Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: gbGV+NgaNy2YugfJI2RP0129HGKuZbUyr27dxR/EJNY=
Subject key identifier: D1:E2:B9:AA:D5:B6:B5:26:AF:6D:D0:67:AB:D9:B6:CC:2E:6D:AA:3E
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 0197B6A0931F2AE16295A283B17CD095B0BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1133
Signing time: Sat 28 Jun 2025 13:01:06 +0000
Manifest this update: Sat 28 Jun 2025 13:01:06 +0000
Manifest next update: Sun 29 Jun 2025 13:01:06 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: htxRToz1oAokZdvuPaV2l54ldHlOTa8OeWrF2GdKuXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:93:1f:2a:e1:62:95:a2:83:b1:7c:d0:95:b0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Jun 28 13:01:06 2025 GMT
Not After : Jun 29 13:01:06 2025 GMT
Subject: CN=d1e2b9aad5b6b526af6dd067abd9b6cc2e6daa3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:09:cc:88:f8:34:75:92:af:b4:20:cb:9a:ac:
49:fc:fd:e7:e5:f2:ac:18:bc:6f:2d:70:70:58:ca:
70:2d:ac:77:3b:14:1b:ef:c0:40:1d:ad:3d:09:7e:
87:56:69:80:b0:66:57:76:5c:ba:c9:c8:06:90:49:
6a:a2:13:f2:cc:c5:eb:58:79:cb:7d:14:71:30:92:
5e:d5:a9:ff:1d:f0:cf:f3:21:34:c3:95:28:2f:ae:
39:3d:af:7d:23:bb:a4:2a:cf:4c:23:a4:c0:5f:3b:
42:60:2f:d0:0f:60:23:7c:61:f0:93:9c:64:27:41:
fe:96:7c:c6:e3:55:b0:96:ba:40:7b:3a:a6:b4:77:
33:72:a6:29:f7:b3:1d:8f:7d:b3:fa:83:4a:68:68:
c3:55:d1:55:b9:47:f8:83:8a:a2:62:b1:c5:8f:d9:
16:36:74:a6:eb:b8:da:08:9a:7c:5a:f0:52:75:a6:
13:85:78:53:91:99:c6:ff:39:4b:be:db:e4:a8:9e:
b5:b9:68:c6:4f:a7:e6:cf:c8:42:30:73:18:0c:60:
f8:41:b4:07:a0:03:6c:68:d9:e6:98:46:ab:70:a2:
26:00:ce:d6:f1:04:3e:ec:e1:1f:72:4c:0d:e9:d5:
bc:dd:07:cd:d6:7e:ae:a3:e6:69:1a:9a:69:bd:12:
eb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E2:B9:AA:D5:B6:B5:26:AF:6D:D0:67:AB:D9:B6:CC:2E:6D:AA:3E
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ff:d3:ef:25:64:00:22:1f:6b:97:7f:87:68:52:d2:3c:3d:
f6:9c:dd:05:5a:74:34:29:af:0c:e6:03:0d:0a:13:bc:c1:00:
29:5a:38:c8:e3:d4:62:9a:57:0b:99:1a:3a:5c:7c:19:f6:db:
56:03:b2:ef:b2:b9:4a:27:b1:8f:c4:e2:47:57:c0:93:0d:ab:
19:fc:13:9d:3f:c6:b2:7f:2f:12:ad:77:1d:ee:db:51:a0:4c:
5b:fd:f2:d7:ae:22:7a:dc:da:1c:16:3e:b9:74:1b:5d:c6:98:
50:31:72:ae:2b:f5:a3:58:25:5d:6c:ed:33:93:81:1c:9a:b4:
51:37:ad:8d:0f:dd:05:96:00:b7:c0:b3:23:62:42:ae:54:02:
b6:3f:cc:cd:56:f6:e8:d7:6e:70:01:9c:c2:e0:9e:f5:fd:be:
83:5a:e5:d1:58:e1:c4:a3:4d:d8:a4:82:e3:14:ee:ac:98:af:
2c:c3:43:62:da:4d:69:b3:57:3e:4f:6a:c1:ff:3e:48:c9:3a:
db:36:7d:81:53:c7:1e:54:6a:98:04:09:06:d4:5e:26:88:b4:
85:28:16:a9:80:ec:96:28:17:c2:03:e2:d8:1a:a7:af:1f:97:
52:a3:5e:69:bd:93:5e:91:64:33:51:61:c2:1c:40:ec:b3:b0:
e0:90:db:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:02:05 2025 by rpki-client