Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: cOW1WaoUtrCcrkMef7apVxsGWJEtpkBWbzT9rUmvYQw=
Subject key identifier: 3E:29:AB:75:A9:9F:BE:55:0C:6E:00:3E:D5:8E:E8:38:B7:91:AF:00
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 0196406726607A71D63919FB2481D193831B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 01E8
Signing time: Wed 16 Apr 2025 21:00:23 +0000
Manifest this update: Wed 16 Apr 2025 21:00:23 +0000
Manifest next update: Thu 17 Apr 2025 21:00:23 +0000
Files and hashes: 1: 0m-9m5OFcPf8OuDYL2FUGvph8_g.roa (hash: dOT7ZXgrSZ8DnL/LTBhNtapy6nZ67rmfPX5nGpKKR4k=)
2: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: D+HlDrS9zHAHImaU6pTKyMMLWULvV3qtZBomx33ADYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:26:60:7a:71:d6:39:19:fb:24:81:d1:93:83:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Apr 16 21:00:23 2025 GMT
Not After : Apr 17 21:00:23 2025 GMT
Subject: CN=3e29ab75a99fbe550c6e003ed58ee838b791af00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c5:b1:f1:59:76:de:38:28:06:57:42:86:10:
cd:04:61:8e:63:d2:e2:e3:70:bc:3f:8a:3e:2b:eb:
8a:b2:68:7a:c0:fd:7c:85:93:bc:a4:79:2b:a7:35:
23:bf:2f:98:6a:bc:f8:82:b8:a9:c1:02:f9:26:96:
e5:3a:72:f7:1e:e8:00:ff:51:e4:ee:54:27:0e:60:
bd:ab:3f:4c:ef:fc:d2:85:d0:80:ff:d7:0b:ca:9e:
93:bb:91:b6:e2:d8:5c:13:61:b7:4f:c3:54:72:56:
f9:88:63:72:c9:b9:31:93:97:c3:85:eb:69:9f:e5:
98:88:54:a1:ab:a6:7e:73:24:84:da:2e:7d:37:4d:
11:07:fb:a8:3a:32:58:32:4f:87:6b:eb:b0:52:ed:
7a:7a:85:8c:9c:13:56:71:54:0e:b4:89:3b:0b:bc:
ec:b5:c4:76:d4:87:46:ba:52:2e:ce:28:1f:b0:65:
26:f8:19:fc:8f:90:42:b6:68:ae:8b:88:fa:28:7c:
63:92:2b:df:c8:2c:a2:e2:b0:73:c6:05:9c:bd:ce:
d5:91:24:6b:7c:1c:6c:dd:d7:7a:67:f9:a7:b4:ae:
ea:5a:04:eb:2b:08:7d:b9:0c:64:aa:c5:36:55:12:
9a:83:21:a8:1d:2b:27:10:8c:8f:d1:cc:6f:c4:b3:
f2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:29:AB:75:A9:9F:BE:55:0C:6E:00:3E:D5:8E:E8:38:B7:91:AF:00
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:7e:71:c6:e3:25:70:d0:54:e2:ec:c7:d9:b6:0e:dc:2b:9c:
f6:44:ed:b0:86:5d:37:8e:df:0b:ad:18:f4:a2:51:4b:a8:cb:
f6:f5:fc:69:4d:81:d3:b0:c4:5c:e8:05:2e:80:26:a9:6b:c7:
f3:df:a2:f7:68:41:fe:fe:4d:4b:95:b4:7d:4a:b3:21:d3:71:
08:06:fc:c0:73:da:9b:cf:f8:ce:0c:4a:8f:1a:4d:30:ad:6a:
57:56:76:51:9b:fe:41:08:04:d3:d0:48:f0:d1:5f:6a:3e:98:
50:da:f3:c4:b0:7b:8d:04:53:c6:06:11:09:15:a9:03:0d:95:
16:8f:a1:1e:80:85:ec:4b:78:34:a3:19:6a:a8:e4:27:84:9b:
bc:0d:20:41:13:2f:fd:c5:d3:b3:96:53:3c:3b:ee:ed:b2:ae:
7a:cb:c6:42:c1:f8:58:f5:42:ee:af:5f:73:65:dd:21:6c:31:
c6:8f:c6:7c:9d:33:d8:db:ee:1c:2b:0b:b4:66:99:61:ca:b2:
42:99:3b:82:b3:f3:1b:42:38:8c:01:a0:15:c5:7f:d9:83:ae:
68:db:38:a9:16:73:d6:fd:19:49:5a:2f:96:de:46:12:c1:b4:
c5:b8:e0:2f:80:c4:43:57:2f:63:a5:65:02:4f:cf:6f:03:71:
78:96:36:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZAZyZgenHWORn7JIHRk4MbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZDVlYjZhOTY4NjRkZmEyYzUxYjJlMjU2YzUxODBhYjky
MjI5Y2QwHhcNMjUwNDE2MjEwMDIzWhcNMjUwNDE3MjEwMDIzWjAzMTEwLwYDVQQD
EygzZTI5YWI3NWE5OWZiZTU1MGM2ZTAwM2VkNThlZTgzOGI3OTFhZjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8Wx8Vl23jgoBldChhDNBGGOY9Li
43C8P4o+K+uKsmh6wP18hZO8pHkrpzUjvy+Yarz4gripwQL5JpblOnL3HugA/1Hk
7lQnDmC9qz9M7/zShdCA/9cLyp6Tu5G24thcE2G3T8NUclb5iGNyybkxk5fDhetp
n+WYiFShq6Z+cySE2i59N00RB/uoOjJYMk+Ha+uwUu16eoWMnBNWcVQOtIk7C7zs
tcR21IdGulIuzigfsGUm+Bn8j5BCtmiui4j6KHxjkivfyCyi4rBzxgWcvc7VkSRr
fBxs3dd6Z/mntK7qWgTrKwh9uQxkqsU2VRKagyGoHSsnEIyP0cxvxLPyeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4pq3Wpn75VDG4APtWO6Di3ka8AMB8GA1UdIwQY
MBaAFAjV62qWhk36LFGy4lbFGAq5IinNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi80YTU4YmMtMjQwMy00MTQ0LWJiNWUt
YmI2ODI5MzYwY2VlLzEvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi80YTU4YmMtMjQwMy00MTQ0LWJiNWUtYmI2ODI5MzYwY2Vl
LzEvQ05YcmFwYUdUZm9zVWJMaVZzVVlDcmtpS2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiH5xxuMl
cNBU4uzH2bYO3Cuc9kTtsIZdN47fC60Y9KJRS6jL9vX8aU2B07DEXOgFLoAmqWvH
89+i92hB/v5NS5W0fUqzIdNxCAb8wHPam8/4zgxKjxpNMK1qV1Z2UZv+QQgE09BI
8NFfaj6YUNrzxLB7jQRTxgYRCRWpAw2VFo+hHoCF7Et4NKMZaqjkJ4SbvA0gQRMv
/cXTs5ZTPDvu7bKuesvGQsH4WPVC7q9fc2XdIWwxxo/GfJ0z2NvuHCsLtGaZYcqy
Qpk7grPzG0I4jAGgFcV/2YOuaNs4qRZz1v0ZSVovlt5GEsG0xbjgL4DEQ1cvY6Vl
Ak/PbwNxeJY2cg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 04:51:18 2025 by rpki-client