Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: w/x4G4VXNsdFJQnVexwP2N27RV6p2RdIsbIveO1mJ3I=
Subject key identifier: 3D:3A:82:A7:5B:E5:92:00:CA:88:72:1A:3D:B6:3F:50:A7:C6:0C:46
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 01984889824DEEE1404A4C09605FA2F6922E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 087A
Signing time: Sat 26 Jul 2025 21:00:27 +0000
Manifest this update: Sat 26 Jul 2025 21:00:27 +0000
Manifest next update: Sun 27 Jul 2025 21:00:27 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: 1bC3CNYsvG+depUvZn/gjU0LMFZMjC5mnuhCQ2hfDwU=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:89:82:4d:ee:e1:40:4a:4c:09:60:5f:a2:f6:92:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Jul 26 21:00:27 2025 GMT
Not After : Jul 27 21:00:27 2025 GMT
Subject: CN=3d3a82a75be59200ca88721a3db63f50a7c60c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:59:77:7c:ec:d3:30:ba:3a:43:91:cd:9a:03:
cf:10:20:f7:47:1b:94:06:7c:af:15:e4:d1:61:cf:
a4:c1:77:80:74:19:18:a6:ff:0b:0b:40:c6:17:6c:
b8:1b:5b:a5:e5:93:5f:58:15:40:aa:a7:09:ba:8d:
ab:8d:f7:8c:08:3b:bf:36:56:c7:25:36:11:5f:c2:
ff:df:9c:b5:13:0d:b3:cf:25:00:65:33:e9:b1:4b:
51:0a:93:51:44:70:36:d2:e6:d9:41:35:15:f9:38:
b7:0a:81:f7:9f:3e:bf:3c:76:b5:66:7b:30:bc:dd:
a7:da:d4:d5:da:d4:79:8f:32:0b:ee:2b:d4:7b:eb:
82:ae:bf:19:88:7f:06:82:8e:e8:57:e4:59:5a:fc:
b3:c6:f2:20:c0:3c:7d:ac:f8:f4:2a:77:b6:53:a9:
33:c7:30:50:93:b9:c5:39:1a:5f:f9:8d:d9:65:25:
a5:c0:97:70:d3:70:8e:c9:45:ce:b5:43:54:08:b6:
84:3c:54:18:fc:64:e2:49:3f:28:85:92:ef:10:8f:
3e:83:96:78:06:4d:11:1f:38:d3:9a:e7:d7:ad:0f:
b4:51:76:bf:27:c8:23:50:f2:fe:e6:a7:98:9a:b6:
80:bb:82:b8:7f:ed:ac:d2:0f:63:dd:c2:ef:ae:b3:
e1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3A:82:A7:5B:E5:92:00:CA:88:72:1A:3D:B6:3F:50:A7:C6:0C:46
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:76:7e:9e:83:27:27:3a:e6:39:30:80:6b:22:4d:bb:a8:38:
52:32:19:d3:c0:58:8d:95:c1:a2:4d:f9:9c:a8:91:a2:a6:55:
f7:2d:e4:e7:ee:f3:26:e3:a4:8f:ec:8c:93:41:1e:54:1c:2d:
a3:5e:7f:53:a9:39:65:e0:aa:be:54:c6:6d:a7:68:63:e5:51:
c6:5a:7e:4a:1a:3d:0c:f1:ba:29:8b:2e:a4:91:0e:6c:58:6e:
c9:8a:89:b2:18:38:8c:1b:4b:3e:0b:86:e0:fa:85:bb:db:7e:
31:84:a3:90:2f:f7:35:c9:9e:c1:63:a6:86:21:1a:54:31:26:
66:b9:62:43:9e:71:65:fb:de:4a:5e:ec:be:5b:e3:ce:2a:de:
7d:d4:9c:8f:a4:ba:d4:bf:ab:c5:87:87:b5:f8:cd:a9:9c:91:
25:39:cb:2f:d5:bd:ca:93:e5:ed:50:7d:f8:fa:3a:e6:3f:c0:
77:cc:73:bb:4d:3e:a3:07:b1:88:22:d0:97:6d:67:1d:3c:ed:
90:30:91:aa:8e:3d:4c:a9:6b:17:26:8b:e2:26:6d:de:5a:ad:
ca:ec:ad:53:1a:1f:b3:84:06:05:eb:c0:8e:59:fb:a3:83:77:
14:20:fe:ff:67:b7:0c:a0:86:44:c2:ce:ab:6c:73:de:8b:0d:
74:59:53:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:07:55 2025 by rpki-client