Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: pmCC9oCu/908w/w+fFXchuVS7pr94q1batrWo6e8YPg=
Subject key identifier: D9:BB:2D:5C:3F:6A:D2:4B:98:62:1A:5B:43:CB:D8:50:CE:20:80:64
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 0197730935FCB2395677C4037BE773D4C60D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 158E
Signing time: Sun 15 Jun 2025 10:01:12 +0000
Manifest this update: Sun 15 Jun 2025 10:01:12 +0000
Manifest next update: Mon 16 Jun 2025 10:01:12 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: Yu3rDpFSvhNbg5t5vjPc6tyr5QSVOFDp0zr97JcBIR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:35:fc:b2:39:56:77:c4:03:7b:e7:73:d4:c6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Jun 15 10:01:12 2025 GMT
Not After : Jun 16 10:01:12 2025 GMT
Subject: CN=d9bb2d5c3f6ad24b98621a5b43cbd850ce208064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:4a:14:66:ce:9f:67:ad:55:26:94:14:28:
db:7c:20:2f:67:ae:f0:4e:25:0f:d7:96:c6:74:49:
93:63:46:08:0a:a8:5c:58:0f:da:9a:49:ac:af:46:
ad:a9:7a:25:7f:2c:df:9e:83:61:f6:73:27:e7:4f:
30:bd:19:f3:6b:c7:f2:8e:50:8c:dc:36:77:26:a5:
e6:27:e4:5f:4a:28:f5:7b:3e:51:b8:64:5d:76:7d:
e3:e1:3e:b9:12:d6:12:47:28:01:db:50:92:e1:f1:
77:9f:99:c0:80:85:ab:15:1c:31:ec:bb:ee:40:0c:
7f:3d:54:ef:e4:96:a4:29:f7:71:c3:b3:f6:7c:15:
38:bd:f5:9b:01:b5:86:a5:ae:e8:90:7f:cb:06:07:
42:8b:0b:85:eb:ae:75:6b:75:44:71:64:03:f6:08:
b1:55:d4:7e:23:c2:3f:b1:1a:d2:f3:dd:90:6a:05:
eb:e0:0c:9b:9e:74:d8:82:83:9e:0a:9a:82:8f:d0:
11:4c:6c:fa:d9:3f:47:72:d5:d5:2f:25:1b:f7:7d:
60:e5:b0:75:82:3a:8d:20:e1:81:ce:a5:3f:76:a1:
b4:d1:96:30:58:57:82:28:ed:d8:52:ac:8e:67:6e:
42:10:f2:7d:63:3d:a8:2f:75:10:a0:45:42:27:c5:
88:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BB:2D:5C:3F:6A:D2:4B:98:62:1A:5B:43:CB:D8:50:CE:20:80:64
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:7d:41:96:86:a1:1f:86:24:b7:fc:9e:fd:79:5a:50:2a:5b:
13:8a:ac:2b:57:2e:7d:08:bf:94:5f:3e:85:0e:bb:cd:c1:c7:
bc:ef:0e:51:ba:de:5a:6d:bc:49:49:1c:64:5f:fa:54:33:81:
1b:d0:2d:2d:6b:eb:80:35:18:52:c7:5b:15:6a:59:a8:c8:30:
02:9c:2a:02:d4:0f:13:41:c0:e7:62:2c:56:83:20:09:cd:03:
f2:a0:cc:46:be:73:9c:36:83:c9:69:0b:d4:dd:2e:06:d2:da:
a0:b1:c7:05:0f:79:b3:89:39:c3:78:92:40:19:44:ac:dd:78:
4a:85:27:3c:8b:2e:90:eb:81:ae:d4:a4:a6:9f:6e:28:73:5f:
ba:ad:30:5e:7b:21:dd:8c:ac:de:11:4b:3b:44:72:e8:7c:94:
a6:a8:ab:62:f1:b9:22:7d:b7:9f:8f:ec:cf:09:74:0e:33:03:
eb:e7:78:d8:46:53:f2:99:1b:ec:f1:a2:55:e2:0d:a8:2e:57:
90:eb:f6:e5:fc:3d:41:7d:ca:32:3c:ea:5e:67:67:d1:2d:b5:
28:f1:2b:1a:fc:b5:ce:0f:0c:5b:8a:d2:f9:2c:d7:a3:e9:9b:
31:43:e6:09:11:f0:77:d1:b4:9d:ea:da:f6:31:7a:d8:47:16:
44:c6:e3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:11:20 2025 by rpki-client