Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: 84Tsqt6/42iHwhizrlbOLgntaTp44JfsS76DcYJwUl4=
Subject key identifier: C2:F3:68:EB:20:92:41:09:00:7B:48:00:A0:D4:5B:ED:5D:C9:E8:1F
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 01974667368291E582136AC9A8F397347963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0128
Signing time: Fri 06 Jun 2025 18:00:58 +0000
Manifest this update: Fri 06 Jun 2025 18:00:58 +0000
Manifest next update: Sat 07 Jun 2025 18:00:58 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: OTacCpd8JNRAUb7B4uV43kxUDsmZk5c6UxcWN7cyRqI=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:36:82:91:e5:82:13:6a:c9:a8:f3:97:34:79:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Jun 6 18:00:58 2025 GMT
Not After : Jun 7 18:00:58 2025 GMT
Subject: CN=c2f368eb20924109007b4800a0d45bed5dc9e81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ee:f8:06:c1:2c:bc:c5:dd:d9:fc:d2:64:b4:
1e:8d:17:40:91:d8:04:ad:42:18:00:64:65:ed:c2:
59:ea:e7:3f:5b:28:d5:d0:19:42:f5:e4:6a:1d:74:
01:50:53:25:ec:84:c6:97:7d:09:95:30:dc:33:9c:
b9:29:39:9e:2f:a4:77:f7:50:70:d8:6b:23:26:c0:
84:2e:fb:cf:87:ef:24:18:c9:28:fa:0d:10:92:03:
0d:25:31:d4:2c:1a:04:dd:0e:cd:05:d4:3d:97:81:
d9:61:c5:2f:29:ca:9d:03:6e:93:88:e2:cc:a4:b7:
be:ba:2a:31:08:96:2d:9a:5f:38:7c:4b:8e:50:e5:
19:ed:24:ca:d1:98:14:38:91:6a:b2:97:74:a3:06:
7d:e8:92:8f:cd:c0:b9:1c:e5:55:2c:0a:c8:b7:9c:
cd:24:12:2a:cb:4b:d8:2c:51:f6:10:c5:0c:df:26:
e5:fd:ca:d3:ca:f2:12:b4:09:08:ed:55:1b:e9:db:
47:6e:cb:29:70:43:09:02:aa:98:d2:fd:ee:78:c3:
41:0b:bd:0e:be:8c:bf:7b:61:04:7a:63:c6:ec:af:
8d:67:f0:e2:5e:bc:6d:cb:ff:cb:12:d3:b2:1a:eb:
8e:2b:02:45:29:d9:7a:d4:53:13:04:f8:49:ef:c8:
42:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F3:68:EB:20:92:41:09:00:7B:48:00:A0:D4:5B:ED:5D:C9:E8:1F
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:6b:a8:6e:97:12:3a:88:5f:ce:52:17:27:86:35:2f:54:f9:
68:37:a8:83:6f:75:e5:82:2a:89:4c:0a:eb:b0:a0:5a:a9:8b:
46:62:b6:30:7e:7c:21:e6:eb:81:dc:ee:97:80:15:cf:f8:16:
fd:59:14:aa:36:82:a4:ca:52:b4:1c:60:03:6a:ff:1e:87:69:
ce:ac:cb:02:1e:26:09:ee:93:18:89:8f:45:18:63:50:91:bf:
5a:71:1b:da:4a:31:13:9b:c5:d2:42:a2:3e:bf:fd:49:7f:e6:
17:af:2a:0b:30:dd:a9:d5:51:d3:8f:56:21:66:14:11:ab:64:
f9:d1:f4:c5:50:56:1a:dc:16:0c:cc:ea:7d:3d:c6:3d:d6:07:
d7:95:64:02:e4:ad:cf:7b:35:d1:b5:56:8e:db:dd:bd:b6:df:
7a:b6:67:bc:8c:b0:fe:54:f5:82:6d:01:c3:d0:93:4f:b4:f3:
07:b3:9e:6c:80:b8:2c:d9:3d:10:bd:ee:73:c5:37:98:79:d6:
73:e1:55:d7:40:af:3d:5e:bd:09:91:51:6b:7d:b0:d9:ef:00:
02:bd:06:dd:28:34:98:f7:1a:af:a9:2c:86:7c:95:d9:81:41:
c9:af:72:93:b5:e1:18:aa:3b:5c:83:79:3c:df:f7:7b:86:b4:
1e:2e:a6:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZzaCkeWCE2rJqPOXNHljMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjUwNjA2MTgwMDU4WhcNMjUwNjA3MTgwMDU4WjAzMTEwLwYDVQQD
EyhjMmYzNjhlYjIwOTI0MTA5MDA3YjQ4MDBhMGQ0NWJlZDVkYzllODFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwe74BsEsvMXd2fzSZLQejRdAkdgE
rUIYAGRl7cJZ6uc/WyjV0BlC9eRqHXQBUFMl7ITGl30JlTDcM5y5KTmeL6R391Bw
2GsjJsCELvvPh+8kGMko+g0QkgMNJTHULBoE3Q7NBdQ9l4HZYcUvKcqdA26TiOLM
pLe+uioxCJYtml84fEuOUOUZ7STK0ZgUOJFqspd0owZ96JKPzcC5HOVVLArIt5zN
JBIqy0vYLFH2EMUM3ybl/crTyvIStAkI7VUb6dtHbsspcEMJAqqY0v3ueMNBC70O
voy/e2EEemPG7K+NZ/DiXrxty//LEtOyGuuOKwJFKdl61FMTBPhJ78hCNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLzaOsgkkEJAHtIAKDUW+1dyegfMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdGuobpcS
OohfzlIXJ4Y1L1T5aDeog2915YIqiUwK67CgWqmLRmK2MH58Iebrgdzul4AVz/gW
/VkUqjaCpMpStBxgA2r/HodpzqzLAh4mCe6TGImPRRhjUJG/WnEb2koxE5vF0kKi
Pr/9SX/mF68qCzDdqdVR049WIWYUEatk+dH0xVBWGtwWDMzqfT3GPdYH15VkAuSt
z3s10bVWjtvdvbbferZnvIyw/lT1gm0Bw9CTT7TzB7OebIC4LNk9EL3uc8U3mHnW
c+FV10CvPV69CZFRa32w2e8AAr0G3Sg0mPcar6kshnyV2YFBya9yk7XhGKo7XIN5
PN/3e4a0Hi6m8w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:16 2025 by rpki-client