Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: ppuFwL/lTANugYPFjEsdl26XAJj2kMg7Dfy90LrFDIA=
Subject key identifier: F2:05:CA:F9:AF:98:2A:5F:5D:B8:27:63:BC:75:9F:51:01:4C:AA:83
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 0197B7EA53DED583C8EB2085B9C11D043724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 033F
Signing time: Sat 28 Jun 2025 19:01:16 +0000
Manifest this update: Sat 28 Jun 2025 19:01:16 +0000
Manifest next update: Sun 29 Jun 2025 19:01:16 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: a8hg5dn5TdXgN3TDBn3AY088QijEYbJU7SueeM7JFsg=)
2: VWgiKeUlZyr_tkfBtwpTnh3j5es.roa (hash: F+rSoMMmSh1ZRMmb8OY6V8ChtegfB1X8DkMugPNoNpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:53:de:d5:83:c8:eb:20:85:b9:c1:1d:04:37:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Jun 28 19:01:16 2025 GMT
Not After : Jun 29 19:01:16 2025 GMT
Subject: CN=f205caf9af982a5f5db82763bc759f51014caa83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:08:c8:8a:1e:d8:7f:95:24:62:36:b7:33:13:
44:4c:d4:6e:9e:d6:37:3c:f3:20:82:d2:31:57:f9:
fc:b6:99:1f:60:42:72:e6:af:cf:56:28:b9:e9:9e:
44:8e:cc:2e:dd:96:ee:3f:ce:1c:6b:ee:d2:16:d3:
d1:4e:49:57:bc:d1:bf:63:70:65:f7:1d:95:a7:e5:
86:7f:45:0d:27:bf:96:60:6c:59:e0:c7:5a:c4:09:
66:ec:ec:91:72:24:54:5b:85:ac:e8:96:ea:2c:6e:
fb:eb:2e:32:35:37:41:7a:e3:f9:9c:01:9d:b5:cb:
86:31:f2:ef:59:8a:1a:ef:09:23:65:4d:cd:8c:2a:
01:51:a3:54:47:80:21:66:d6:f9:f5:63:1a:8b:65:
59:e7:f5:25:11:f5:7c:c7:f9:3c:ba:c7:90:16:c8:
bb:8d:c3:0f:d7:dc:7a:0d:f4:ad:7c:74:bc:9d:5d:
8f:30:60:aa:44:ed:72:fd:99:15:48:3e:44:a1:d7:
82:c3:41:5a:4c:f5:5d:3e:17:ff:00:e6:28:7d:a4:
69:d9:53:e3:27:db:ef:2e:e6:5b:05:77:ad:53:40:
29:67:ba:c5:39:da:91:a6:b2:ad:81:84:18:e7:89:
3b:72:92:fa:4e:65:17:91:3c:fa:e0:7b:13:e2:10:
a0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:05:CA:F9:AF:98:2A:5F:5D:B8:27:63:BC:75:9F:51:01:4C:AA:83
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f8:5f:98:1c:ea:cb:cd:39:fb:ac:5c:93:45:1f:21:db:3f:
08:12:39:42:fc:21:25:0b:b6:76:da:5d:bd:a5:1f:32:9c:67:
63:36:fb:b0:e3:d2:62:a3:b3:59:2a:8e:72:ea:ba:61:68:41:
a3:61:07:1e:bf:95:2d:60:53:ba:73:de:9a:04:ca:de:bb:71:
bc:70:3a:6d:8d:55:c1:d6:d7:d3:94:ab:a4:8b:fb:5f:17:eb:
a2:73:57:f4:dd:27:ae:ff:a5:73:c6:8c:77:e2:5a:0f:37:a1:
d8:55:e6:13:40:8e:1e:69:74:9c:a1:da:98:0e:d5:d0:2e:74:
5f:9a:e4:05:2d:5f:c4:b5:10:11:c1:64:e7:26:df:60:49:ed:
67:4b:37:3e:40:8d:3d:20:22:bc:f8:21:fa:84:3e:11:89:27:
36:4b:87:a5:da:ba:36:e0:a4:d8:8a:7f:13:5a:07:da:9d:0d:
b1:d4:6b:f3:62:a7:b2:7d:56:93:9f:52:c5:db:52:6a:58:54:
8c:6a:b6:09:3b:fd:a6:21:a8:73:5b:ea:31:03:de:c8:f5:a6:
31:e3:ee:e2:fd:83:06:a9:46:6e:c1:1f:95:6c:b8:ee:c6:d3:
80:90:fd:29:87:64:da:91:3f:2c:5c:76:d1:b6:c6:79:2b:74:
62:89:33:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:40:44 2025 by rpki-client