Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: XPPwO6dK0LYY2d4YtFYb0xiYr2Wq8dCeuyIRRx8FmlQ=
Subject key identifier: 31:7E:40:5C:7E:A4:95:A6:B3:9B:9D:E7:7B:08:E8:DB:4A:C7:3C:28
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 0199240DAFC285ACCA2398C1817A938DFA4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 14BC
Signing time: Sun 07 Sep 2025 12:01:40 +0000
Manifest this update: Sun 07 Sep 2025 12:01:40 +0000
Manifest next update: Mon 08 Sep 2025 12:01:40 +0000
Files and hashes: 1: LPL5COduulE_WMolEzZwrGXijT4.roa (hash: H3PvlGhuhwCJd5x48Dt0jme9fPhyxLV/+QRuAD/R+ek=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: eMs+ysmOxuOXit5ccXPyLHPE5CWVg6IWqmgHIITZ3Cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:af:c2:85:ac:ca:23:98:c1:81:7a:93:8d:fa:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Sep 7 12:01:40 2025 GMT
Not After : Sep 8 12:01:40 2025 GMT
Subject: CN=317e405c7ea495a6b39b9de77b08e8db4ac73c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a9:56:18:57:cd:22:0c:24:96:4c:5e:50:de:
bb:28:a1:78:de:40:5c:ea:e7:d5:f2:78:76:80:61:
6d:97:d7:a0:8c:76:0c:bd:18:ca:52:a3:b4:73:90:
b4:6e:b1:ea:6a:de:90:80:7b:51:06:05:f0:12:02:
0d:5e:20:34:3a:f3:7c:fc:5c:4e:f4:b3:dd:ee:81:
4c:4f:7a:0f:73:46:d9:a2:34:2c:a8:84:65:6e:5b:
b9:90:a1:a2:51:54:6d:49:3f:a2:6e:71:0d:80:c0:
21:94:91:7a:95:02:bf:19:c4:9e:65:ff:12:b3:44:
35:d1:54:82:ab:6e:90:bd:d1:9c:ca:fc:9c:7a:b4:
19:12:8c:3c:74:9a:42:b5:3a:29:2f:a7:11:a1:fa:
da:6a:86:ed:46:4b:33:fd:ff:62:45:c3:62:13:e3:
77:8f:68:f1:ab:ab:71:52:80:7e:e0:50:28:97:69:
10:d1:65:0b:e2:00:13:7d:ec:e2:01:24:99:68:d1:
93:30:ce:1d:79:82:43:9b:ad:52:d2:53:20:70:58:
01:ec:84:90:3f:76:ad:93:37:27:fb:58:d9:4b:bb:
e1:75:fa:e2:43:95:2e:35:e7:75:ea:cb:bf:8f:d5:
f1:d2:97:66:00:26:63:9e:fd:bc:ab:41:72:81:e5:
6a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7E:40:5C:7E:A4:95:A6:B3:9B:9D:E7:7B:08:E8:DB:4A:C7:3C:28
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:e0:13:46:c8:9b:60:79:3c:42:01:a6:78:7b:56:1a:d3:42:
99:96:a4:fe:90:a8:42:20:78:be:6a:33:1d:cf:62:2e:38:c8:
83:c8:a0:4d:48:26:66:0b:28:12:76:44:51:b7:bc:8b:3c:c2:
56:16:52:45:03:41:1d:21:98:0f:08:0e:3c:2b:9f:76:cc:47:
f9:2b:9a:9e:92:7c:0d:29:48:06:6d:df:95:c2:3b:8f:91:22:
81:90:e4:fb:41:73:65:cf:97:40:bf:e7:1f:82:18:d8:a0:fd:
37:22:00:68:f3:41:53:bf:66:00:6a:0a:39:bd:22:52:28:f0:
0d:88:7f:c7:a5:ac:65:e7:cc:54:28:47:00:63:76:3e:98:23:
82:3b:a0:08:d1:49:e8:bd:ba:f9:64:e0:1c:f5:2e:fd:b3:b9:
2e:9f:c1:bd:7b:71:a4:02:95:a5:c9:b1:64:fc:d6:aa:e4:94:
87:dd:62:d1:80:13:59:28:bb:e0:e5:90:00:01:ce:9d:ce:0f:
45:38:b4:a9:b0:ee:65:7c:e9:60:27:36:ea:7c:44:a6:66:29:
9d:37:5e:b0:85:ce:22:25:b5:c2:aa:a2:25:fb:17:f6:d8:fa:
f0:7a:9c:38:e5:55:b8:00:5e:a5:1b:a7:8e:2d:09:0e:78:93:
47:2f:60:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:34:12 2025 by rpki-client