Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: fsK7+QaVr/NyB0KatcLqkN2SSnpXgcwvW55+GGbsBcM=
Subject key identifier: 5B:E4:9D:B8:DE:70:65:B4:4A:3E:58:E5:F9:72:AB:C1:A2:9D:9F:D4
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 0197488C0E3B81A3FB81E10BD8A951023A5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0BE4
Signing time: Sat 07 Jun 2025 04:00:27 +0000
Manifest this update: Sat 07 Jun 2025 04:00:27 +0000
Manifest next update: Sun 08 Jun 2025 04:00:27 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: 9gVmMF8EpYyfZ6d15jQPmpdEbjV67fcxLCgl61vQQkg=)
2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:0e:3b:81:a3:fb:81:e1:0b:d8:a9:51:02:3a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Jun 7 04:00:27 2025 GMT
Not After : Jun 8 04:00:27 2025 GMT
Subject: CN=5be49db8de7065b44a3e58e5f972abc1a29d9fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9c:e2:d5:fc:56:0c:7f:48:ad:8c:ad:5f:00:
d9:11:de:1a:b6:cd:04:1a:b4:21:59:95:f9:ce:68:
5f:b4:84:3a:53:fe:c1:6c:ac:28:ca:03:e7:4a:e3:
a7:83:cd:2b:5a:78:ed:f7:e2:1b:e5:ad:6a:0c:a7:
4a:e2:6e:35:5c:7d:48:c9:2b:1a:0e:04:e4:89:1f:
d7:30:47:ae:01:b7:80:ba:68:6a:d0:f4:d6:a5:f6:
dc:b1:c2:c1:e6:5b:d0:df:40:7f:e5:9d:5e:9f:64:
8c:7c:72:16:e9:19:8f:80:5f:1d:0c:30:de:9f:9c:
b2:79:62:1e:c2:c3:76:a6:c4:af:5a:2a:5d:a6:d0:
00:08:fa:40:4a:67:0f:e7:a6:64:e9:92:55:31:e3:
9a:eb:d0:bd:c5:a7:e7:da:dc:a3:b6:c6:c3:96:4f:
04:72:7c:85:ca:63:74:2b:d1:ba:66:12:64:79:e8:
ef:0f:80:77:90:42:3a:b9:b0:9c:ea:d3:ad:5b:e1:
33:34:d8:e0:e5:94:a3:93:04:e6:77:f7:f9:cd:d3:
b8:75:9a:76:96:0a:5d:28:37:aa:70:47:3e:ff:34:
2c:b7:9c:e6:03:b2:bc:83:f6:ee:d9:0b:67:fc:da:
44:ac:eb:9d:e7:ed:f1:84:4b:3d:c9:84:e2:02:b6:
da:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E4:9D:B8:DE:70:65:B4:4A:3E:58:E5:F9:72:AB:C1:A2:9D:9F:D4
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f4:36:60:20:40:b1:27:8b:28:b5:4d:4d:0b:e5:a0:20:1c:
5c:4c:f5:be:8d:41:ab:6e:15:1a:b6:44:79:72:a9:3f:23:d1:
48:e4:19:e7:93:44:ca:96:8b:5b:a8:61:50:24:a6:a8:39:14:
6f:64:f9:bb:82:7c:46:43:30:2c:0d:7e:d3:13:0f:c3:6b:dd:
ac:9a:0c:03:b7:5e:b3:23:77:d9:26:25:a0:a8:13:33:12:47:
3a:d4:ae:dc:8c:fe:16:1e:50:06:ea:59:cd:01:f5:4b:48:4d:
81:71:e2:05:02:b5:8e:71:e5:ca:e9:50:8b:d1:31:b0:ff:cc:
ce:bc:be:6b:1e:7d:5e:2b:90:7a:9c:ce:4b:e1:2b:af:ee:36:
ae:a4:57:1c:8e:25:c6:f0:4b:e1:13:f0:a0:04:ae:e7:32:e5:
0d:e7:1f:18:d5:c6:5e:74:8e:40:5a:ec:29:15:3c:e7:17:b3:
6b:8b:e7:35:48:18:6d:ef:0f:4d:6d:7f:27:c0:fb:f1:7d:99:
f4:65:e8:0c:21:02:9b:6c:a2:0a:fb:94:23:61:a3:b0:9b:e3:
12:2b:65:18:53:66:da:98:5c:b4:86:32:4f:1e:51:a7:67:8b:
12:08:78:30:3e:34:6b:3b:82:b7:56:83:e9:a1:4a:16:96:2b:
94:94:c3:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjA47gaP7geEL2KlRAjpfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl
ODBlNzkwHhcNMjUwNjA3MDQwMDI3WhcNMjUwNjA4MDQwMDI3WjAzMTEwLwYDVQQD
Eyg1YmU0OWRiOGRlNzA2NWI0NGEzZTU4ZTVmOTcyYWJjMWEyOWQ5ZmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJzi1fxWDH9IrYytXwDZEd4ats0E
GrQhWZX5zmhftIQ6U/7BbKwoygPnSuOng80rWnjt9+Ib5a1qDKdK4m41XH1IySsa
DgTkiR/XMEeuAbeAumhq0PTWpfbcscLB5lvQ30B/5Z1en2SMfHIW6RmPgF8dDDDe
n5yyeWIewsN2psSvWipdptAACPpASmcP56Zk6ZJVMeOa69C9xafn2tyjtsbDlk8E
cnyFymN0K9G6ZhJkeejvD4B3kEI6ubCc6tOtW+EzNNjg5ZSjkwTmd/f5zdO4dZp2
lgpdKDeqcEc+/zQst5zmA7K8g/bu2Qtn/NpErOud5+3xhEs9yYTiArbamQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvknbjecGW0Sj5Y5flyq8GinZ/UMB8GA1UdIwQY
MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt
ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3
LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG/Q2YCBA
sSeLKLVNTQvloCAcXEz1vo1Bq24VGrZEeXKpPyPRSOQZ55NEypaLW6hhUCSmqDkU
b2T5u4J8RkMwLA1+0xMPw2vdrJoMA7desyN32SYloKgTMxJHOtSu3Iz+Fh5QBupZ
zQH1S0hNgXHiBQK1jnHlyulQi9ExsP/Mzry+ax59XiuQepzOS+Err+42rqRXHI4l
xvBL4RPwoASu5zLlDecfGNXGXnSOQFrsKRU85xeza4vnNUgYbe8PTW1/J8D78X2Z
9GXoDCECm2yiCvuUI2GjsJvjEitlGFNm2phctIYyTx5Rp2eLEgh4MD40azuCt1aD
6aFKFpYrlJTDOQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 10:46:13 2025 by rpki-client