Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: Luwy6uj87jPzzMaD2NW4Dg7fddwpDqOzf2Gw1RtEM+E=
Subject key identifier: 29:17:87:B0:93:02:21:15:C1:99:53:D2:C3:F9:22:09:77:4C:35:3F
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 01992F36C0EF9ED91A137CA1EE1E38093C33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0225
Signing time: Tue 09 Sep 2025 16:02:21 +0000
Manifest this update: Tue 09 Sep 2025 16:02:21 +0000
Manifest next update: Wed 10 Sep 2025 16:02:21 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: XjkRnL9vPMYgA37ztv3aHq0WYhAB6a3kJtRJ4XRF0rU=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 15:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:36:c0:ef:9e:d9:1a:13:7c:a1:ee:1e:38:09:3c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Sep 9 16:02:21 2025 GMT
Not After : Sep 10 16:02:21 2025 GMT
Subject: CN=291787b093022115c19953d2c3f92209774c353f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5c:15:3a:22:88:2e:5b:7c:b5:ff:cf:be:50:
67:46:03:01:22:48:2a:6b:ca:e1:d4:c9:24:ba:3a:
ad:93:56:94:b3:4e:ec:24:2c:16:35:0f:54:7a:af:
fb:77:ec:da:ba:2d:2b:4f:4e:48:6e:79:06:70:f7:
f8:a1:f5:b1:df:3e:49:67:75:21:6e:c5:44:35:54:
77:b2:ca:32:2d:bf:05:a8:f8:c6:b2:61:45:5c:9c:
29:c8:61:a2:7a:06:c4:af:aa:e0:9f:0e:e0:90:79:
d8:ad:52:3e:d4:6f:df:3e:10:c2:dd:15:2e:13:e9:
79:ac:e3:c8:6b:00:9a:64:55:45:d8:89:1e:39:31:
61:16:32:7e:15:ad:30:5e:e6:c6:a4:7b:a3:02:c9:
99:6d:ea:3f:b3:4f:60:7a:cd:b9:1b:ca:09:00:0e:
37:69:35:43:07:9c:e6:ab:82:17:41:dc:91:86:2a:
21:c9:d2:fd:d1:0d:9a:6f:f1:27:67:72:2c:f6:40:
53:b6:b8:75:74:ac:9a:83:85:2c:4c:c0:35:8f:5c:
b5:1e:48:bf:3a:c7:76:6e:d7:b6:18:5f:19:db:a6:
64:43:d3:a4:b7:70:90:d5:75:0d:2d:c0:0e:8b:7e:
1a:ca:c1:68:77:3a:dd:35:9c:eb:b4:a8:d2:c5:14:
86:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:17:87:B0:93:02:21:15:C1:99:53:D2:C3:F9:22:09:77:4C:35:3F
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:59:6f:9e:85:64:95:5a:f6:65:e0:09:3a:f7:f2:26:1d:e0:
02:dc:fe:16:37:b3:9a:c3:18:a3:6e:20:37:b5:b5:89:f3:9e:
f1:7d:21:da:5b:2a:1a:b2:46:8c:f2:f8:13:00:d6:b7:41:80:
da:ce:3d:84:f4:e3:e3:c6:43:82:00:14:9a:4a:ba:39:c2:51:
a2:07:3e:bf:a8:0b:cd:c2:1f:ca:b7:01:02:0e:ad:75:1e:f7:
b3:d5:d4:fb:da:33:98:b0:33:10:f3:33:47:d9:a5:1d:c8:c9:
92:11:c9:bd:46:21:f5:56:fc:2c:b6:8e:06:90:22:c5:78:b4:
ef:fd:7f:2a:ce:2f:83:7c:a0:fa:35:81:a6:2c:47:90:d8:64:
4a:86:58:9e:a9:61:e7:e4:f3:32:8b:d1:0b:5a:f4:b9:c4:fc:
46:7b:0e:65:5c:18:8a:00:81:b1:b0:21:c0:ce:a2:0c:94:c2:
5a:96:76:85:f6:f4:3f:01:c5:69:89:56:87:50:40:9a:9e:54:
3e:f3:bb:71:c9:48:d1:4f:5f:97:90:34:60:28:3d:23:e2:66:
b9:18:19:68:fc:c6:f1:36:eb:58:70:90:f9:37:54:db:b0:16:
23:e6:73:bd:a7:a8:91:a5:cc:17:14:b6:10:49:34:37:5c:71:
25:9d:df:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:42:34 2025 by rpki-client