Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json)
Hash identifier: Z4u9XyRjotD/oUxrI1oopq+G6bwBUB7byLWR2E1f3zY=
Subject key identifier: CD:8B:06:DE:0B:E5:82:DF:29:FB:C3:02:1D:9C:69:C0:11:44:C3:F0
Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Certificate serial: 01974D0E132DF5FCEB87353C774A4A13D3AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
Manifest number: 09FF
Signing time: Sun 08 Jun 2025 01:00:57 +0000
Manifest this update: Sun 08 Jun 2025 01:00:57 +0000
Manifest next update: Mon 09 Jun 2025 01:00:57 +0000
Files and hashes: 1: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: lpd69Wz2zMEHn3cjqCgvjFLBoeshiMPsOk2yGBIVGxQ=)
2: muE7z7bw5WUF44PtXee-WtjAnUQ.roa (hash: eOTAuS8cb5e4NeqERvCCoU2l75Ey2kGH2CxTpug1Tes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:13:2d:f5:fc:eb:87:35:3c:77:4a:4a:13:d3:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Validity
Not Before: Jun 8 01:00:57 2025 GMT
Not After : Jun 9 01:00:57 2025 GMT
Subject: CN=cd8b06de0be582df29fbc3021d9c69c01144c3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cc:7f:1e:d5:a3:be:bf:df:9d:bd:d9:69:6b:
0a:85:66:75:bd:66:3b:fe:3a:99:31:50:dd:2a:bb:
f2:a7:0b:79:d2:ca:0c:45:0f:8c:2f:a8:09:71:7f:
65:e2:bb:85:b5:88:b4:c5:3e:f5:3e:d4:be:79:ee:
e3:81:22:66:93:95:41:ea:bb:af:3f:fa:e3:14:1c:
c0:d2:c4:6f:fe:79:6b:cf:a0:ac:e3:b3:b5:b2:53:
79:0d:db:7b:1c:33:c9:2d:b7:80:e1:69:2a:11:56:
dd:e6:24:43:1b:4c:93:a2:db:64:37:0c:ca:35:70:
e8:ad:d3:35:bd:ce:59:9a:77:f5:24:ed:38:b4:0d:
1d:76:d0:13:2c:c9:33:f3:b1:3c:3d:f5:84:3d:7e:
1c:92:d2:70:63:41:d3:de:af:3e:0d:d9:82:41:c1:
c5:d6:39:50:77:5b:ba:56:46:95:12:c8:dc:8f:8f:
34:d2:c2:32:4d:69:a8:6a:80:68:ed:dc:a0:44:f2:
e8:77:e9:42:b7:35:c4:d5:66:b4:ba:97:cd:8d:44:
50:53:17:53:2b:21:82:0f:72:ce:19:6e:64:47:47:
53:a5:9d:26:8e:e4:c2:42:16:c6:db:60:6b:e2:bd:
45:b5:3b:2d:71:fc:fe:b2:c9:d3:44:0d:ae:bf:5d:
ae:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8B:06:DE:0B:E5:82:DF:29:FB:C3:02:1D:9C:69:C0:11:44:C3:F0
X509v3 Authority Key Identifier:
keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:88:db:f2:71:90:29:f1:b1:1c:07:e3:33:09:9e:a2:fd:97:
00:9e:a6:73:6a:86:65:5e:35:d5:6a:f2:4c:90:16:eb:73:ee:
75:52:c2:9c:8a:bf:f8:d4:bc:cf:34:52:ba:e2:98:95:e4:bb:
ea:ce:bc:ee:22:71:b1:94:3c:c8:d2:1d:aa:0e:0e:c3:15:56:
57:c6:df:de:e9:bc:50:ec:e3:bd:35:a0:21:2b:79:0b:5f:75:
1c:2e:6f:27:57:87:b8:87:5f:f6:63:f1:36:c7:22:b6:65:07:
9b:d1:50:2e:40:3c:6e:5d:bb:e0:cf:10:b5:df:10:74:ae:cc:
6b:f0:a5:61:19:1d:cd:2f:f4:b1:40:17:6d:c1:fc:ac:e4:ad:
53:fc:42:38:97:41:07:ef:65:44:27:c0:44:02:4c:33:3f:62:
8d:a0:8c:b1:0b:c8:12:28:bc:ab:19:4c:86:5a:9d:e8:3f:52:
e4:e0:23:4e:7f:ad:2f:67:ee:0f:1e:9a:35:9d:5e:dd:af:3b:
8a:f2:91:d6:43:7d:47:7b:84:61:9a:bf:fb:ab:ba:9c:74:e1:
88:44:70:85:8b:ef:82:50:26:11:1a:44:2c:73:96:39:d0:9b:
63:f4:58:b1:bf:e9:9b:d1:f6:31:98:b8:5c:7a:aa:f4:3a:32:
da:8f:06:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNDhMt9fzrhzU8d0pKE9OsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMTJhNTJlODhiMDE4MzJjZjBlZTM3Y2NkYWI2MWRlY2U3
ZDEyYzYwHhcNMjUwNjA4MDEwMDU3WhcNMjUwNjA5MDEwMDU3WjAzMTEwLwYDVQQD
EyhjZDhiMDZkZTBiZTU4MmRmMjlmYmMzMDIxZDljNjljMDExNDRjM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsx/HtWjvr/fnb3ZaWsKhWZ1vWY7
/jqZMVDdKrvypwt50soMRQ+ML6gJcX9l4ruFtYi0xT71PtS+ee7jgSJmk5VB6ruv
P/rjFBzA0sRv/nlrz6Cs47O1slN5Ddt7HDPJLbeA4WkqEVbd5iRDG0yTottkNwzK
NXDordM1vc5Zmnf1JO04tA0ddtATLMkz87E8PfWEPX4cktJwY0HT3q8+DdmCQcHF
1jlQd1u6VkaVEsjcj4800sIyTWmoaoBo7dygRPLod+lCtzXE1Wa0upfNjURQUxdT
KyGCD3LOGW5kR0dTpZ0mjuTCQhbG22Br4r1FtTstcfz+ssnTRA2uv12uwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2LBt4L5YLfKfvDAh2cacARRMPwMB8GA1UdIwQY
MBaAFHASpS6IsBgyzw7jfM2rYd7OfRLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgt
MzIwMWI4N2YxNDkwLzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgtMzIwMWI4N2YxNDkw
LzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuojb8nGQ
KfGxHAfjMwmeov2XAJ6mc2qGZV411WryTJAW63PudVLCnIq/+NS8zzRSuuKYleS7
6s687iJxsZQ8yNIdqg4OwxVWV8bf3um8UOzjvTWgISt5C191HC5vJ1eHuIdf9mPx
NscitmUHm9FQLkA8bl274M8Qtd8QdK7Ma/ClYRkdzS/0sUAXbcH8rOStU/xCOJdB
B+9lRCfARAJMMz9ijaCMsQvIEii8qxlMhlqd6D9S5OAjTn+tL2fuDx6aNZ1e3a87
ivKR1kN9R3uEYZq/+6u6nHThiERwhYvvglAmERpELHOWOdCbY/RYsb/pm9H2MZi4
XHqq9Doy2o8GDQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:40:06 2025 by rpki-client