Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: pqq6qCc5kwg45xupzKI0dC11yeie7vWPsquNw2uoTSM=
Subject key identifier: B1:73:51:9A:67:B9:E4:D6:B9:39:1A:8F:08:54:CB:5A:2C:E7:C9:BD
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 019A00350DC0841D14664F895493CAEED9F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 060C
Signing time: Mon 20 Oct 2025 06:01:08 +0000
Manifest this update: Mon 20 Oct 2025 06:01:08 +0000
Manifest next update: Tue 21 Oct 2025 06:01:08 +0000
Files and hashes: 1: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: VL+51IOwihnvDt3kTEIbnkNm1zysJb42PddvRfs/9c4=)
2: l0CnYB9TqdwdMbmMIDN6gmU04y4.roa (hash: uHgPuHlAwsjfMv6nb8pkc75mAM6+gk2FAGFMxkvLSjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:0d:c0:84:1d:14:66:4f:89:54:93:ca:ee:d9:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: Oct 20 06:01:08 2025 GMT
Not After : Oct 21 06:01:08 2025 GMT
Subject: CN=b173519a67b9e4d6b9391a8f0854cb5a2ce7c9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:52:90:fb:0c:0e:29:72:3d:6a:85:e4:aa:
c8:bf:32:b5:89:97:39:3b:7e:c8:63:d7:ba:4f:68:
1b:61:c0:a5:f5:1c:87:98:9b:fb:db:6c:52:5d:71:
24:1b:b5:37:b2:e2:2a:5c:fb:57:00:4a:76:3e:97:
a4:72:65:23:e6:08:20:e1:ea:23:2a:d3:96:34:43:
ad:5f:29:3d:d4:9c:df:1d:1d:a7:d1:42:47:28:62:
f0:0d:63:70:19:dd:04:6a:0b:c1:9e:8f:f7:c2:aa:
da:8e:2d:56:a2:3e:18:8b:eb:35:f3:0a:f4:2a:83:
7f:3e:f4:a7:58:73:03:7e:22:0d:7a:8e:69:2a:69:
15:bf:ce:11:b5:02:94:53:25:f9:a9:b7:e5:cb:9e:
c6:61:b1:f1:2f:78:5c:4e:d3:4d:1e:25:d8:61:5b:
23:a9:4c:75:19:b8:70:03:d9:f2:c4:81:cf:35:1a:
f6:a8:50:9f:f6:85:f6:54:0c:09:ab:05:49:22:4b:
29:81:69:d3:8f:f6:96:6e:60:94:11:94:22:0f:8f:
7d:72:8c:20:ed:5c:7a:e1:09:1b:d3:05:1c:d8:43:
c9:fb:34:55:a9:30:a6:57:5c:3a:8b:0e:06:70:ef:
63:2c:53:23:d8:ee:f8:b7:4e:43:e9:53:66:10:ee:
4e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:73:51:9A:67:B9:E4:D6:B9:39:1A:8F:08:54:CB:5A:2C:E7:C9:BD
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:7b:1b:9a:f0:ec:a1:31:b7:8a:57:d1:3a:08:89:9f:3a:9c:
15:af:26:f1:6a:0e:d1:ff:76:15:b6:fd:62:c7:f7:d3:a7:58:
a1:c9:35:26:d1:c7:f2:60:2a:ee:07:dd:24:a8:b5:19:6c:97:
91:3d:a9:58:14:dc:ee:53:7c:d1:fd:f3:60:ad:06:6a:c0:e2:
12:5c:fc:11:8d:65:0a:44:5e:88:7b:d2:f0:b4:17:0f:73:45:
92:9d:f7:33:e7:9d:f0:e2:56:e7:75:18:d2:80:e9:39:f0:dc:
2a:fc:4c:32:8a:69:da:ab:9d:b3:a5:9e:9b:da:21:38:5d:66:
29:63:64:01:4a:eb:5e:0f:2c:2f:82:6b:8f:07:a5:d5:34:c5:
24:dd:ef:58:19:88:80:1a:ed:a7:a6:6c:a0:a2:ee:0b:45:c7:
ca:dc:d5:97:9e:6d:97:b3:5a:9b:af:48:76:cb:49:ba:7e:65:
7f:06:ce:00:1d:e4:c7:9e:4d:b8:d4:58:d0:03:bc:27:51:3d:
27:7b:5f:05:d8:43:2f:f8:fa:72:06:c1:31:67:2b:7a:88:6a:
e7:45:3a:d5:aa:10:cd:9e:35:cf:6c:04:0e:f2:05:b7:d2:18:
cc:97:ef:c8:28:32:d1:53:37:4d:1e:14:18:48:22:7a:56:9f:
ba:55:e8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:11:31 2025 by rpki-client