Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
File: czsHKLegVDWEws0LSLdHjEGU7wo.mft (raw, json)
Hash identifier: 6cpRaPh1TYoBm6NrMWisZZF7jfZ26BKPn23H6GbdEXI=
Subject key identifier: 4D:FE:34:3F:51:CE:5B:04:D5:BA:48:4F:7E:CC:E9:A7:64:92:33:C8
Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Certificate serial: 0198D4730B9E15C6E07BB55847369E848A69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
Manifest number: 0780
Signing time: Sat 23 Aug 2025 01:02:46 +0000
Manifest this update: Sat 23 Aug 2025 01:02:46 +0000
Manifest next update: Sun 24 Aug 2025 01:02:46 +0000
Files and hashes: 1: 0o1YRHDHs6Y_Qq6pCAQcKlyWFz8.roa (hash: nsMIKNS3OeQBs34bWYRCT4THehdiZrvKLdywuELl5UY=)
2: U5txbLmFPtaoMKOU1TbkV_FaGV8.roa (hash: z+0QM51o7tqW6/RjLGXF1BwNrcfJdd2i6D7WxQKXfAc=)
3: czsHKLegVDWEws0LSLdHjEGU7wo.crl (hash: P+ajOdkz0is02PtXlnPvoUfJ4fc+n5wHFwZgeSN0xG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:0b:9e:15:c6:e0:7b:b5:58:47:36:9e:84:8a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Validity
Not Before: Aug 23 01:02:46 2025 GMT
Not After : Aug 24 01:02:46 2025 GMT
Subject: CN=4dfe343f51ce5b04d5ba484f7ecce9a7649233c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:f0:17:20:12:2e:f1:b3:fa:25:dc:c6:56:
e6:cc:e0:f4:8c:51:42:95:9a:00:7b:d0:b2:d2:95:
67:b1:ff:8b:17:ff:1a:04:86:d4:99:30:6d:f5:1d:
42:82:80:23:af:ae:5a:14:bf:31:20:02:e7:47:d2:
5f:7d:21:09:c5:5f:b6:97:4c:1b:c5:49:e3:ed:86:
8c:a9:c4:ec:a0:c9:49:3e:1c:30:98:64:a8:ae:8b:
aa:bd:7e:a8:4f:b9:f3:0f:c1:24:54:0e:ff:c8:c3:
4e:6a:24:85:89:e9:5a:39:b0:10:12:16:39:ad:9e:
64:b3:50:7d:8b:90:3f:ab:fa:40:22:fe:42:43:3b:
cc:2b:97:5c:ba:f1:2d:a1:c7:c8:aa:93:17:07:3e:
f0:84:1f:26:b0:1f:c0:9f:d9:ff:35:84:97:49:fa:
57:17:29:ec:fa:ab:ce:96:a8:10:80:81:af:cb:c4:
82:d4:6e:f9:b5:70:e2:4f:7b:3e:fd:e7:44:15:97:
ac:fc:19:46:05:a8:70:bc:ab:5e:1f:ee:9a:4b:15:
c4:a6:c0:80:03:66:39:7c:ac:e1:25:63:5d:e5:90:
25:e3:96:e9:e2:cc:f8:73:f8:74:18:9e:f8:d0:7a:
26:fa:97:29:bd:6c:a3:a1:b6:6d:f7:bc:fb:3d:3d:
4d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FE:34:3F:51:CE:5B:04:D5:BA:48:4F:7E:CC:E9:A7:64:92:33:C8
X509v3 Authority Key Identifier:
keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:b2:c6:dc:76:c5:ab:dd:d9:cc:f9:d5:80:84:bc:f5:45:25:
bb:5d:0e:fd:ca:30:5a:a2:eb:2d:d6:62:62:fe:e8:28:b7:39:
c4:5d:c8:e0:f7:d3:ea:84:52:03:5b:e6:39:88:34:60:b7:a1:
49:3e:e1:9a:db:8f:ad:49:4a:bc:3a:a4:95:c7:88:1c:e2:2f:
b7:b6:ac:bd:04:ab:b3:db:97:88:ca:9f:7b:b8:b5:f6:ed:8b:
8c:79:64:84:c7:ad:c1:02:13:3e:ce:9b:30:68:b4:f8:54:f7:
a0:88:7a:0c:e6:7f:58:b8:20:bc:55:e6:4b:f1:1c:6c:d8:2a:
0e:11:06:7e:fc:f2:43:54:55:f8:b2:1c:79:d3:78:4a:4d:dc:
4d:14:8d:86:9f:25:e3:19:8a:b0:84:2d:db:d4:01:ce:f1:e7:
a8:d1:eb:d0:ee:2c:84:02:14:2f:a1:af:78:a6:7c:ba:fd:76:
6a:2e:43:08:74:eb:2a:af:5f:ac:7b:47:4e:dc:9d:f1:ae:bb:
fa:b5:e5:48:d4:ce:a6:0c:ec:5b:70:2e:31:54:14:59:7f:04:
04:5e:5e:58:77:e8:a0:2a:68:e0:ac:8a:d0:1e:3d:af:a9:9c:
a2:58:66:f9:bb:72:2b:13:52:3f:dc:84:d2:3b:51:9e:4b:de:
7d:f8:d0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:28 2025 by rpki-client