Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: dY9IqSSHycHg3aFVRcxDF935pCJpjhUj5+OpOkFzDB0=
Subject key identifier: A9:04:53:9F:CC:EF:E0:C6:0D:44:30:4E:7B:85:9A:6E:D9:82:F4:6B
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 019873E32C3DA184D0172777C3948977FD41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1195
Signing time: Mon 04 Aug 2025 07:02:04 +0000
Manifest this update: Mon 04 Aug 2025 07:02:04 +0000
Manifest next update: Tue 05 Aug 2025 07:02:04 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: NlITTLTeT23G2gnZdFZ7V4x3oPuxPK6eXWtAwq6ALT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:2c:3d:a1:84:d0:17:27:77:c3:94:89:77:fd:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Aug 4 07:02:04 2025 GMT
Not After : Aug 5 07:02:04 2025 GMT
Subject: CN=a904539fccefe0c60d44304e7b859a6ed982f46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:da:fe:f7:7f:62:bb:bd:97:98:84:4f:7e:26:
e4:a2:0b:3a:bb:3b:53:61:06:94:81:a1:e0:ac:00:
89:18:2d:85:7e:f2:d4:13:43:f4:6e:2c:03:1f:80:
e7:43:3e:19:1d:c5:50:8f:6a:6f:60:1d:e7:a6:be:
75:d3:de:fe:c9:98:73:46:a6:0c:7b:16:a6:7f:ee:
f3:52:02:38:25:8d:22:d2:aa:16:55:08:e5:e4:70:
aa:b2:39:4d:5d:28:4c:d4:7f:c9:87:f1:0e:a4:2a:
01:be:32:11:bb:83:ae:4d:cc:f0:36:23:df:00:05:
fb:9b:6e:e7:e5:f5:61:4f:fc:6b:62:22:32:e9:72:
0f:ba:20:83:c4:9f:e0:c8:b5:cf:89:46:2e:b1:b7:
88:7a:e1:60:7b:9e:79:fe:b5:04:46:a8:9a:80:83:
47:79:a0:f9:0a:89:93:ce:89:75:c0:36:12:ea:1d:
74:f7:dd:9f:f6:58:0d:7e:9c:d7:1f:7e:79:24:71:
44:7b:42:6d:b4:53:09:01:d0:79:d0:b0:f8:29:ae:
0e:a6:be:e3:38:7b:de:ed:5e:37:b5:c3:dc:3e:83:
e9:60:9c:ce:7f:2d:c4:77:be:db:1f:58:f7:18:fe:
21:1a:ae:1e:26:fa:68:7f:48:50:83:9b:dd:83:4a:
2b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:04:53:9F:CC:EF:E0:C6:0D:44:30:4E:7B:85:9A:6E:D9:82:F4:6B
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d5:2f:65:05:26:9b:b5:f9:91:69:7d:d9:a4:8f:71:1c:06:
6f:87:da:44:62:3d:66:cf:f3:ae:38:e2:72:9e:c1:6a:e6:a4:
71:a3:e6:c6:ea:ba:27:f1:8a:64:44:a5:c7:12:9c:c6:b3:40:
20:3d:db:d0:75:fe:5d:80:58:2a:83:61:55:ec:56:c2:b5:a7:
05:4b:5b:d7:29:ea:80:e0:7b:b4:0c:30:15:fd:e5:09:24:b4:
5d:1e:ec:56:ba:6d:ac:96:48:22:ad:ec:82:00:37:df:04:e8:
02:97:f1:b0:7c:7a:80:0a:67:24:79:c3:3b:1e:58:02:c3:13:
35:38:7e:2f:e7:ca:e4:3d:16:74:cd:de:96:74:62:da:4a:1e:
0a:3a:3f:2d:2f:e8:74:e4:ca:53:00:76:c5:42:16:b6:57:9d:
26:42:a8:82:5c:dd:3f:d3:c2:c6:94:75:e6:fc:2e:c7:51:d1:
a5:69:07:4e:93:e3:cb:2c:56:e9:97:71:4d:58:f0:af:63:3a:
b6:f3:91:80:ba:75:8f:a2:66:43:fa:0b:71:dd:b5:c0:32:5e:
b0:84:bc:20:e2:6b:af:8a:f2:8c:f6:8c:f9:7e:47:25:22:0a:
bc:50:c2:59:f0:cd:1c:70:d2:ed:95:98:72:aa:f5:e3:46:e6:
00:e0:81:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:47:48 2025 by rpki-client