Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: Up/rKAZTNERIuMxvVy9550MzvYpCS1NianbiKwghts0=
Subject key identifier: 1B:15:75:1F:A1:CD:0A:66:A2:F2:4D:57:B7:F1:1E:D1:3B:50:D5:C3
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 019873E310F9C9CDC648280AEF4D8F76FB90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0507
Signing time: Mon 04 Aug 2025 07:01:57 +0000
Manifest this update: Mon 04 Aug 2025 07:01:57 +0000
Manifest next update: Tue 05 Aug 2025 07:01:57 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: Pi+etyja3dU2pq9e2gQXRQs75eYzLpqnWlpyYH6a2rw=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:10:f9:c9:cd:c6:48:28:0a:ef:4d:8f:76:fb:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Aug 4 07:01:57 2025 GMT
Not After : Aug 5 07:01:57 2025 GMT
Subject: CN=1b15751fa1cd0a66a2f24d57b7f11ed13b50d5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:53:cb:3f:73:5c:2a:b6:37:0f:28:a2:39:
d9:5f:fe:08:b3:8b:fc:72:4d:d8:3e:37:d9:8f:1f:
fb:ce:64:3d:1d:a4:ef:98:be:5d:45:b1:14:a4:bc:
3f:5b:40:ce:66:f9:83:27:8e:41:5d:fc:d4:c2:db:
4b:50:cb:56:73:18:9a:f6:56:c0:ee:04:60:d2:f5:
7e:d3:af:ff:f3:d9:d6:d0:18:7c:a0:fb:39:be:02:
c4:77:95:e1:14:95:f4:3b:58:97:b0:37:43:4e:85:
37:5d:d1:07:87:c9:84:24:d8:c8:15:5d:ab:f0:ea:
a7:98:28:f1:ca:00:c1:79:89:60:e5:88:ab:f4:64:
dc:2d:27:21:1b:96:d8:2c:5e:77:5a:b9:78:7a:98:
31:0b:f1:48:10:b5:93:e4:36:ea:18:85:32:e8:20:
c1:7c:b4:01:3f:a9:09:74:b8:cd:7d:df:e9:f4:28:
f2:e5:0d:98:14:e5:d7:1a:76:c3:1e:9b:af:45:39:
2a:69:20:eb:cd:de:c7:2c:cf:7b:73:9d:04:85:b8:
16:b4:d4:4d:3c:84:2c:22:b9:e7:21:35:aa:bf:d1:
b8:22:7d:03:b3:18:8b:03:54:ac:99:44:a0:03:06:
22:93:07:04:92:7c:87:b5:7b:9c:84:4c:12:5f:94:
3e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:15:75:1F:A1:CD:0A:66:A2:F2:4D:57:B7:F1:1E:D1:3B:50:D5:C3
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:63:84:33:fd:4c:3f:af:71:5b:88:d1:02:c7:04:4a:12:59:
4a:32:9b:82:32:c3:a1:48:b4:09:0c:df:1e:83:c5:81:ae:88:
d0:4b:7c:f9:b3:12:a9:c6:41:28:02:49:f9:1d:4a:20:b7:98:
58:96:b5:5b:a4:ba:79:ac:31:5d:8a:2c:cd:25:9d:15:ca:09:
ca:bc:95:f5:05:b8:57:f8:ee:79:8c:d7:d2:ee:ea:a6:96:41:
ee:16:b3:1c:7e:58:4f:69:87:6c:2a:75:43:f3:90:55:03:79:
74:8e:99:b7:ee:1f:46:8a:44:97:d1:e2:42:72:a3:d0:c3:39:
7d:98:a3:2d:ed:62:dc:ca:55:f3:b3:ba:6f:36:5b:4e:89:48:
e2:fa:9b:39:e3:ec:78:31:35:cc:1d:16:51:55:e6:78:0a:ee:
3d:2a:29:ed:e9:85:79:79:1f:fb:85:b3:4c:6a:c5:8f:99:c0:
ce:e3:10:ca:31:39:4b:fe:1c:aa:63:96:2c:58:cb:33:2e:8f:
be:aa:88:b4:6d:31:55:f4:5d:5d:16:9b:66:6f:47:cc:6b:69:
8c:25:b7:3f:9d:21:5f:fb:22:ae:c9:59:6c:a8:fc:9e:fd:58:
4a:87:22:85:25:e7:e8:57:86:1f:45:4d:c7:2e:fc:d2:38:84:
ca:b9:dc:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:59:59 2025 by rpki-client