Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: JQ9CZYmy5LOa9NHS2Kaj4rxJTHvm31enRCRRouoUqoI=
Subject key identifier: D7:73:D8:4E:9A:5D:A8:B6:E5:42:64:F6:D2:91:E7:DE:3F:DF:C9:57
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019747B106D31EE76B6B8C05CADD068150E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 07F5
Signing time: Sat 07 Jun 2025 00:01:13 +0000
Manifest this update: Sat 07 Jun 2025 00:01:13 +0000
Manifest next update: Sun 08 Jun 2025 00:01:13 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: wk6M/M/av7z0ZcTXHa5BGZpyOyM5GbGiVmGnRI7Q81g=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b1:06:d3:1e:e7:6b:6b:8c:05:ca:dd:06:81:50:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Jun 7 00:01:13 2025 GMT
Not After : Jun 8 00:01:13 2025 GMT
Subject: CN=d773d84e9a5da8b6e54264f6d291e7de3fdfc957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:26:a6:fe:fd:fc:ef:ee:9e:1d:92:2c:18:6c:
5f:0d:2e:2a:c2:a6:9f:19:bf:6a:6f:22:8e:dd:3b:
f7:b0:41:08:a5:5f:45:98:73:b7:c5:12:e1:83:f7:
3d:5e:c0:34:64:56:f4:ac:0f:da:93:2e:6c:d5:c7:
c7:aa:b9:a7:f4:e4:80:14:f6:f9:b0:0e:a7:5b:d5:
56:83:01:2f:8e:d7:86:d9:f8:9b:ca:59:9d:12:1c:
b6:c3:0c:f5:55:7b:68:f9:42:9c:2d:c8:da:5c:e9:
17:e5:de:c0:4e:f3:d0:63:e9:c6:ef:60:fb:43:13:
3b:e5:ec:11:ab:e8:f8:d2:72:39:fa:6d:7c:06:47:
60:4c:15:04:1b:67:e2:ac:f4:02:7a:28:81:9b:1b:
df:19:db:ad:6f:16:95:a7:2c:5e:e1:ce:b7:b3:13:
1a:e2:1c:0e:93:b0:a6:f2:65:22:58:8d:59:0f:a9:
16:39:97:91:26:65:74:81:15:7a:ce:ab:d1:b4:a9:
f0:46:35:0b:f7:ba:62:34:17:23:24:f5:6a:7e:2e:
6c:a9:bc:1d:f8:96:0e:29:b1:3f:58:05:05:b9:33:
bb:d0:16:ac:84:fd:b5:aa:83:60:ea:29:1f:e6:b3:
e2:1a:aa:68:ec:bc:3a:d0:ac:a1:98:d1:44:12:33:
ff:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:73:D8:4E:9A:5D:A8:B6:E5:42:64:F6:D2:91:E7:DE:3F:DF:C9:57
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:85:7c:3d:06:3a:dc:b5:f9:1c:4f:b7:1d:50:d2:9a:36:be:
01:3a:59:49:44:13:bd:c6:4d:71:28:7f:29:5c:2c:7d:8d:f9:
2e:f6:84:21:64:35:a2:27:7c:5b:73:99:96:dd:3f:ab:9a:b7:
b5:72:b0:8d:c6:d2:62:ad:18:96:a7:6b:eb:21:ca:7e:93:ff:
ce:a3:b0:12:e4:ef:df:8d:64:01:55:ec:1a:48:bb:74:4c:84:
82:b8:dc:8c:cc:fc:aa:34:19:a5:24:e4:13:ab:0d:4a:c6:b4:
29:65:84:aa:22:65:18:cb:52:fc:ca:d1:70:96:e3:c2:e6:37:
4d:b4:97:e9:8d:1d:02:b2:8f:4e:df:e4:4c:c3:cb:de:b4:6c:
4b:c7:b5:29:63:ff:1a:46:c1:c8:67:3a:5a:35:3e:06:1c:4f:
8d:bf:01:9c:1a:4f:80:cd:9f:25:e9:bb:08:b3:3b:8d:38:1b:
af:5e:1b:1e:37:6f:1f:0b:26:5d:fc:96:3d:6d:32:da:4e:3f:
1e:0e:0d:02:07:6a:b1:9f:e0:1f:55:de:70:29:4f:17:53:91:
2d:db:d9:c5:16:61:4a:9d:d8:b1:44:92:b8:c8:4d:63:98:f3:
40:cb:7b:34:7e:81:56:d2:45:ef:aa:0d:4d:25:63:3b:92:76:
a1:71:0a:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHsQbTHudra4wFyt0GgVDmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh
OTgyOGQwHhcNMjUwNjA3MDAwMTEzWhcNMjUwNjA4MDAwMTEzWjAzMTEwLwYDVQQD
EyhkNzczZDg0ZTlhNWRhOGI2ZTU0MjY0ZjZkMjkxZTdkZTNmZGZjOTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Sam/v387+6eHZIsGGxfDS4qwqaf
Gb9qbyKO3Tv3sEEIpV9FmHO3xRLhg/c9XsA0ZFb0rA/aky5s1cfHqrmn9OSAFPb5
sA6nW9VWgwEvjteG2fibylmdEhy2wwz1VXto+UKcLcjaXOkX5d7ATvPQY+nG72D7
QxM75ewRq+j40nI5+m18BkdgTBUEG2firPQCeiiBmxvfGdutbxaVpyxe4c63sxMa
4hwOk7Cm8mUiWI1ZD6kWOZeRJmV0gRV6zqvRtKnwRjUL97piNBcjJPVqfi5sqbwd
+JYOKbE/WAUFuTO70BashP21qoNg6ikf5rPiGqpo7Lw60KyhmNFEEjP/AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNdz2E6aXai25UJk9tKR594/38lXMB8GA1UdIwQY
MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt
MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx
LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuoV8PQY6
3LX5HE+3HVDSmja+ATpZSUQTvcZNcSh/KVwsfY35LvaEIWQ1oid8W3OZlt0/q5q3
tXKwjcbSYq0Ylqdr6yHKfpP/zqOwEuTv341kAVXsGki7dEyEgrjcjMz8qjQZpSTk
E6sNSsa0KWWEqiJlGMtS/MrRcJbjwuY3TbSX6Y0dArKPTt/kTMPL3rRsS8e1KWP/
GkbByGc6WjU+BhxPjb8BnBpPgM2fJem7CLM7jTgbr14bHjdvHwsmXfyWPW0y2k4/
Hg4NAgdqsZ/gH1XecClPF1ORLdvZxRZhSp3YsUSSuMhNY5jzQMt7NH6BVtJF76oN
TSVjO5J2oXEKiA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 08:56:49 2025 by rpki-client