Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: I9RECOT2Enx7wRbuci/3UqpXG+Hr7tDD4oxytbVBgh8=
Subject key identifier: B7:FE:95:18:89:B5:36:4B:34:2D:C5:47:AA:3D:2A:48:9D:FB:A4:37
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 01974AE89B1CF9E7BD205E5C06285A6386C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 13C7
Signing time: Sat 07 Jun 2025 15:00:47 +0000
Manifest this update: Sat 07 Jun 2025 15:00:47 +0000
Manifest next update: Sun 08 Jun 2025 15:00:47 +0000
Files and hashes: 1: LPL5COduulE_WMolEzZwrGXijT4.roa (hash: H3PvlGhuhwCJd5x48Dt0jme9fPhyxLV/+QRuAD/R+ek=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: uDGigQw9fjbyJTCM7f/5hFmrdCbUasGh3eaT4awvlfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:9b:1c:f9:e7:bd:20:5e:5c:06:28:5a:63:86:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Jun 7 15:00:47 2025 GMT
Not After : Jun 8 15:00:47 2025 GMT
Subject: CN=b7fe951889b5364b342dc547aa3d2a489dfba437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bb:1e:ee:da:d2:75:f8:0a:04:d0:96:c9:d6:
20:82:7d:da:2e:de:25:8b:78:73:6c:2c:e2:86:16:
88:a7:b8:de:04:2b:9e:d2:96:1e:ce:b5:6f:ed:6a:
f3:31:36:84:68:98:e2:a8:f2:8f:2e:b0:66:6e:26:
f3:a0:e1:17:56:e2:23:54:7d:4d:d8:e9:56:9a:4a:
36:80:37:a5:dc:1e:03:df:52:c3:eb:74:74:6c:01:
8c:3c:51:e9:c3:06:98:cc:18:3c:b1:15:1c:eb:77:
52:90:06:a9:65:37:79:44:2e:9d:f8:04:d8:b8:d4:
cf:5f:6a:3b:6a:18:bc:de:74:f8:93:7a:b1:37:36:
97:a5:5a:2a:30:49:b4:a2:33:0a:a9:ba:82:87:b4:
10:4e:56:e8:e3:6d:ea:85:63:e1:0b:ce:99:13:a3:
e0:00:3b:f4:3d:81:30:a9:b5:8d:f3:a2:36:c6:c6:
6c:88:b1:db:c6:53:42:dc:32:52:09:9e:07:ab:61:
58:1e:79:97:ba:00:e6:7e:09:76:92:74:c6:61:00:
7d:6f:97:4b:f8:08:ec:9b:0b:db:e1:99:f6:ba:55:
6f:4c:6b:53:1e:49:8d:a8:8a:49:8f:c6:0c:b1:ed:
ff:35:c5:a7:7c:2e:73:7e:5c:34:62:16:ef:5f:74:
18:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FE:95:18:89:B5:36:4B:34:2D:C5:47:AA:3D:2A:48:9D:FB:A4:37
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:7d:5e:16:49:45:e7:03:fc:aa:2c:f7:85:af:9f:8b:28:54:
e1:ce:ff:de:a7:5d:13:e3:0e:b2:58:f5:28:bf:52:b6:8e:9a:
45:0e:d3:63:af:ac:3c:a0:91:69:67:a9:27:72:93:6c:24:d1:
82:e0:54:a4:af:49:3d:1b:42:c4:93:1c:68:69:eb:bd:af:58:
97:9c:46:f4:30:a7:fd:40:43:b4:c5:01:7a:3c:0f:8b:7b:0c:
23:6b:63:7e:46:37:a7:6f:88:10:18:d5:63:31:88:3a:b6:04:
ba:f7:30:3d:f9:0b:47:e9:7f:c5:51:e3:d6:3f:84:4b:4d:99:
7e:7e:95:d3:a1:04:04:f0:9b:47:c5:45:95:4a:01:f2:b8:1c:
bb:a1:1f:37:26:a8:dd:4f:e9:96:84:ad:30:d7:68:ce:8d:80:
b8:d4:d6:ad:ba:6a:3e:aa:d9:9c:63:2f:b6:d1:d7:f6:7a:8d:
f0:6f:84:ef:95:05:7b:52:94:32:65:a9:4e:1b:be:e4:36:cb:
69:b8:4d:fc:cd:90:f7:4e:66:be:03:d8:c6:e5:0a:2f:dd:cc:
d9:88:76:1a:ab:b8:07:20:1f:b3:b8:47:04:3f:e2:1a:dc:cc:
57:05:6b:9f:35:37:63:2d:fb:43:8f:98:52:bb:f3:8a:6b:29:
2d:89:2d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:58:00 2025 by rpki-client