Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: Of9vEi26JuN1kl93fq6aHAOHPyKWx8JqdQ5zVv1Lu5g=
Subject key identifier: 78:C6:24:B1:7D:3B:5F:AD:8B:28:D9:F0:64:7D:CD:77:78:E4:83:05
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 01976F2BF5CD0AF070E5BA1B8DB5E82792CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0480
Signing time: Sat 14 Jun 2025 16:00:41 +0000
Manifest this update: Sat 14 Jun 2025 16:00:41 +0000
Manifest next update: Sun 15 Jun 2025 16:00:41 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: EY/TEpg6gsmbg2EC4VAat4D2rLbzZ9qEMIjnxAibSaQ=)
2: x22xk2A-Apb8dLpmSadyKyJCkDo.roa (hash: gu74rPveiHXJ2A/NDXg+xf+4EJriNsSl+5m/7KHQAxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:f5:cd:0a:f0:70:e5:ba:1b:8d:b5:e8:27:92:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Jun 14 16:00:41 2025 GMT
Not After : Jun 15 16:00:41 2025 GMT
Subject: CN=78c624b17d3b5fad8b28d9f0647dcd7778e48305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bc:e0:a4:58:3f:ec:45:af:ff:82:63:65:f2:
55:46:93:a1:6a:d8:76:14:88:e3:f6:ed:1d:0e:6e:
2c:7b:f2:7e:d1:23:7e:14:0c:58:d3:35:89:59:4a:
8b:af:a3:31:a8:95:03:82:36:28:3b:65:a0:9b:a8:
58:32:b2:b0:27:28:90:0c:d2:fb:9a:cd:f7:21:40:
97:57:fb:ef:32:ec:82:40:a9:e2:3d:76:db:ab:03:
17:1a:2e:26:80:53:59:86:c0:14:35:73:d1:a6:a1:
7c:e8:4c:d5:3d:e4:55:ef:01:f8:7a:63:d1:30:2f:
c4:76:1a:0e:a7:1b:92:a5:bf:81:fd:fe:83:ef:47:
f2:a9:24:fc:e9:f9:29:40:5a:7f:5d:ab:da:43:28:
1e:38:67:9c:fc:c1:45:ee:bf:20:fc:aa:be:2b:a4:
8d:dd:59:0a:fe:cf:1e:f7:1c:03:ac:58:69:3c:3f:
2d:4f:cc:25:cf:82:af:df:3e:a9:63:c3:f8:e7:ab:
f1:60:ed:36:18:5a:a9:ae:6b:4f:2c:78:b8:5f:26:
1c:1a:20:dc:4d:f8:be:11:30:73:7d:29:bd:44:d8:
1b:ab:e0:13:c7:66:3f:55:05:4b:f2:bf:dd:20:93:
f3:b6:48:ad:51:bb:ad:3f:f2:f7:54:a1:b7:63:5c:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C6:24:B1:7D:3B:5F:AD:8B:28:D9:F0:64:7D:CD:77:78:E4:83:05
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8c:e6:86:a6:f2:c4:31:db:9e:53:68:d7:cd:95:c6:96:2f:
18:8e:a8:9c:94:d0:2d:56:9c:6a:04:e3:f4:5b:87:ad:b7:77:
f6:8b:c3:cc:6d:3d:eb:6c:ae:b0:57:01:c0:90:93:35:4d:72:
ae:e3:93:95:4a:d0:e5:a7:65:0a:f1:32:eb:dd:23:52:d0:f3:
54:51:41:28:70:3e:1e:d2:3f:1d:c6:ee:57:4b:88:f4:ec:b4:
b7:f8:52:9f:6c:57:1f:56:70:93:40:e1:8b:59:a3:90:d9:4c:
ce:67:1c:80:40:e0:62:c2:ac:f4:cc:49:ea:29:78:82:ec:f9:
dc:ac:94:d1:7b:d1:ee:5b:84:5c:9b:6f:44:46:5a:72:44:59:
07:10:d0:c8:b3:ef:ed:2f:3c:d4:ea:ab:e0:9e:d8:eb:49:7c:
1b:28:2e:16:25:b8:fc:a9:d9:cd:75:9e:dd:f4:95:ea:52:03:
0f:bc:c6:6c:6d:6c:f9:d1:b7:08:07:73:8d:2d:6c:3f:bd:12:
58:e5:cf:87:2c:f2:7a:21:b6:95:b2:d1:02:ba:b3:57:c3:9d:
4e:5f:df:70:56:ac:30:97:79:ef:da:a1:df:f6:68:7e:e9:68:
f9:9a:98:bf:3a:40:93:75:cc:49:b6:34:43:a3:39:0b:fc:10:
55:2f:5b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:49:55 2025 by rpki-client