Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: IFlTUHUPC6Jvgu1RPHo4lA+ZYGs0tkBOPau717rvRhI=
Subject key identifier: E5:CA:F5:5C:8F:E5:C3:B8:58:66:3B:7A:FB:F4:AD:B6:9A:A5:2B:E5
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 01994F2E01EE4FFB97C3CADA1309F4A7A9A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0902
Signing time: Mon 15 Sep 2025 21:00:39 +0000
Manifest this update: Mon 15 Sep 2025 21:00:39 +0000
Manifest next update: Tue 16 Sep 2025 21:00:39 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: vm0HiA/GDU9QPeNsjicb2a0uzTM3Z/zIVe8vxv+XMsM=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 13:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:4f:2e:01:ee:4f:fb:97:c3:ca:da:13:09:f4:a7:a9:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Sep 15 21:00:39 2025 GMT
Not After : Sep 16 21:00:39 2025 GMT
Subject: CN=e5caf55c8fe5c3b858663b7afbf4adb69aa52be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ee:40:bf:63:ed:88:ff:4d:2b:21:3b:58:b7:
44:f9:e6:16:d4:bf:46:44:91:a9:55:dd:2f:94:b6:
e5:6f:88:ac:e1:03:1d:97:97:0e:e1:d4:e5:fc:49:
ed:ff:24:90:18:44:eb:22:51:05:ec:ab:c3:ab:95:
55:0d:72:11:9d:ca:b9:dd:ee:e8:1f:d3:6d:e3:2c:
ee:4e:da:4e:9a:e0:a0:ec:79:2d:82:26:e8:a2:5e:
19:0b:54:f6:2c:76:c8:90:3d:c1:d7:90:49:54:82:
8d:49:e6:bc:be:12:ca:71:83:32:a2:5f:2a:91:23:
b3:7b:d6:fe:4c:e5:97:aa:3f:c5:79:94:1f:2d:4a:
01:b9:6a:b7:ea:b4:62:83:23:8f:3d:7a:cc:aa:e5:
e3:11:8b:65:8b:77:c1:a0:45:b5:aa:d1:d9:02:21:
64:10:11:f0:05:fb:f0:82:7d:96:39:ce:21:1f:3e:
a8:20:aa:25:a2:35:10:5a:9f:0f:13:35:82:e9:54:
a7:75:d1:8f:9c:d1:63:f5:ac:cd:7d:5b:b7:dd:49:
c9:bf:28:4c:c2:58:25:ee:c6:85:bc:74:0b:23:a0:
d1:e6:b1:f5:f0:cf:ef:26:9e:1e:a3:c1:f0:cc:ea:
2a:20:50:61:d6:56:26:02:83:91:b9:d5:70:05:26:
aa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CA:F5:5C:8F:E5:C3:B8:58:66:3B:7A:FB:F4:AD:B6:9A:A5:2B:E5
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:cb:e8:78:6f:de:2d:b1:7a:79:ba:a6:9d:f2:39:60:f6:af:
39:56:7f:d1:d8:6e:7b:16:eb:25:6e:cb:95:36:78:ff:14:78:
8f:c0:67:79:93:46:89:42:5c:10:90:bd:d0:5c:6c:16:9e:a4:
01:ea:f6:9c:b4:3d:b8:0e:f0:2a:a3:99:3e:97:9a:46:34:9c:
d3:fc:13:28:c1:ac:76:53:36:44:3e:0a:36:16:87:89:e5:be:
3e:1a:a0:64:64:11:35:6d:d9:3b:dd:2b:de:00:0b:26:3c:d4:
27:21:07:fd:d5:25:3a:d0:fc:48:e8:e3:89:f8:2f:e2:d4:05:
55:df:fb:c0:31:6e:b4:b5:00:f7:66:a4:4f:55:33:8d:9c:2e:
8a:7b:58:6b:94:f1:ac:1c:ff:2b:d9:0a:9e:ee:f4:6d:64:de:
ef:dd:fa:4e:8f:a5:6a:0e:7b:9f:78:37:34:0d:d8:bb:5d:65:
96:9f:b0:7d:0d:d8:26:ee:25:6e:4f:25:91:04:87:10:2b:ff:
ae:b8:52:fe:87:ef:dc:34:75:d3:54:46:76:7a:a2:64:55:38:
16:2e:13:f5:6c:1e:df:92:56:80:e8:7e:6a:17:11:5b:f0:b5:
f7:5c:9e:32:43:ec:f8:3b:41:95:25:16:de:77:b9:0e:1a:92:
42:29:4f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 22:47:47 2025 by rpki-client