Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: xL0csj0BVabDZdsg4mD1c4rpaVFSaDxyY8B4774h80s=
Subject key identifier: F7:10:D6:8B:1D:30:51:67:B2:E1:0D:2F:F3:9E:FF:96:37:56:8E:0B
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 0196741E9120396A738FAAE4D66FBABC1B5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 03FE
Signing time: Sat 26 Apr 2025 22:01:22 +0000
Manifest this update: Sat 26 Apr 2025 22:01:22 +0000
Manifest next update: Sun 27 Apr 2025 22:01:22 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: Zk7w8FMuye9dgubMDV3b9lZww85oWcBdyV9jwiah7no=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1e:91:20:39:6a:73:8f:aa:e4:d6:6f:ba:bc:1b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Apr 26 22:01:22 2025 GMT
Not After : Apr 27 22:01:22 2025 GMT
Subject: CN=f710d68b1d305167b2e10d2ff39eff9637568e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7a:bd:44:39:f2:e1:2b:9b:79:1a:35:7f:16:
7d:82:c9:5e:f4:b8:eb:bd:f4:3e:23:3a:42:e9:3a:
0f:42:dc:cb:ab:43:db:26:69:d4:2a:73:56:f1:5a:
cb:f8:94:2d:74:d7:24:04:d1:31:c1:2d:b8:7c:dc:
f4:a1:e9:c8:f7:26:d0:21:e6:61:e4:9c:b0:13:2d:
94:d3:60:c3:58:73:b1:4f:e7:23:3d:02:00:37:a6:
62:35:bc:ca:61:50:98:61:f8:e5:df:03:be:0e:79:
93:87:c7:d2:19:c7:59:16:14:e8:ab:10:ce:59:c0:
31:4a:41:e6:18:51:bc:14:54:44:91:2f:fa:4c:75:
99:5d:77:b5:d4:65:eb:3e:3d:05:ad:8f:d4:97:b0:
06:c3:ae:9c:05:9a:e7:d9:98:77:ad:7e:54:e5:80:
54:ac:47:58:77:7f:a9:a3:a7:d1:61:ca:7f:07:3d:
d2:6a:4a:a4:62:11:9a:7e:89:8d:90:e4:85:0f:dc:
43:92:34:d1:af:28:9a:9c:2c:0f:bf:cd:28:68:46:
09:a7:53:55:83:44:ec:5c:ea:d1:7d:c2:8d:4f:9f:
5e:76:0a:dc:6c:f7:b6:18:5b:d7:5c:d3:d1:11:47:
ee:8e:01:b6:13:77:a7:09:b6:67:08:11:42:2e:08:
de:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:10:D6:8B:1D:30:51:67:B2:E1:0D:2F:F3:9E:FF:96:37:56:8E:0B
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:29:6b:98:d0:60:7d:d4:19:7f:b0:32:89:df:26:19:85:8c:
84:a0:72:23:09:02:85:f9:4f:60:f2:31:6e:04:f1:76:ac:02:
43:ec:cc:7a:82:01:9b:1c:11:f2:aa:90:32:6b:87:36:1b:b2:
10:ac:9d:df:48:c5:23:01:87:51:c8:42:16:cf:d0:af:91:4c:
85:32:57:df:79:dc:21:89:46:6c:c6:6b:d8:f5:2f:3f:66:0d:
65:a5:a9:83:06:c1:e3:9f:a0:29:8b:36:aa:a4:95:4e:f0:d7:
6a:b5:96:0e:cd:ce:38:d8:5c:ff:6e:da:95:6d:dc:38:a1:b7:
72:e4:e4:33:ec:e8:56:bc:16:35:74:79:b3:db:39:2f:bf:db:
40:61:6a:02:78:53:4c:33:a4:f2:51:74:b1:9e:3a:62:08:33:
c8:53:90:da:35:2b:74:69:72:78:be:32:5f:b6:38:d5:30:4d:
66:83:db:0c:c2:f2:3b:94:34:58:95:fa:d8:8f:33:22:eb:01:
5e:b7:c9:e1:0d:35:54:b7:a5:f5:12:81:4b:9e:4c:a1:e6:b9:
79:76:30:a0:a0:73:e7:af:fe:e9:da:5c:e7:c6:56:f8:f0:e6:
58:a5:f7:d8:4d:19:f2:13:91:7d:da:47:3a:84:54:e1:4e:27:
bb:a8:48:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:06:15 2025 by rpki-client