Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: mmYCo48kQdi6nC3zUKszJ/ITi6gvtwyjQ+G+Uyqc+/M=
Subject key identifier: E9:82:86:89:C3:3E:5B:EE:31:07:3F:F1:43:60:93:59:97:95:C0:3F
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 0197B6A0D5DCB923FC86298A6F83B563A4F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 13:01:23 +0000
Manifest this update: Sat 28 Jun 2025 13:01:23 +0000
Manifest next update: Sun 29 Jun 2025 13:01:23 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: NyVAZjthTxIGWU+T3cDUB6+yuDThqH/qzBQVjhCBocE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d5:dc:b9:23:fc:86:29:8a:6f:83:b5:63:a4:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Jun 28 13:01:23 2025 GMT
Not After : Jun 29 13:01:23 2025 GMT
Subject: CN=e9828689c33e5bee31073ff1436093599795c03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8c:2e:2c:40:36:19:a6:c1:c4:0e:18:fb:0e:
eb:6a:b3:2f:3a:af:c8:0b:5a:43:50:fe:36:69:83:
76:48:44:63:26:e9:e2:ff:ae:f5:57:40:14:34:15:
a4:eb:a3:07:47:0d:47:f5:ec:5a:aa:c8:c2:4d:18:
ab:e8:d2:b7:cb:b4:f2:08:35:f4:24:c9:16:4a:79:
5b:e3:4e:b7:3f:33:09:2d:3c:a2:a0:f0:81:9c:93:
8f:d4:ea:19:7e:19:49:61:71:1b:37:e2:5a:6a:73:
d0:f1:b0:85:b6:72:40:9c:4d:61:1a:dd:6d:e1:40:
0a:e3:96:be:4c:0d:84:76:bb:d1:c7:8e:90:53:a2:
ed:a9:72:dd:a5:1d:e6:86:96:56:d7:8b:e7:58:29:
bc:ec:98:03:bd:7a:a0:c0:2f:3b:ca:76:ff:ba:11:
b5:d1:81:30:68:42:38:34:b1:cc:17:15:04:4a:ec:
f4:ae:33:ed:c3:7c:cb:fb:1e:89:66:57:51:2b:cc:
7c:ad:bd:81:22:86:16:94:8c:c3:ac:d8:58:bf:e0:
f6:e7:7b:04:ec:55:4f:91:43:5c:e4:be:3e:5c:9c:
a3:d1:83:e4:7c:f7:8c:00:91:5b:7b:95:76:d2:c6:
b5:06:24:c2:95:93:52:07:30:ad:2f:68:48:05:0c:
59:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:82:86:89:C3:3E:5B:EE:31:07:3F:F1:43:60:93:59:97:95:C0:3F
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:9e:9b:18:8f:4c:08:da:c6:d0:53:ba:83:e7:e5:ae:03:1f:
50:e8:d6:48:89:3c:55:7c:c9:ba:4a:75:a7:71:97:52:cc:40:
b9:d2:27:b1:50:ec:af:b4:fd:d8:ea:d8:b6:02:71:f1:e6:51:
ca:b3:24:54:38:c1:b5:f7:a3:b3:96:81:30:be:72:3f:a1:4a:
5a:4d:a6:dc:97:a0:e0:66:51:23:68:93:72:d5:17:09:6a:51:
00:8c:f3:d5:9a:d2:69:b5:5f:94:cc:8e:7b:b1:d0:dc:d0:e7:
15:c6:c9:11:00:09:a4:8d:d0:f2:89:65:d2:e4:4a:47:4e:aa:
28:40:ef:e4:91:d9:be:df:50:40:5f:a2:17:b6:09:43:e1:0a:
50:1d:25:9f:90:c8:bc:93:df:e2:d6:a6:17:a7:eb:d6:92:54:
e2:a2:19:11:9a:72:6b:d1:e5:96:8e:bd:1d:cf:78:25:d0:e5:
b9:13:82:be:3f:b9:1a:57:0c:9c:91:0c:18:96:22:e6:6e:00:
fe:49:4b:8f:17:1b:c5:37:91:ae:a6:3c:6d:36:22:10:58:ac:
fc:f9:c8:d8:13:07:72:cf:9f:77:2d:44:64:ea:8b:08:db:13:
ba:ae:c2:3c:68:0b:da:6d:c7:f9:46:c4:cf:f5:d4:2c:f1:83:
68:e7:46:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:12 2025 by rpki-client