Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
File: CpfAyBiGg3PEAUcVBTra9hrx2h0.mft (raw, json)
Hash identifier: WzjxamdA/vWxcFRW6gF/Pp4My4UDgIaSBUk6kHQ7OqQ=
Subject key identifier: 5D:A5:F5:77:08:07:80:F1:AD:A6:53:95:9F:CB:C1:49:88:77:ED:CD
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 01974A0CE5FC043BD72F2D3300049B9FEE75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 11:00:48 +0000
Manifest this update: Sat 07 Jun 2025 11:00:48 +0000
Manifest next update: Sun 08 Jun 2025 11:00:48 +0000
Files and hashes: 1: CpfAyBiGg3PEAUcVBTra9hrx2h0.crl (hash: 8QZ18mhCLmq/3S3Ggp453hEdIBzBxpXwNrsQSEW6rDI=)
2: _qAUmpmDNefd9UH0oGsDdu0Dm10.roa (hash: dhnP4xuQumbVUsoW5XRDL/9RukaAPXCZivf9aCXaQyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e5:fc:04:3b:d7:2f:2d:33:00:04:9b:9f:ee:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Jun 7 11:00:48 2025 GMT
Not After : Jun 8 11:00:48 2025 GMT
Subject: CN=5da5f577080780f1ada653959fcbc1498877edcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:0c:c2:1f:af:f9:6d:b0:68:4e:82:a2:dd:
07:e8:f2:37:66:23:88:45:2a:c6:0f:5e:73:fb:e3:
1a:95:71:cc:80:e6:42:0a:6f:e5:87:50:44:52:09:
0a:5c:6b:94:a2:0b:55:f0:fa:06:3e:d9:ed:eb:76:
fc:3e:89:f4:44:88:03:f6:37:e6:b7:c3:34:8d:1e:
73:a9:b5:b4:8b:2c:90:53:a9:a1:da:41:52:4d:3e:
61:4d:60:8d:1c:9b:58:28:90:c9:4a:c6:ce:d3:c5:
39:b9:bf:2f:c0:7b:51:b8:0a:29:81:86:13:8c:22:
e2:40:43:0c:1a:f1:f9:02:69:71:56:40:da:fc:e2:
2f:c5:eb:29:5a:5b:10:af:46:ed:05:24:51:fa:46:
7a:d2:65:c2:55:63:86:82:70:f7:bd:00:ff:f4:d7:
d7:08:af:4f:f1:69:d1:c8:83:e9:a3:54:63:3d:2a:
4e:0c:35:55:77:ca:bc:c4:4e:1f:d3:a0:b7:bf:84:
76:47:1f:36:92:a2:30:3d:4b:f0:af:e8:93:17:ef:
87:83:a3:2e:20:60:1a:76:8a:ab:63:10:87:78:77:
af:ba:d6:eb:6d:3b:9d:0b:13:46:a3:07:a4:86:60:
8d:4c:6d:84:e9:25:18:92:a2:a6:12:fb:56:5b:59:
b9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A5:F5:77:08:07:80:F1:AD:A6:53:95:9F:CB:C1:49:88:77:ED:CD
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:d4:42:92:ab:e5:13:6f:26:c1:ed:6c:df:bf:5c:cc:00:4c:
4b:61:af:68:c6:d8:95:7e:4e:4e:ac:d1:a2:56:07:67:40:23:
2d:48:f6:e4:76:53:13:9e:92:8a:b7:a5:d8:45:96:c3:07:d7:
e2:ee:66:52:fd:d7:d1:51:c6:91:d3:c8:98:b4:0a:12:05:66:
53:69:bc:1b:73:1c:3a:6f:b8:f7:1b:14:95:ca:46:ab:3a:e8:
b5:17:82:3b:a9:e7:6c:a8:82:4b:fc:38:4e:06:3a:cc:aa:8c:
19:6b:bc:04:3d:a1:7e:93:39:0e:fa:6c:e7:1c:9b:30:cc:73:
62:6b:00:2b:61:1d:71:0b:05:e5:d6:6b:8d:d5:ab:47:bf:5f:
ea:fc:e1:fb:f1:9c:6d:07:b0:a3:eb:3c:44:05:9a:cb:d5:66:
64:b6:25:79:74:f5:ed:87:0d:1e:46:0d:79:d6:37:da:b3:b5:
ec:51:30:5b:37:d5:c0:c2:8e:cd:e0:fe:e6:59:49:38:d9:7a:
c8:de:c2:fc:dd:96:98:d0:85:1f:95:d7:d4:22:8c:b6:39:8a:
5d:9c:54:aa:a3:1c:87:c9:5e:2e:d1:37:d4:1c:48:2a:4d:2e:
5b:59:c9:c9:74:e0:ab:29:bb:3e:45:fd:15:86:ce:a6:04:18:
05:46:44:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDOX8BDvXLy0zAASbn+51MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhOTdjMGM4MTg4NjgzNzNjNDAxNDcxNTA1M2FkYWY2MWFm
MWRhMWQwHhcNMjUwNjA3MTEwMDQ4WhcNMjUwNjA4MTEwMDQ4WjAzMTEwLwYDVQQD
Eyg1ZGE1ZjU3NzA4MDc4MGYxYWRhNjUzOTU5ZmNiYzE0OTg4NzdlZGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKAMwh+v+W2waE6Cot0H6PI3ZiOI
RSrGD15z++MalXHMgOZCCm/lh1BEUgkKXGuUogtV8PoGPtnt63b8Pon0RIgD9jfm
t8M0jR5zqbW0iyyQU6mh2kFSTT5hTWCNHJtYKJDJSsbO08U5ub8vwHtRuAopgYYT
jCLiQEMMGvH5AmlxVkDa/OIvxespWlsQr0btBSRR+kZ60mXCVWOGgnD3vQD/9NfX
CK9P8WnRyIPpo1RjPSpODDVVd8q8xE4f06C3v4R2Rx82kqIwPUvwr+iTF++Hg6Mu
IGAadoqrYxCHeHevutbrbTudCxNGowekhmCNTG2E6SUYkqKmEvtWW1m5RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2l9XcIB4DxraZTlZ/LwUmId+3NMB8GA1UdIwQY
MBaAFAqXwMgYhoNzxAFHFQU62vYa8dodMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3BmQXlCaUdnM1BFQVVjVkJUcmE5aHJ4MmgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hOTM5OWItZjg2Ny00ODAyLThjNjct
ZGJmMmIzNzY5NDQ1LzEvQ3BmQXlCaUdnM1BFQVVjVkJUcmE5aHJ4MmgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9hOTM5OWItZjg2Ny00ODAyLThjNjctZGJmMmIzNzY5NDQ1
LzEvQ3BmQXlCaUdnM1BFQVVjVkJUcmE5aHJ4MmgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXtRCkqvl
E28mwe1s379czABMS2GvaMbYlX5OTqzRolYHZ0AjLUj25HZTE56Sirel2EWWwwfX
4u5mUv3X0VHGkdPImLQKEgVmU2m8G3McOm+49xsUlcpGqzrotReCO6nnbKiCS/w4
TgY6zKqMGWu8BD2hfpM5Dvps5xybMMxzYmsAK2EdcQsF5dZrjdWrR79f6vzh+/Gc
bQewo+s8RAWay9VmZLYleXT17YcNHkYNedY32rO17FEwWzfVwMKOzeD+5llJONl6
yN7C/N2WmNCFH5XX1CKMtjmKXZxUqqMch8leLtE31BxIKk0uW1nJyXTgqym7PkX9
FYbOpgQYBUZEjA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:29:23 2025 by rpki-client