Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
File: cF5128zl_N2R2KmeWhssmVuBJ3U.mft (raw, json)
Hash identifier: 1BTlYgmCPnRMr8S0Cf3qcRHFelz2uiWz8Pi93jv9mTs=
Subject key identifier: B8:2E:83:08:0D:6D:08:F6:66:FD:FC:6B:4C:12:2A:91:DB:E8:35:F0
Authority key identifier: 70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
Certificate issuer: /CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Certificate serial: 01974967DC9B34929AAFB460A5229436B742
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
Manifest number: 1581
Signing time: Sat 07 Jun 2025 08:00:32 +0000
Manifest this update: Sat 07 Jun 2025 08:00:32 +0000
Manifest next update: Sun 08 Jun 2025 08:00:32 +0000
Files and hashes: 1: Y-ORdAusYkZsKOUTFP8lOiqiHAs.roa (hash: VsoWMS+G3RdpKa8Z+B6s882TzbmXTjisQIhsADrOhSU=)
2: cF5128zl_N2R2KmeWhssmVuBJ3U.crl (hash: jDIMfv/JBb4/mkUdpFdZseKzZ5kqTLrzrRTGhVgDVkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:dc:9b:34:92:9a:af:b4:60:a5:22:94:36:b7:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Validity
Not Before: Jun 7 08:00:32 2025 GMT
Not After : Jun 8 08:00:32 2025 GMT
Subject: CN=b82e83080d6d08f666fdfc6b4c122a91dbe835f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:4b:74:46:a2:4c:a7:dc:37:9b:7d:8a:cb:
94:92:96:ae:cb:77:71:f0:56:65:d2:f6:35:7b:84:
8b:a5:0a:92:97:66:36:bb:25:60:c8:ee:98:79:b5:
6a:6f:c0:e7:22:72:aa:70:8c:dc:1f:5e:f8:58:21:
bf:68:d7:0c:44:2d:94:d9:c2:79:15:b9:86:aa:a1:
fe:60:b9:37:09:0a:b7:e1:0f:93:72:8b:f6:16:38:
07:e5:e9:57:3f:09:83:bd:57:d8:3d:97:2e:3d:80:
5b:75:d4:a5:38:4e:5b:80:ba:3d:fb:50:ac:7e:94:
e6:b2:aa:56:86:e4:3c:5f:67:2c:9b:56:c6:d6:35:
d9:2c:3b:43:54:c1:77:da:c7:bf:63:13:5a:21:d1:
d4:8e:b4:0f:29:85:cc:e8:3a:66:f5:fe:88:8f:54:
74:64:7e:04:39:32:0f:62:14:5d:36:e4:85:98:db:
24:91:ea:0e:62:6d:d9:39:f6:bb:11:b2:fd:e1:c8:
6f:5a:aa:ce:da:2a:19:8b:9b:50:49:5b:1e:c8:f3:
e4:c5:71:cd:8f:26:14:46:90:33:11:8f:3e:ec:8f:
16:35:07:f3:fc:57:87:11:ad:c3:5a:83:90:11:db:
bf:78:4e:bf:66:9c:75:f0:1c:92:c6:89:ee:a7:59:
ce:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2E:83:08:0D:6D:08:F6:66:FD:FC:6B:4C:12:2A:91:DB:E8:35:F0
X509v3 Authority Key Identifier:
keyid:70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:57:b5:4f:dd:53:d2:e0:18:7f:14:d5:3c:9c:65:9f:d6:74:
fc:bb:f9:ce:59:8d:da:1f:65:e1:50:af:14:ed:f6:df:94:ea:
9c:de:b6:3c:1b:3f:b7:aa:39:ce:e5:5d:74:d5:d0:df:58:99:
14:09:48:fa:1f:f7:17:1a:65:d7:73:71:c7:1c:fe:95:e1:b9:
a1:23:af:b0:4e:1b:f0:41:cd:3c:f5:2b:22:16:7f:b8:d9:5f:
5d:a8:aa:d3:b4:2e:78:9c:55:7f:9d:d5:aa:f2:07:06:db:d6:
78:19:79:62:80:7a:ad:90:19:48:44:25:b0:8f:f7:c9:11:23:
86:bd:68:53:57:29:ec:d8:06:fa:8a:5f:18:f0:21:f2:97:da:
98:68:97:25:22:20:52:41:e4:57:27:22:5c:ff:2c:f1:fa:08:
4c:0a:2a:71:35:55:99:75:a4:16:00:f3:57:d8:1a:69:16:c1:
e3:e6:fe:e5:aa:3c:04:e2:b3:12:93:6f:bd:f8:25:45:18:6b:
5d:72:a9:e8:75:f7:9b:56:3a:c7:4a:2c:33:73:77:d6:0b:6f:
6d:5c:9f:ac:cc:10:cf:9e:f5:f7:be:09:89:9f:b7:d1:43:e8:
c3:73:f5:a0:d8:81:a9:ce:d0:bb:b4:a2:10:e5:34:31:2c:7c:
a0:ed:f8:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ9ybNJKar7RgpSKUNrdCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNWU3NWRiY2NlNWZjZGQ5MWQ4YTk5ZTVhMWIyYzk5NWI4
MTI3NzUwHhcNMjUwNjA3MDgwMDMyWhcNMjUwNjA4MDgwMDMyWjAzMTEwLwYDVQQD
EyhiODJlODMwODBkNmQwOGY2NjZmZGZjNmI0YzEyMmE5MWRiZTgzNWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjVLdEaiTKfcN5t9isuUkpauy3dx
8FZl0vY1e4SLpQqSl2Y2uyVgyO6YebVqb8DnInKqcIzcH174WCG/aNcMRC2U2cJ5
FbmGqqH+YLk3CQq34Q+Tcov2FjgH5elXPwmDvVfYPZcuPYBbddSlOE5bgLo9+1Cs
fpTmsqpWhuQ8X2csm1bG1jXZLDtDVMF32se/YxNaIdHUjrQPKYXM6Dpm9f6Ij1R0
ZH4EOTIPYhRdNuSFmNskkeoOYm3ZOfa7EbL94chvWqrO2ioZi5tQSVseyPPkxXHN
jyYURpAzEY8+7I8WNQfz/FeHEa3DWoOQEdu/eE6/Zpx18BySxonup1nOfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLgugwgNbQj2Zv38a0wSKpHb6DXwMB8GA1UdIwQY
MBaAFHBeddvM5fzdkdipnlobLJlbgSd1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEt
ZjhiNDhiYWNjZDliLzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEtZjhiNDhiYWNjZDli
LzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALFe1T91T
0uAYfxTVPJxln9Z0/Lv5zlmN2h9l4VCvFO3235TqnN62PBs/t6o5zuVddNXQ31iZ
FAlI+h/3Fxpl13Nxxxz+leG5oSOvsE4b8EHNPPUrIhZ/uNlfXaiq07QueJxVf53V
qvIHBtvWeBl5YoB6rZAZSEQlsI/3yREjhr1oU1cp7NgG+opfGPAh8pfamGiXJSIg
UkHkVyciXP8s8foITAoqcTVVmXWkFgDzV9gaaRbB4+b+5ao8BOKzEpNvvfglRRhr
XXKp6HX3m1Y6x0osM3N31gtvbVyfrMwQz571974JiZ+30UPow3P1oNiBqc7Qu7Si
EOU0MSx8oO34HQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:10:33 2025 by rpki-client