Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: 2nV68UJq25x1CjEssN1nCcCeecRgjthyFnxvskveKhg=
Subject key identifier: D3:5C:9B:67:8D:1B:0E:AD:56:7E:30:BB:8F:0A:4E:A6:71:6E:2A:C4
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 019655379CC411F25CF4A5A1616B9BD28B7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0B66
Signing time: Sun 20 Apr 2025 22:00:29 +0000
Manifest this update: Sun 20 Apr 2025 22:00:29 +0000
Manifest next update: Mon 21 Apr 2025 22:00:29 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: awwmn0XSQ+oherBmnJaEaiyqrmOjxakjEeWY8YA3dUg=)
2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:9c:c4:11:f2:5c:f4:a5:a1:61:6b:9b:d2:8b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Apr 20 22:00:29 2025 GMT
Not After : Apr 21 22:00:29 2025 GMT
Subject: CN=d35c9b678d1b0ead567e30bb8f0a4ea6716e2ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fb:4f:ec:95:38:0d:48:98:2c:3d:a7:cf:5e:
8b:9a:3c:9d:bf:5a:35:bd:b8:06:14:87:4b:60:ee:
00:24:b9:2e:05:75:e7:b1:64:53:26:9e:a0:6a:13:
dc:65:ef:3c:c1:97:3f:e9:87:29:44:ae:b6:18:c9:
ef:8e:00:bb:63:a5:98:e9:cd:5a:ed:a1:7e:ee:26:
6d:4e:40:f9:a5:ab:79:45:41:d2:6d:58:a3:83:f9:
8a:27:56:b5:5e:7d:d7:13:bf:47:0a:12:a9:68:64:
2e:44:cd:9f:ec:a0:f1:9b:bd:6d:e9:71:48:0e:2e:
e5:c4:10:b6:6b:98:e0:68:24:19:2d:74:ba:46:3e:
2c:11:51:5a:3f:6a:71:a3:fc:d9:f0:25:bd:20:51:
b7:22:a5:b7:57:b1:2e:1e:51:76:1b:a6:ed:4d:0c:
53:12:61:ad:7d:d4:1a:9b:04:80:ac:44:da:a5:09:
1b:04:aa:73:fc:dd:cc:67:7e:87:de:fb:1b:0d:ca:
06:ac:d8:ed:55:8e:70:4c:42:ed:5d:c0:b8:2f:67:
c9:e4:d7:e2:7f:06:ab:c7:4a:41:33:0d:a9:7e:5b:
93:b5:57:57:93:af:64:f9:fc:39:1b:87:01:bb:69:
11:36:9b:a0:d4:a9:cd:7a:39:6d:65:4c:58:17:17:
83:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5C:9B:67:8D:1B:0E:AD:56:7E:30:BB:8F:0A:4E:A6:71:6E:2A:C4
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:53:c2:78:4d:b6:b5:95:84:90:63:e8:14:a1:e6:d2:83:50:
c0:7f:f1:b7:8f:9d:cf:25:ca:f5:a0:00:e4:22:0e:7c:e6:5e:
12:99:f5:09:95:47:c5:cb:f2:48:aa:1d:99:65:fc:23:0b:4b:
23:b1:c7:d8:2b:f9:f9:15:89:6a:7a:38:0a:f4:e9:2d:e8:b3:
94:53:14:00:54:e6:8a:de:27:c9:05:01:2f:e9:16:e2:b1:bf:
ca:d1:97:df:94:a6:a1:a4:cb:b0:c7:66:dc:c5:66:82:34:a8:
db:df:8a:1b:5d:db:69:db:80:a4:6e:89:74:df:be:05:0f:d7:
44:c0:ca:fc:5e:f2:f9:a5:2d:ac:87:88:48:a0:9c:1b:fd:3d:
ac:6b:15:86:a1:8c:11:02:7b:3e:d5:18:35:92:9e:84:75:84:
89:d3:2c:c0:55:f0:32:68:24:18:d7:d6:c9:1a:7c:eb:c1:c6:
eb:11:b6:be:3c:28:f7:a8:03:06:2a:7a:68:9a:ea:33:8c:93:
97:f9:84:cd:01:ce:8e:38:23:60:46:9f:2f:19:06:25:fb:72:
16:72:5e:27:91:9f:60:af:d8:6c:c4:9c:45:8b:46:dc:67:7b:
f7:73:7c:cb:72:59:e3:5f:a2:52:bf:ba:fd:dc:39:90:bb:b1:
89:a9:55:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN5zEEfJc9KWhYWub0ot6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl
ODBlNzkwHhcNMjUwNDIwMjIwMDI5WhcNMjUwNDIxMjIwMDI5WjAzMTEwLwYDVQQD
EyhkMzVjOWI2NzhkMWIwZWFkNTY3ZTMwYmI4ZjBhNGVhNjcxNmUyYWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/tP7JU4DUiYLD2nz16Lmjydv1o1
vbgGFIdLYO4AJLkuBXXnsWRTJp6gahPcZe88wZc/6YcpRK62GMnvjgC7Y6WY6c1a
7aF+7iZtTkD5pat5RUHSbVijg/mKJ1a1Xn3XE79HChKpaGQuRM2f7KDxm71t6XFI
Di7lxBC2a5jgaCQZLXS6Rj4sEVFaP2pxo/zZ8CW9IFG3IqW3V7EuHlF2G6btTQxT
EmGtfdQamwSArETapQkbBKpz/N3MZ36H3vsbDcoGrNjtVY5wTELtXcC4L2fJ5Nfi
fwarx0pBMw2pfluTtVdXk69k+fw5G4cBu2kRNpug1KnNejltZUxYFxeDhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNNcm2eNGw6tVn4wu48KTqZxbirEMB8GA1UdIwQY
MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt
ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3
LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgFPCeE22
tZWEkGPoFKHm0oNQwH/xt4+dzyXK9aAA5CIOfOZeEpn1CZVHxcvySKodmWX8IwtL
I7HH2Cv5+RWJano4CvTpLeizlFMUAFTmit4nyQUBL+kW4rG/ytGX35SmoaTLsMdm
3MVmgjSo29+KG13baduApG6JdN++BQ/XRMDK/F7y+aUtrIeISKCcG/09rGsVhqGM
EQJ7PtUYNZKehHWEidMswFXwMmgkGNfWyRp868HG6xG2vjwo96gDBip6aJrqM4yT
l/mEzQHOjjgjYEafLxkGJftyFnJeJ5GfYK/YbMScRYtG3Gd793N8y3JZ41+iUr+6
/dw5kLuxialVug==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:35:55 2025 by rpki-client