Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: km+tyfCcBHS6Tz8rwt47pjnJaiINqU9rLiq5bRx89h4=
Subject key identifier: 36:0C:97:4A:7E:08:B3:C3:A0:16:E4:21:90:5A:52:CC:9F:DE:97:E5
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 01976F2C1C569ABC36DCC0D23781F88AE307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 110E
Signing time: Sat 14 Jun 2025 16:00:51 +0000
Manifest this update: Sat 14 Jun 2025 16:00:51 +0000
Manifest next update: Sun 15 Jun 2025 16:00:51 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: Hm4FTQ/i1ql2Y7MuVgQ5AA5QTENoWsoCbFNY4nUHQOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:1c:56:9a:bc:36:dc:c0:d2:37:81:f8:8a:e3:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Jun 14 16:00:51 2025 GMT
Not After : Jun 15 16:00:51 2025 GMT
Subject: CN=360c974a7e08b3c3a016e421905a52cc9fde97e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:68:2e:3c:15:a0:f2:b5:3d:bd:14:25:2c:cd:
96:e9:ab:c8:51:03:a4:8d:49:c3:2c:d9:fe:a0:97:
b9:a2:95:02:2d:93:01:ca:96:39:6f:88:a5:85:89:
ee:de:e8:29:9c:51:c2:53:8c:eb:5e:82:5e:e0:dc:
e7:d2:99:e7:78:9c:b3:c6:b1:b4:5a:9f:0b:93:f3:
b3:10:29:fb:ff:c7:e7:fd:b0:c9:0a:96:19:9e:75:
01:a0:cd:22:db:00:3c:b1:e1:5c:9d:98:5e:9e:75:
3e:9d:0a:62:b9:c3:3b:5b:e9:bd:f3:11:8a:c0:a7:
6b:03:27:73:55:29:13:b1:62:05:c0:38:99:2c:e6:
a4:55:f4:90:f0:e5:28:10:ef:11:cf:93:17:4f:70:
53:56:75:93:fa:d6:21:ee:e0:35:6b:43:a9:d5:2f:
ab:55:98:30:19:91:22:30:71:86:3a:69:1f:49:85:
8d:28:47:62:c4:5e:68:12:45:91:2a:b9:e9:cc:91:
78:17:52:da:ff:75:cc:0a:47:fa:02:bb:d8:37:2a:
53:3f:1c:50:ba:c2:60:e0:ea:a6:5c:d2:a1:30:8d:
13:76:05:01:43:0f:33:9a:62:90:da:21:e6:bb:b5:
3c:bb:2c:2e:ea:b1:1a:f3:10:96:77:9a:cd:7b:fe:
e5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0C:97:4A:7E:08:B3:C3:A0:16:E4:21:90:5A:52:CC:9F:DE:97:E5
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b0:14:4f:ad:e8:76:85:a8:3a:c4:2c:23:25:4e:26:db:2a:
6b:17:f0:84:bf:c5:b8:57:86:d7:76:45:1c:2e:c2:7d:82:65:
fb:46:fb:3a:7d:cb:67:66:15:9d:bd:21:5a:35:31:9d:b0:c1:
8b:19:d1:12:ec:d9:7e:26:df:99:97:73:39:3d:0c:73:4f:7d:
d5:c6:a0:ed:16:b1:0f:56:a3:e7:b2:b7:1c:4b:23:bb:61:f0:
08:e4:54:2c:4d:f4:65:9c:85:57:8d:77:36:a8:8c:a6:e0:93:
48:21:24:7a:2a:39:da:8e:40:62:64:39:33:f2:a5:48:a9:ac:
cc:64:9b:f5:11:c5:65:58:9f:a0:39:07:8b:d2:b6:e3:41:77:
85:53:d3:b7:9f:dd:41:3f:7f:81:c9:dd:31:72:cf:41:8f:b1:
bd:7d:7c:47:9a:f1:a4:01:fc:8a:33:20:14:f3:c4:ca:21:e1:
cf:93:96:1e:23:1a:ba:8c:9c:ee:fc:c6:08:5e:92:3d:85:93:
f9:75:c7:70:93:e1:14:2d:52:d5:cf:4d:96:f5:76:3f:58:1a:
39:44:df:4a:31:fb:d0:73:92:58:9a:f6:82:a6:f1:88:9d:9c:
b4:10:35:08:6f:cf:b7:cf:34:69:ac:04:25:29:86:00:b0:2c:
34:c6:75:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:07:18 2025 by rpki-client