Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: s88rYp2gL2J8xep0BOvhkpT1BNyv8+0Vh8oGCRXk0bY=
Subject key identifier: AB:21:CA:2C:EA:2B:B5:A6:64:C0:80:D8:A9:7A:1F:39:E5:B6:5F:5C
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 019A7225ED4D5AECDD356B93DB06738C0397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 1569
Signing time: Tue 11 Nov 2025 09:01:19 +0000
Manifest this update: Tue 11 Nov 2025 09:01:19 +0000
Manifest next update: Wed 12 Nov 2025 09:01:19 +0000
Files and hashes: 1: LPL5COduulE_WMolEzZwrGXijT4.roa (hash: H3PvlGhuhwCJd5x48Dt0jme9fPhyxLV/+QRuAD/R+ek=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: NW7seG/T1oOMHtPUmdl3k8S2TwL/44Bx0W0S9ll1vtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ed:4d:5a:ec:dd:35:6b:93:db:06:73:8c:03:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Nov 11 09:01:19 2025 GMT
Not After : Nov 12 09:01:19 2025 GMT
Subject: CN=ab21ca2cea2bb5a664c080d8a97a1f39e5b65f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1d:ce:bf:15:db:6b:b2:95:45:af:aa:0d:48:
68:70:14:59:05:e6:ba:1e:8d:93:7a:13:3f:c0:8a:
1d:ad:b1:a2:58:f6:2b:b0:3f:05:95:f2:bb:7b:aa:
93:ca:3c:1d:04:e7:63:22:19:ee:44:f2:c5:0e:e2:
3a:41:43:41:d9:67:40:bc:66:1b:d3:5b:a9:36:5b:
59:19:56:5e:11:f1:8e:68:90:bd:18:72:48:8f:d9:
12:5a:99:6d:d8:40:d3:3f:ea:ac:85:39:6b:34:d2:
b8:26:d5:df:6d:b7:af:04:c9:38:ef:cd:52:33:30:
ba:6f:f0:9f:02:ae:31:9e:17:f0:7d:71:1e:1d:a2:
ff:c9:8e:80:8d:5b:5a:59:9a:cc:dd:e6:1a:84:6e:
e3:a7:44:8b:57:93:bb:e1:d8:af:62:c0:1f:92:e0:
c3:69:9b:c8:40:21:a1:dc:7d:78:aa:a0:83:51:0b:
34:eb:c0:00:5e:c1:64:01:fb:0e:da:f9:b7:97:61:
ce:77:a7:a7:1a:5f:e8:d9:60:87:d7:70:88:63:07:
b5:d8:db:dd:bd:5d:00:cb:fe:dd:64:d8:19:48:95:
0f:57:06:44:80:02:fc:99:f5:66:2b:c0:d5:04:6f:
c4:86:eb:01:1b:6c:d3:c8:e3:0f:7d:78:8e:12:44:
93:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:21:CA:2C:EA:2B:B5:A6:64:C0:80:D8:A9:7A:1F:39:E5:B6:5F:5C
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:08:7c:5e:0a:3b:4b:7a:34:1e:99:f0:d5:60:cd:76:29:1a:
9e:b4:3b:34:16:b8:8b:73:23:1d:cb:58:ee:e6:05:c4:b0:a2:
e9:48:f2:e3:56:23:be:c5:8d:a3:6d:42:60:e0:11:97:d7:40:
ce:33:93:ec:2a:fd:6e:e3:62:6e:80:e0:5c:a0:96:89:d7:4d:
69:80:71:4c:68:b8:00:f6:25:4f:2a:00:2c:38:33:3c:37:e9:
07:59:e2:e3:9f:64:17:c1:25:41:35:c5:5e:83:74:1e:7d:9a:
3d:1a:86:2f:93:45:4c:d0:26:b2:b3:2f:17:9b:82:0d:17:6a:
9d:4c:6a:3f:59:f1:c8:99:46:18:4b:06:11:f1:c8:3a:ed:96:
78:16:67:77:ec:0f:2a:65:00:46:80:bb:d2:45:f8:c6:09:15:
74:cf:d2:99:90:02:04:e1:d1:13:dd:42:29:70:c3:10:fe:58:
aa:3f:98:33:de:b2:92:b9:df:bb:bf:07:44:59:d9:29:aa:34:
73:a5:38:aa:fd:d5:84:7e:b0:0e:01:0b:9a:00:79:e8:7d:fc:
a5:54:3d:3d:14:e0:b3:3c:b2:8f:ec:fb:b4:c2:a8:65:1e:13:
25:a1:03:75:ae:95:09:76:e3:cc:b0:62:3e:3b:bb:72:da:bb:
ea:14:7a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:16:54 2025 by rpki-client