Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: yHAOBHx50a0hQVzPL6DJbNcwquqjEjAIPZXqrPeoCzI=
Subject key identifier: 61:71:CE:10:DF:99:1C:CE:D5:96:11:7D:E9:11:55:A9:9C:D5:E2:66
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 019925C4A28CB4EC28E4C34BD8024B5014F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 07D5
Signing time: Sun 07 Sep 2025 20:01:07 +0000
Manifest this update: Sun 07 Sep 2025 20:01:07 +0000
Manifest next update: Mon 08 Sep 2025 20:01:07 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: 87UjgnsoL07jnzPhI6KknuWn0LR0Rwg2TWn0mcob24o=)
2: NsSedmTQW8OnTTsqv3X8CBZy-xU.roa (hash: WFkKh3bAC4MDDNtqyFfpo7GUVyreugPfu/r7LcM/fN4=)
3: TeB088r0q83Xt0BxDsUFRJ09n_w.roa (hash: G48KXbKrX68pg0VWA7DNE58/xU413WQGSqX5xHVo4rY=)
4: XiH0gOSpoMJFdvBjBWzlMvnZ9hs.roa (hash: yKr2N5bCM8GXpbIakJJERWtJOnyqKHMRYj21ZgduTJA=)
5: cBODpnstJEahdgyKBdPPcprqjuM.roa (hash: 3cEAgLPYKWsTQZ+bcZEZH12X2epex4/tLpkeAuOD6Vw=)
6: eZ1oRKw2ZmvD0_NWa-kdmh2g-eo.roa (hash: 2jAE9EFeYAI0mBmHLdLHHE90HLI9cIG+7iKSbXwklN4=)
7: l5LQQJ1hscP11M9PGOZJoYipJjA.roa (hash: 1Qefj38Zjj0ROOLLrKtBW86/Osz3b9lr4tBY77Lptdo=)
8: nEOWg7Kmd6qTqNCYh_hqhP0HHz4.roa (hash: NGhjwZyIl+7tDpzWRbOKaVY9nx0e4i5L5ak98QKmrxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 17:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:25:c4:a2:8c:b4:ec:28:e4:c3:4b:d8:02:4b:50:14:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Sep 7 20:01:07 2025 GMT
Not After : Sep 8 20:01:07 2025 GMT
Subject: CN=6171ce10df991cced596117de91155a99cd5e266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:74:fd:bc:ed:05:25:f5:be:29:2a:8b:f3:
63:aa:8e:60:7e:f9:d8:f7:68:c1:f0:d8:7c:b0:8e:
a5:06:6c:f0:ab:a2:f3:82:08:cb:a3:b1:33:1e:36:
ee:e8:4d:0c:05:b4:ce:72:e7:eb:03:61:1b:38:0c:
e2:89:1b:7b:5b:76:a5:b1:c2:02:11:57:46:a7:91:
a1:8c:8b:fb:3d:24:80:74:8c:68:ea:9b:c7:74:46:
3d:99:2b:47:d7:d0:83:75:4f:c4:67:26:5e:dd:df:
66:c0:5a:b3:d9:b0:03:2c:29:ae:83:12:5b:fd:7b:
c0:2f:3f:fe:bd:84:b4:3d:f8:a2:2c:d3:22:89:13:
93:25:e7:ce:ee:b9:cb:f3:2b:a2:f3:d6:93:6a:ee:
5e:5e:92:64:1f:f1:09:ef:c7:0b:1f:86:3c:f7:73:
9b:6f:88:0f:3d:61:39:1e:be:a8:79:69:ff:27:d2:
db:c4:53:6b:49:bc:54:7f:0b:5c:b9:d2:08:c0:c5:
61:9b:97:cb:82:27:75:1b:bd:b8:1e:f2:3d:91:7c:
ce:09:51:f7:ec:b9:9d:28:1f:d1:15:53:b5:65:0c:
91:45:29:a3:34:df:bd:6d:ff:29:b2:ee:4f:3b:c7:
57:4c:b7:f0:f1:40:f1:b7:27:88:9c:c7:62:1a:24:
d8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:71:CE:10:DF:99:1C:CE:D5:96:11:7D:E9:11:55:A9:9C:D5:E2:66
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:18:87:08:7f:09:7f:60:ff:25:fd:ca:eb:cd:95:13:0e:b9:
17:97:0a:73:9a:35:01:a9:32:b3:38:aa:73:63:ee:83:44:55:
65:e1:62:f7:ef:6d:d0:f3:21:66:20:5c:0e:32:0c:17:ba:97:
e5:bc:44:38:4a:8e:38:04:a4:a9:92:56:8f:b1:fb:93:8d:25:
1b:00:d2:5c:ee:1b:55:4c:57:9d:5b:69:63:e3:03:e7:67:d9:
e3:07:4f:cc:6a:cb:20:a0:9d:e7:c4:9a:ae:d2:af:01:a7:42:
07:dd:70:ba:da:ea:54:ec:13:d8:4b:b1:f4:a3:00:ba:a8:9c:
a2:6d:d2:eb:f5:e8:09:93:e6:19:5f:80:f9:93:0b:99:02:2e:
4a:e9:54:76:06:5f:b3:1f:1c:70:19:37:d3:16:43:8f:b3:29:
d3:bf:9f:e5:3e:8d:e4:1d:02:a7:a7:b7:c0:8c:cc:1b:42:40:
58:f7:e4:0f:4d:f3:d1:60:a5:36:88:de:a0:ca:fb:10:72:54:
29:c7:c2:46:fb:18:e2:2f:18:b6:7e:6b:4e:a9:1d:0f:08:9f:
14:21:71:92:85:fa:11:6f:a5:de:55:a0:99:62:49:c4:8d:d1:
5b:51:88:26:e0:42:52:89:70:78:5e:be:1c:81:66:13:87:0d:
c2:a2:d8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 02:15:53 2025 by rpki-client