Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: d7g2wvtCPhqJyFpeISr5/UwqMUEaiV1/nrewb0muBs0=
Subject key identifier: 79:63:9E:10:87:25:41:78:FE:19:E5:02:F1:9B:C8:04:82:B0:D1:2F
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019A228A29FC19C0F9C89E7D4E4ED274AE03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 02A3
Signing time: Sun 26 Oct 2025 22:01:11 +0000
Manifest this update: Sun 26 Oct 2025 22:01:11 +0000
Manifest next update: Mon 27 Oct 2025 22:01:11 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: gVFXKDOJUkn1XtFkcVvfwQ7C5I2Qrq3gkQbRvVKzEgM=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:8a:29:fc:19:c0:f9:c8:9e:7d:4e:4e:d2:74:ae:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Oct 26 22:01:11 2025 GMT
Not After : Oct 27 22:01:11 2025 GMT
Subject: CN=79639e1087254178fe19e502f19bc80482b0d12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3f:40:01:67:1a:72:a7:81:fd:4b:cd:86:db:
e1:93:9f:2c:8c:4d:81:4a:2f:f0:1d:2b:94:fd:f7:
3e:30:3b:a4:0b:fe:36:af:db:9f:2c:19:2c:a1:7d:
6f:8d:29:bd:fc:ee:8f:b4:ed:6f:df:54:e7:80:54:
65:1b:ce:02:f1:3e:49:7f:77:2f:ab:15:1b:e5:39:
60:6c:81:a4:d0:b2:ea:a6:f8:ec:3a:71:b0:88:c7:
d2:85:4d:3d:2c:c2:21:51:8b:97:07:14:41:2f:7a:
5b:17:6d:79:e6:c9:03:bf:7b:c4:c1:c4:95:70:65:
90:e1:84:c2:5e:00:23:bd:4c:1e:a4:29:a6:0c:d2:
b8:13:4f:ff:ce:f2:73:07:15:cc:61:97:a6:02:a1:
a1:8e:a4:fd:57:88:5e:c9:29:d2:8b:0d:1c:04:21:
7d:bf:c1:a7:9a:57:29:e8:0b:91:27:8c:86:e1:31:
82:c9:e8:1a:65:89:db:e6:88:13:ac:59:9b:51:b8:
8b:f0:14:88:ca:55:87:95:81:45:84:3d:55:4b:bd:
04:a2:b2:d8:8d:e9:a8:ec:e0:43:c2:a5:e1:5d:ec:
63:03:6a:e5:ad:e7:2a:f4:69:ea:c7:03:a4:52:6d:
ff:4b:6f:b7:21:24:54:a7:b3:62:7e:6b:e3:54:a5:
34:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:63:9E:10:87:25:41:78:FE:19:E5:02:F1:9B:C8:04:82:B0:D1:2F
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:07:85:c5:2f:4b:75:a1:c9:b6:3b:ac:ca:02:5d:58:1f:13:
ee:ba:16:ef:3c:d1:2e:ed:f6:6f:67:ac:01:b8:a3:22:08:af:
e6:9c:0b:09:1d:e1:29:aa:91:41:36:3d:17:bf:f2:9b:e7:85:
0c:82:43:ce:60:08:f7:35:ae:72:a8:1e:68:01:58:ee:af:5c:
45:b9:87:3a:6d:41:a5:23:d3:fd:21:18:ca:6e:ea:f6:d1:64:
2c:93:74:7c:23:07:bf:8f:0b:47:9a:23:55:f8:93:91:b3:11:
64:b0:1c:4f:b3:18:d6:dd:aa:e8:26:2b:4f:5f:d7:bd:77:b7:
e1:fe:ca:25:1b:c1:60:2a:8b:c0:97:46:37:6e:e2:6e:9e:bb:
31:3c:a6:f7:28:54:05:0a:6e:6e:8a:08:7f:fd:3a:40:02:c1:
ef:2a:a2:d9:0e:b0:1f:63:e2:0d:2b:b7:53:de:ec:1a:d2:43:
b6:3b:6e:f5:19:81:22:bb:5d:71:78:58:27:e8:e3:4c:49:b9:
6c:13:e6:a7:03:1a:a2:67:46:a2:35:94:ca:e1:15:ca:1b:1b:
71:d9:24:0c:f5:65:fe:44:23:c8:08:29:a0:78:ae:f4:ee:0e:
52:14:d4:13:07:fb:e4:f9:32:55:59:aa:9e:aa:e3:af:2f:8e:
8f:5f:96:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiiin8GcD5yJ59Tk7SdK4DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjUxMDI2MjIwMTExWhcNMjUxMDI3MjIwMTExWjAzMTEwLwYDVQQD
Eyg3OTYzOWUxMDg3MjU0MTc4ZmUxOWU1MDJmMTliYzgwNDgyYjBkMTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwD9AAWcacqeB/UvNhtvhk58sjE2B
Si/wHSuU/fc+MDukC/42r9ufLBksoX1vjSm9/O6PtO1v31TngFRlG84C8T5Jf3cv
qxUb5TlgbIGk0LLqpvjsOnGwiMfShU09LMIhUYuXBxRBL3pbF2155skDv3vEwcSV
cGWQ4YTCXgAjvUwepCmmDNK4E0//zvJzBxXMYZemAqGhjqT9V4heySnSiw0cBCF9
v8Gnmlcp6AuRJ4yG4TGCyegaZYnb5ogTrFmbUbiL8BSIylWHlYFFhD1VS70EorLY
jemo7OBDwqXhXexjA2rlrecq9GnqxwOkUm3/S2+3ISRUp7NifmvjVKU0OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHljnhCHJUF4/hnlAvGbyASCsNEvMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAweFxS9L
daHJtjusygJdWB8T7roW7zzRLu32b2esAbijIgiv5pwLCR3hKaqRQTY9F7/ym+eF
DIJDzmAI9zWucqgeaAFY7q9cRbmHOm1BpSPT/SEYym7q9tFkLJN0fCMHv48LR5oj
VfiTkbMRZLAcT7MY1t2q6CYrT1/XvXe34f7KJRvBYCqLwJdGN27ibp67MTym9yhU
BQpubooIf/06QALB7yqi2Q6wH2PiDSu3U97sGtJDtjtu9RmBIrtdcXhYJ+jjTEm5
bBPmpwMaomdGojWUyuEVyhsbcdkkDPVl/kQjyAgpoHiu9O4OUhTUEwf75PkyVVmq
nqrjry+Oj1+WpA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 01:06:56 2025 by rpki-client