Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
File: czsHKLegVDWEws0LSLdHjEGU7wo.mft (raw, json)
Hash identifier: s7fWR9IMi7Gi00IebJz6frKsJdWKvx5LBqjYJk0AsQQ=
Subject key identifier: 66:7F:A0:BF:70:25:9E:11:EE:84:9A:30:A7:49:B1:7A:26:9E:9F:00
Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Certificate serial: 0197B6A11D79BB47087A457717BFAA14F073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
Manifest number: 06EC
Signing time: Sat 28 Jun 2025 13:01:41 +0000
Manifest this update: Sat 28 Jun 2025 13:01:41 +0000
Manifest next update: Sun 29 Jun 2025 13:01:41 +0000
Files and hashes: 1: 0o1YRHDHs6Y_Qq6pCAQcKlyWFz8.roa (hash: nsMIKNS3OeQBs34bWYRCT4THehdiZrvKLdywuELl5UY=)
2: U5txbLmFPtaoMKOU1TbkV_FaGV8.roa (hash: z+0QM51o7tqW6/RjLGXF1BwNrcfJdd2i6D7WxQKXfAc=)
3: czsHKLegVDWEws0LSLdHjEGU7wo.crl (hash: mmEsXB7gp+RmEqYlt1DoW3/lK2xLy3F/n186G+8dDqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:1d:79:bb:47:08:7a:45:77:17:bf:aa:14:f0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Validity
Not Before: Jun 28 13:01:41 2025 GMT
Not After : Jun 29 13:01:41 2025 GMT
Subject: CN=667fa0bf70259e11ee849a30a749b17a269e9f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d5:f3:3b:b6:75:55:5f:d5:c3:ed:36:30:e9:
e8:d2:61:00:5c:31:7e:19:d8:dd:41:30:fc:6a:10:
3e:6f:c9:41:3f:8e:a1:50:c0:dc:5b:89:b8:61:6a:
00:83:0e:14:31:fa:8f:54:6b:f9:90:d3:32:58:da:
47:62:d1:a0:47:5a:a8:c5:d4:40:d6:b9:ac:cd:06:
37:52:bf:b3:6d:c1:3d:f4:07:a4:0b:87:5a:0c:68:
c3:c7:dd:7b:15:9b:4e:b2:38:fb:62:7f:20:93:2a:
28:fe:7a:15:93:89:e9:f2:16:a8:31:85:cc:9d:d8:
65:cc:ec:22:1d:6e:c0:18:45:52:71:38:3f:fa:43:
48:4d:51:ae:eb:e9:6e:5f:89:b5:4d:9e:ba:5e:86:
7d:f4:c4:82:eb:7e:af:3e:66:0a:98:1a:b1:aa:79:
8c:c7:65:02:68:1b:67:41:91:5f:50:46:dd:1e:18:
f9:0e:a8:c5:99:40:96:c3:e5:02:a6:82:47:23:26:
97:9f:23:85:95:66:57:f1:a0:13:9d:5a:71:fa:52:
00:4f:3e:79:54:28:a4:bc:26:7f:14:f1:1a:bb:2c:
d6:af:a1:34:a4:ed:9e:bb:39:de:95:16:0c:dd:95:
8a:28:80:41:56:2b:58:d2:92:aa:6f:cf:41:32:85:
b5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7F:A0:BF:70:25:9E:11:EE:84:9A:30:A7:49:B1:7A:26:9E:9F:00
X509v3 Authority Key Identifier:
keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a7:7d:b4:ab:7b:ff:bb:cb:16:21:86:d2:f9:4b:70:32:c4:
90:6f:99:2f:7f:a5:a5:39:91:42:23:09:a6:92:bd:0f:fb:34:
6c:a5:12:d2:e8:0d:e6:df:2f:84:36:67:43:7a:0f:48:84:f4:
0c:ce:39:4e:ae:88:92:54:c0:17:33:51:ae:36:f0:7e:1c:e7:
0f:93:29:9a:0b:88:3d:a4:d2:ff:2e:02:64:e6:61:f7:45:ad:
23:64:85:e8:ad:c3:c1:f0:53:f3:ae:a8:4c:11:47:e8:86:24:
12:54:2b:5c:16:96:39:d2:e7:39:17:e4:04:af:e8:7b:11:ff:
74:17:86:27:0c:e6:32:bc:17:7f:48:73:ea:5a:37:c5:17:84:
c5:d7:0e:6c:70:0b:56:57:06:37:47:f8:24:a9:13:50:8b:97:
c1:a8:5d:55:f4:f2:15:a2:55:a6:5c:b5:e5:08:f6:d6:7e:f8:
9a:a6:99:72:d1:20:f1:64:6e:5c:da:25:51:08:b7:9e:1c:0a:
10:37:db:9f:8e:6f:44:a5:24:3d:70:0d:be:c2:23:4d:45:ee:
fe:2a:3b:69:8f:2b:c1:6d:6e:d1:c3:eb:02:b1:51:e1:b6:6a:
9e:9a:6a:22:ef:70:c0:7a:69:d0:dc:4a:5d:15:8c:b8:f0:36:
7a:1b:33:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:20 2025 by rpki-client