Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: Z+2cFkuXjh/6+10E5N6FWx2JX7PNWfNm7wq1rHA6uIE=
Subject key identifier: 43:DB:E1:28:9F:59:DF:EC:D5:15:61:55:7C:D6:A5:66:25:60:89:DF
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 0198D4738F4F6BD534D9B8F61EB0CB2D7181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 11C7
Signing time: Sat 23 Aug 2025 01:03:19 +0000
Manifest this update: Sat 23 Aug 2025 01:03:19 +0000
Manifest next update: Sun 24 Aug 2025 01:03:19 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: ieV/7ftpRfJIldrVvlWLemMLdsXHVUTUMZQxFG4gk5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:8f:4f:6b:d5:34:d9:b8:f6:1e:b0:cb:2d:71:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Aug 23 01:03:19 2025 GMT
Not After : Aug 24 01:03:19 2025 GMT
Subject: CN=43dbe1289f59dfecd51561557cd6a566256089df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:0b:e7:ba:60:e5:e1:8c:90:9c:dd:7b:1b:
3c:9f:9d:33:ff:58:6e:57:7d:48:c6:f8:cc:4e:4e:
fc:cf:b4:bd:39:e5:14:23:3d:e8:ba:1e:c1:af:fa:
70:e3:ee:1e:13:04:38:b0:4d:e8:b0:3c:d0:7c:f3:
de:a6:53:94:73:a8:c5:2c:f4:14:bb:dc:53:70:0b:
12:b4:8f:1a:42:cd:f4:5b:0f:e9:08:bd:cc:bb:4b:
b0:0f:ba:9f:b0:97:e9:d7:2b:b2:f2:3e:ba:8e:fc:
b8:09:45:2d:02:fb:fe:d5:14:86:5e:d0:77:d5:7d:
89:7a:c5:92:9a:e4:1c:d9:c9:55:82:68:10:cb:3b:
27:79:75:de:61:ed:6f:fb:4a:2d:ce:40:e2:79:26:
4c:95:63:f3:33:1a:06:39:b2:9d:ee:66:67:85:e4:
77:4e:b0:b5:f3:8e:68:1e:66:50:9e:01:f0:77:6f:
ca:61:14:77:b2:c9:59:02:d1:91:85:ba:d1:50:bf:
5a:7e:05:f1:02:b6:2c:6d:0d:ac:df:97:b1:e3:16:
5b:b7:79:e1:43:91:18:a8:bd:b2:5e:2d:39:9d:da:
02:83:8c:bd:32:de:09:0d:7f:6b:95:17:64:19:be:
0d:71:c3:33:50:0e:d7:1e:7f:58:32:78:26:4f:0e:
da:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DB:E1:28:9F:59:DF:EC:D5:15:61:55:7C:D6:A5:66:25:60:89:DF
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:e8:62:4d:4d:a1:28:0d:e7:de:84:21:52:32:6e:ce:68:b3:
7f:1f:f6:10:07:82:86:9b:89:f4:29:cf:27:40:5d:44:1e:bf:
1f:cd:d3:cb:16:1c:bb:fe:28:db:67:f5:9b:b8:8c:34:74:5a:
37:60:b3:32:d5:c1:ed:fe:45:e8:aa:8a:dc:41:5d:c5:31:45:
d9:03:6e:41:a4:89:96:fb:6b:f9:79:96:23:82:39:04:46:da:
3c:ec:98:8e:d9:f5:0b:e2:fc:4b:55:ac:dc:14:cd:fa:b5:6e:
ec:ad:20:37:fc:64:11:67:00:e3:ad:83:f6:ae:52:14:7b:da:
5f:90:8b:b9:94:21:ee:83:03:29:b9:88:a8:88:ce:10:ce:01:
35:34:74:ed:d8:98:59:7b:90:a4:39:80:81:f8:73:90:d4:e8:
86:3e:6c:e4:8f:61:ab:40:c9:9c:7c:d6:80:29:fa:73:b0:38:
47:17:f3:92:aa:e5:31:d7:3b:9c:82:5d:ff:04:84:20:a0:77:
5c:42:15:57:32:63:aa:94:f0:2b:cc:45:ae:aa:c2:dc:80:45:
4b:35:bd:a7:a2:55:03:7c:4b:a3:5d:80:ce:a6:30:43:64:b5:
43:6d:72:fb:90:09:19:db:db:09:06:b6:c0:6f:b0:55:73:ba:
18:58:a4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:32 2025 by rpki-client