Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: qqVOww4ulgcACoNsIXqIBwgc60cMtkGYNIj0qQ1ashk=
Subject key identifier: 90:AD:97:57:BF:37:76:5A:85:1C:2B:43:67:46:7C:4A:F8:C5:AB:DA
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 0197B70EDA8058C67C38605121F1F0F9E04F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 04DD
Signing time: Sat 28 Jun 2025 15:01:33 +0000
Manifest this update: Sat 28 Jun 2025 15:01:33 +0000
Manifest next update: Sun 29 Jun 2025 15:01:33 +0000
Files and hashes: 1: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: X/Rsvsk0WInULSJEFt5lBOD8fVReeJRSu8KWA2uFAZw=)
2: l0CnYB9TqdwdMbmMIDN6gmU04y4.roa (hash: uHgPuHlAwsjfMv6nb8pkc75mAM6+gk2FAGFMxkvLSjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:da:80:58:c6:7c:38:60:51:21:f1:f0:f9:e0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: Jun 28 15:01:33 2025 GMT
Not After : Jun 29 15:01:33 2025 GMT
Subject: CN=90ad9757bf37765a851c2b4367467c4af8c5abda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c3:d7:bf:15:23:1d:ae:c0:56:77:02:66:cc:
6c:ed:3c:e6:20:9e:23:f2:fd:b7:9f:06:f6:cf:dd:
f9:05:c1:c9:62:3b:4e:4a:1c:d5:d5:73:49:0a:fe:
0b:f4:6a:eb:f0:e0:a2:10:83:f5:21:65:af:dc:30:
6b:0f:6e:5c:ce:fe:3c:8d:a5:3d:6f:2c:55:f1:2b:
5a:ec:31:d8:d1:49:a9:3e:dc:6a:b4:2f:2f:b2:8a:
0b:4a:8f:3d:82:28:d8:98:f8:fd:40:e2:a8:39:23:
ca:d0:93:83:4d:6c:1f:b4:8d:2b:25:b1:94:13:fa:
72:b8:cb:b3:c5:34:a0:e8:3a:f6:2c:78:8c:32:1b:
03:ac:0c:8d:94:dc:53:09:a4:32:36:d4:2c:4f:62:
6c:66:03:fe:51:25:5f:47:49:6d:d5:ce:a4:99:3b:
53:55:02:72:61:58:52:a8:8f:04:f6:b8:49:d0:ff:
0e:fd:b3:e1:ff:04:53:0b:32:00:71:d4:79:80:b2:
13:b7:e2:2b:52:39:d3:f3:e2:4a:41:e1:f1:22:ce:
29:94:79:19:d1:0d:58:c7:ed:72:75:08:4d:4a:bf:
37:6a:89:8a:35:13:e7:d5:82:23:01:2b:ad:3a:93:
73:bb:b2:71:58:76:2d:13:e1:5d:00:1d:96:bf:61:
aa:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AD:97:57:BF:37:76:5A:85:1C:2B:43:67:46:7C:4A:F8:C5:AB:DA
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:89:45:8d:fd:d9:71:67:18:b7:95:72:9c:c1:48:ba:0a:b0:
ad:36:73:07:0d:1a:7e:15:42:21:84:04:2f:61:e2:a4:5b:5e:
d4:40:d1:8b:23:e6:60:91:e8:6f:64:db:54:23:f1:a2:f2:8e:
08:eb:e8:8a:96:30:98:b1:cf:b4:38:52:b8:e8:69:90:e5:f6:
92:39:07:ee:25:d7:8c:a9:d4:a8:da:19:80:b7:e9:7e:07:70:
0d:cf:9a:39:69:84:48:43:82:96:f2:5e:d0:ef:28:1e:48:ab:
cd:b3:69:18:aa:c6:83:2c:81:ef:62:b4:62:dd:88:5c:33:76:
2b:3c:cc:e2:6d:eb:61:49:13:6e:85:a0:08:ca:e5:0a:57:77:
98:e6:dd:d8:f2:80:eb:c8:bb:47:f5:87:d8:52:dd:40:63:da:
fc:af:04:b6:3f:c8:0d:db:c3:b6:ab:b0:22:0e:6a:64:54:0a:
5f:93:49:0f:22:89:24:0d:6d:d8:ca:f6:c5:d8:d5:bf:40:25:
ff:d5:32:a0:a5:0e:b6:42:0c:42:a3:60:7c:f7:a1:a6:be:1a:
45:0b:0b:db:25:cb:42:d3:db:83:48:37:a4:a8:fe:92:27:5b:
e2:05:0b:97:9c:22:c1:3d:8a:45:1b:d9:e6:5b:62:0c:7a:8f:
00:68:bd:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DtqAWMZ8OGBRIfHw+eBPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMzE1NWI0MmZhZmM3MzU1YTZmYzgwOWM3ZDljY2Y1YjJm
OGNkYzIwHhcNMjUwNjI4MTUwMTMzWhcNMjUwNjI5MTUwMTMzWjAzMTEwLwYDVQQD
Eyg5MGFkOTc1N2JmMzc3NjVhODUxYzJiNDM2NzQ2N2M0YWY4YzVhYmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssPXvxUjHa7AVncCZsxs7TzmIJ4j
8v23nwb2z935BcHJYjtOShzV1XNJCv4L9Grr8OCiEIP1IWWv3DBrD25czv48jaU9
byxV8Sta7DHY0UmpPtxqtC8vsooLSo89gijYmPj9QOKoOSPK0JODTWwftI0rJbGU
E/pyuMuzxTSg6Dr2LHiMMhsDrAyNlNxTCaQyNtQsT2JsZgP+USVfR0lt1c6kmTtT
VQJyYVhSqI8E9rhJ0P8O/bPh/wRTCzIAcdR5gLITt+IrUjnT8+JKQeHxIs4plHkZ
0Q1Yx+1ydQhNSr83aomKNRPn1YIjASutOpNzu7JxWHYtE+FdAB2Wv2GqkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJCtl1e/N3ZahRwrQ2dGfEr4xavaMB8GA1UdIwQY
MBaAFHMxVbQvr8c1Wm/ICcfZzPWy+M3CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS80Y2VmZjAtMGFlNC00MTRjLWEwZjYt
ZTUxZTZlZjVkM2IxLzEvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS80Y2VmZjAtMGFlNC00MTRjLWEwZjYtZTUxZTZlZjVkM2Ix
LzEvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO4lFjf3Z
cWcYt5VynMFIugqwrTZzBw0afhVCIYQEL2HipFte1EDRiyPmYJHob2TbVCPxovKO
COvoipYwmLHPtDhSuOhpkOX2kjkH7iXXjKnUqNoZgLfpfgdwDc+aOWmESEOClvJe
0O8oHkirzbNpGKrGgyyB72K0Yt2IXDN2KzzM4m3rYUkTboWgCMrlCld3mObd2PKA
68i7R/WH2FLdQGPa/K8Etj/IDdvDtquwIg5qZFQKX5NJDyKJJA1t2Mr2xdjVv0Al
/9UyoKUOtkIMQqNgfPehpr4aRQsL2yXLQtPbg0g3pKj+kidb4gULl5wiwT2KRRvZ
5ltiDHqPAGi9cQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:18:29 2025 by rpki-client