Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: 6CybCh7Fozmo97jGqoA6tbh8yF/Zalp2qUL+OmlynY0=
Subject key identifier: F1:E6:94:DD:90:DB:A6:1E:7E:B4:EE:AB:BD:8A:8D:A8:77:38:08:6A
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 0198D5BBFCC86886E33EBD031E07551C3965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 03D3
Signing time: Sat 23 Aug 2025 07:02:03 +0000
Manifest this update: Sat 23 Aug 2025 07:02:03 +0000
Manifest next update: Sun 24 Aug 2025 07:02:03 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: kc0T1S/EVdNpNRUfMZnMvF1LNJSFxu3W8fyihoKXfMU=)
2: VWgiKeUlZyr_tkfBtwpTnh3j5es.roa (hash: F+rSoMMmSh1ZRMmb8OY6V8ChtegfB1X8DkMugPNoNpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:fc:c8:68:86:e3:3e:bd:03:1e:07:55:1c:39:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Aug 23 07:02:03 2025 GMT
Not After : Aug 24 07:02:03 2025 GMT
Subject: CN=f1e694dd90dba61e7eb4eeabbd8a8da87738086a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:75:3f:fb:37:de:34:70:fe:df:8e:f0:e3:2f:
2b:7b:30:62:e3:b7:9e:26:e6:9a:96:6c:48:dc:e2:
e3:0d:3c:6e:57:25:d1:ba:48:9b:22:3d:0b:a5:c1:
19:17:8d:e6:2c:f9:f1:fc:64:6d:71:69:89:bf:15:
7e:32:29:04:fe:8e:53:9f:c1:00:5d:3b:6b:30:0b:
13:b2:3c:a0:11:03:2b:79:62:f9:c8:95:71:c0:50:
8a:ed:b9:65:7f:55:1f:f4:a8:39:a6:5f:32:45:f1:
dc:d5:c7:5d:52:14:0c:4b:fe:7b:74:87:d4:ab:87:
44:93:06:54:10:95:bd:06:f7:a5:43:1e:98:ca:fc:
c2:8b:9a:7d:25:87:da:f6:80:9e:b0:c7:ae:e5:fa:
5d:75:45:b9:99:a6:29:53:21:83:ed:5d:fd:02:c7:
0c:97:36:cb:7d:4d:b9:e3:fe:93:03:f8:b9:60:42:
72:7a:ba:dc:8a:cb:fd:2d:7c:64:18:96:fc:0a:0b:
85:86:94:4d:8d:4d:05:5d:8e:df:86:e3:14:16:d3:
e0:7f:24:74:1c:96:0d:71:61:c7:e3:ad:f9:92:47:
cf:fa:91:51:2c:28:1c:22:0f:8e:56:07:b8:52:45:
90:41:4b:91:98:fc:91:ec:c9:8b:08:e1:a9:f6:fa:
7c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E6:94:DD:90:DB:A6:1E:7E:B4:EE:AB:BD:8A:8D:A8:77:38:08:6A
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:8a:34:0a:db:48:19:53:63:df:e1:e1:87:5a:50:e4:13:e1:
68:31:a0:4a:6e:de:1e:e7:bf:ec:9f:49:86:7e:7f:34:ee:f5:
7a:e0:f6:e2:e1:69:7f:1f:34:9e:1c:36:fd:09:22:52:55:55:
61:d6:de:16:9c:e9:02:20:e1:9c:11:3e:e7:ad:dd:23:f8:c6:
9a:cd:12:6d:95:d8:2f:a3:39:ef:b1:87:ee:22:ad:71:64:79:
3c:ee:19:c3:2b:ec:c6:11:4b:1b:bc:40:fd:02:5c:fe:0c:3c:
c6:07:fe:16:05:e3:2a:66:72:d9:9e:b1:d4:cb:75:65:9a:11:
97:6c:40:16:05:21:37:e2:fe:9a:1e:ae:8b:f5:80:cd:48:94:
d8:e2:39:fc:56:22:db:40:8e:31:11:2a:28:72:8b:17:bf:38:
99:a6:bf:7f:0b:ca:57:d0:86:32:bb:12:3f:b0:6a:ca:49:0a:
b4:d3:a4:12:1d:a8:2a:4d:5d:a9:6c:14:c1:d9:0c:b6:8b:c0:
f5:5b:86:a9:db:56:3f:59:15:cd:e0:19:7d:44:8d:54:b9:03:
7d:02:16:5f:fa:c9:5f:9c:9f:74:19:06:eb:48:7e:a7:af:86:
31:2c:cf:2f:96:1f:81:fd:02:69:38:f0:19:d3:90:64:4f:a7:
6e:e4:ef:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:05 2025 by rpki-client