f:4b:d0:27:f9:59:33:32:e9:0c:73:74:c8:a5:2f:8c:
26:c4:01:ad:5c:a9:8c:ee:19:5b:7b:af:ef:e1:ce:05:3f:d5:
c5:3e:c5:c3:83:fe:da:87:3a:4c:ae:5b:b3:8a:9d:db:d5:2e:
18:12:74:67:e9:2d:f4:d9:23:a5:26:d6:a6:1e:dd:ba:e5:28:
88:91:cd:1b:be:c7:4f:d8:56:e4:1a:9c:b5:e1:67:bc:d4:df:
84:9c:ce:ae:c3:ca:95:64:0e:07:be:1e:85:dc:55:e4:c6:19:
d6:20:e1:96:59:ac:93:1e:c7:b3:b4:2a:c6:74:5e:3a:3a:a8:
e1:fb:de:42:48:f4:f8:e4:fb:47:28:05:fc:e1:3a:39:c6:e9:
16:a1:9c:fe:97:a1:47:b0:f3:b1:b5:3e:ab:7b:b2:c2:09:82:
26:25:e2:b3:6b:ac:17:6b:73:70:1e:8f:8b:0d:e0:d3:a7:08:
36:fa:6c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:03:56 2025 by rpki-client