Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: c1cEu/sG9cYNn9oKmnRMkYquUMoGOgtJm4HpBzjbcOk=
Subject key identifier: 0B:C5:78:C5:A3:D6:B5:73:F7:A7:70:66:81:DD:BE:0B:2B:10:3A:3D
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 019771F5F72F134F1AB505FAE0CA7CA28C67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 11AB
Signing time: Sun 15 Jun 2025 05:00:34 +0000
Manifest this update: Sun 15 Jun 2025 05:00:34 +0000
Manifest next update: Mon 16 Jun 2025 05:00:34 +0000
Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=)
2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: abKdpNmiN7F9nhkzqyNusZhB4vBmAT7QIyWlGv/mmF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f5:f7:2f:13:4f:1a:b5:05:fa:e0:ca:7c:a2:8c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Jun 15 05:00:34 2025 GMT
Not After : Jun 16 05:00:34 2025 GMT
Subject: CN=0bc578c5a3d6b573f7a7706681ddbe0b2b103a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c9:e7:60:dd:6b:c4:e7:5e:c6:81:82:8d:2c:
d1:79:19:e7:af:18:29:16:5d:d0:1f:c2:a8:a5:79:
30:bc:ec:0f:90:3d:a0:f2:ea:e8:26:fa:3e:81:d6:
40:e8:7b:a8:1d:c9:91:6f:3c:1f:b4:e9:e0:49:ce:
66:28:c5:7a:9e:6e:49:25:e5:00:a8:87:60:78:d1:
42:01:0c:2a:97:65:7a:16:fa:46:52:1c:04:40:4c:
54:d0:9c:05:39:71:12:c3:9f:94:e8:97:7e:30:dc:
39:df:64:e7:0e:66:50:5a:ba:3c:e4:73:6e:27:48:
5f:70:76:bd:91:ec:68:0b:ac:5e:fb:0c:1d:0c:23:
92:60:ae:88:2f:82:23:4c:31:f0:f7:f7:89:fc:b3:
68:f6:8e:a4:b3:55:4c:c8:94:97:e1:26:55:02:85:
14:47:fb:47:0c:d0:bf:73:98:9f:1c:f5:3b:93:05:
30:ab:e0:e1:5a:1d:86:3e:c5:16:f4:9f:de:5e:c3:
d4:6d:13:9b:70:45:c7:d5:2e:b5:ef:3e:59:2e:16:
80:48:08:89:cc:4c:60:13:5b:33:5c:17:18:5c:58:
c9:d2:7d:5e:01:17:22:ce:56:df:90:db:de:7f:19:
43:79:de:25:0d:38:1f:72:01:ea:40:db:14:46:b4:
97:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C5:78:C5:A3:D6:B5:73:F7:A7:70:66:81:DD:BE:0B:2B:10:3A:3D
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e4:9f:b8:21:fe:dc:e8:79:1c:bc:19:3b:38:4a:73:d7:6a:91:
84:51:bc:bd:8d:2c:ff:27:fd:de:72:f9:cc:27:ea:4b:da:65:
87:3d:4a:c3:f7:f1:dd:47:d2:de:e5:71:c2:d3:90:e7:64:43:
99:11:5b:7d:48:5a:9e:1b:ab:cd:02:ec:8a:0a:40:27:66:15:
73:9c:f0:07:a9:26:f9:b5:bb:12:93:d4:1c:cc:4f:a2:f4:49:
5a:9d:55:81:5a:a4:7a:6d:ea:dc:c7:42:0f:f2:9b:a7:c6:6e:
a2:36:ef:74:e5:18:e0:e1:d4:2e:b1:cf:f3:9e:fb:4f:69:99:
08:22:6c:0a:da:81:b6:4a:91:47:17:9a:a2:09:8f:37:a1:48:
2f:6b:24:05:55:4d:d2:f8:94:af:c5:51:4a:c6:76:01:c2:2d:
38:33:79:e9:c3:a2:3e:79:50:5f:ce:18:ef:d8:a9:46:0f:d9:
5a:da:5f:54:97:8f:b1:2c:61:1c:ef:5b:bc:a0:30:cf:d4:99:
ec:7e:76:71:b4:5e:85:7c:df:83:47:4e:09:47:1a:4a:e4:8a:
1f:f8:78:49:d4:a0:ba:e9:fc:dd:bc:38:01:ac:8b:51:8c:b8:
ff:50:d2:af:45:71:29:1d:d6:0a:2e:e2:1f:ad:c3:a9:12:06:
1f:fd:b5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:55:30 2025 by rpki-client