Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: ejkf9XtHwzrr7pz6Ex6Rb68pQSEmd0VbjY/dLFLfwOY=
Subject key identifier: AC:5A:B2:50:BC:1B:9D:D1:80:4B:51:06:69:E6:72:80:0B:17:CF:EA
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 01976BBCF8288D71EF6F7A0CCCE14CD7E66D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 0283
Signing time: Sat 14 Jun 2025 00:00:35 +0000
Manifest this update: Sat 14 Jun 2025 00:00:35 +0000
Manifest next update: Sun 15 Jun 2025 00:00:35 +0000
Files and hashes: 1: 0m-9m5OFcPf8OuDYL2FUGvph8_g.roa (hash: dOT7ZXgrSZ8DnL/LTBhNtapy6nZ67rmfPX5nGpKKR4k=)
2: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: kmcei0pLochAuKUrOmdSGRf2Hj2j2NnLu46lufaOfm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bc:f8:28:8d:71:ef:6f:7a:0c:cc:e1:4c:d7:e6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Jun 14 00:00:35 2025 GMT
Not After : Jun 15 00:00:35 2025 GMT
Subject: CN=ac5ab250bc1b9dd1804b510669e672800b17cfea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6b:3e:e7:47:07:a8:fa:93:3a:17:c9:27:53:
12:7d:48:43:ad:61:27:3f:a3:03:46:2f:e9:95:ac:
c8:16:25:df:c4:bf:1e:6c:df:70:b4:dc:fc:48:0c:
79:1f:b8:3a:88:43:a7:f0:1b:1c:1b:46:1e:00:26:
0e:48:10:da:36:f4:51:c6:1d:81:16:96:6b:ac:d8:
f8:f0:a5:cf:a7:8a:4c:74:fb:bd:3a:f1:bb:76:c2:
4d:bf:f7:53:52:5a:8a:83:89:cd:53:a8:39:0b:6a:
b1:9a:59:67:ba:45:95:3f:08:20:eb:e0:3f:27:ad:
cb:06:12:36:cc:db:f9:33:af:43:6f:e6:b4:94:59:
34:6e:6e:2c:02:eb:d6:a3:e3:a4:82:a9:6f:b2:af:
63:67:c3:b9:15:8d:30:3e:44:7f:67:ab:0d:51:d0:
4e:c4:65:bf:07:94:e1:32:65:ce:56:44:54:f4:1a:
09:6e:32:8a:a7:46:0c:48:73:b4:62:93:d0:0f:4f:
1a:56:ee:ef:20:f0:97:9c:1c:dd:22:89:fa:6f:f7:
c5:9e:c9:da:97:6a:e4:24:2f:c1:5c:02:a7:b9:31:
41:9c:e6:42:de:d3:57:72:8d:19:f1:5c:c2:21:57:
6d:06:8c:5e:6d:37:3c:bd:d3:53:a4:bc:88:fc:04:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5A:B2:50:BC:1B:9D:D1:80:4B:51:06:69:E6:72:80:0B:17:CF:EA
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:0e:ad:0f:74:44:5f:e0:95:81:49:f8:5c:8a:4c:a6:59:fe:
17:e7:36:b0:92:18:6e:2f:12:5c:f5:ec:71:3d:f2:1e:80:ee:
f0:dd:7e:57:76:19:47:52:45:89:0f:78:b1:2c:82:50:38:13:
77:11:93:d5:32:be:b1:b7:af:2a:53:27:dd:82:5b:87:84:58:
80:7e:e7:e7:a2:e9:db:97:c0:0f:a3:ed:39:56:18:a4:b1:cb:
40:39:f6:70:40:ad:38:b1:b2:f7:a8:5f:c8:6d:45:ee:3c:42:
2d:96:be:0e:9a:e6:44:19:ee:99:c7:88:9a:3b:9c:43:1e:c8:
5f:ba:7c:01:67:ca:1d:d9:41:70:7d:09:5c:41:75:a1:17:4e:
e0:b1:2b:78:5d:63:2f:8b:58:e9:76:24:a1:97:09:d1:c2:b5:
e5:cf:4e:c9:ff:68:21:85:6d:67:95:35:3e:7f:49:53:bb:b6:
8f:a7:9d:5a:bf:96:40:d7:88:ff:30:00:21:97:6b:27:d3:86:
f5:d3:e5:03:62:fc:c8:b2:07:b3:2b:9b:1f:7a:cd:12:8e:ea:
10:e1:03:20:24:cc:7a:03:22:44:72:c8:41:aa:9e:41:83:d9:
c8:2e:5e:83:dc:09:e9:c9:fe:dd:7e:0c:68:ff:fc:55:1d:7b:
cb:46:84:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:55:20 2025 by rpki-client