Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: uomUo4Wgl+hwEaCofhzxnDIh8l7w1AWTquGb+xbaXxY=
Subject key identifier: 78:07:FD:94:2B:EA:2E:74:AF:61:19:6D:96:67:1F:F1:3D:D3:D5:75
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 0197B77C624BA1D236EBB20AF1D7784908CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 1404
Signing time: Sat 28 Jun 2025 17:01:11 +0000
Manifest this update: Sat 28 Jun 2025 17:01:11 +0000
Manifest next update: Sun 29 Jun 2025 17:01:11 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: FWMKjCUDIzt/Kh4X0gsckKAK4BJ5oY8sNSAqDVnKfOw=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:62:4b:a1:d2:36:eb:b2:0a:f1:d7:78:49:08:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Jun 28 17:01:11 2025 GMT
Not After : Jun 29 17:01:11 2025 GMT
Subject: CN=7807fd942bea2e74af61196d96671ff13dd3d575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c0:0b:ce:e2:32:07:7f:6b:97:ee:85:83:8d:
27:6b:1d:f7:12:47:96:7f:9d:b6:42:a4:aa:9b:3f:
2f:f9:50:72:a5:be:a4:de:e1:79:0b:f2:fc:21:20:
a0:6b:12:0f:d6:88:7b:b7:4f:8a:f0:81:28:27:b8:
90:e1:c4:99:07:7d:50:d8:b9:f0:a5:c4:24:56:ac:
d0:c2:de:74:49:77:d7:eb:6b:88:06:7a:5c:ef:4f:
9c:8a:45:e7:4e:6c:4e:8a:8f:5a:a6:5d:e9:f2:4c:
fb:e5:52:27:12:8b:95:fb:07:d7:5c:f2:eb:2a:0c:
22:9d:b5:a1:0f:85:a1:63:ff:d7:c7:ea:08:9c:bc:
97:7d:7f:6b:98:ac:c3:8b:92:85:a6:97:10:6b:df:
38:68:54:c3:17:d4:6b:66:6f:64:bc:b4:e0:c7:85:
78:7a:1f:40:7f:81:1e:ac:db:9f:2c:2a:1e:2a:4c:
3c:6a:0a:02:50:df:66:66:d8:5d:78:a3:7b:05:b6:
86:f5:45:4c:33:4c:e5:0a:4d:27:7b:9f:d2:df:bd:
66:6d:28:52:6e:74:c9:c3:08:c8:4b:c8:97:f8:b6:
49:73:3b:62:c6:6e:7e:59:41:d4:53:86:ac:a3:d9:
22:54:0f:25:c3:98:49:83:5e:f9:6f:66:da:f4:9c:
9a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:07:FD:94:2B:EA:2E:74:AF:61:19:6D:96:67:1F:F1:3D:D3:D5:75
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:82:e4:8d:c9:f5:c2:b7:7e:15:16:ed:27:4e:22:fd:f2:9f:
54:6e:ab:01:e6:16:c5:62:7d:b2:29:1d:7c:98:33:9f:23:4e:
65:ed:6a:ad:1b:70:d8:dd:fa:4a:b2:8b:e4:75:d0:9a:94:4f:
2e:00:8f:c6:61:25:1e:6a:47:23:2e:6a:e2:66:ed:9c:a7:a7:
8c:41:4d:45:c3:f6:18:d9:c7:e9:7b:52:51:ed:29:89:b2:2d:
ff:7a:fe:83:80:e8:70:c3:66:6f:46:8f:2b:11:bf:61:5f:f3:
a6:cd:f8:76:bb:7e:07:30:df:0b:5b:f5:f7:53:ff:00:21:91:
f5:5f:52:fe:5d:1d:7d:42:33:c3:fb:d9:33:d5:e6:f2:4e:17:
28:80:15:70:a2:38:1a:18:83:fe:3a:52:20:26:56:95:fd:48:
20:23:45:4f:28:21:89:18:81:d5:df:2a:3c:a9:c7:bd:2b:bf:
ab:9f:7c:6a:09:71:ad:da:11:1f:6e:da:f3:d5:ae:ec:f3:5e:
a7:b2:30:d0:9a:46:02:f4:ab:5b:e0:48:35:3f:4a:8f:30:d2:
a8:e7:77:04:51:f1:1c:c4:9f:20:df:93:83:7f:16:a0:bb:12:
d7:11:d4:6a:a6:38:a0:30:53:ec:e9:5e:1d:cd:d6:e7:cf:f5:
29:26:98:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:56 2025 by rpki-client