Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
File: cpnOZKDxYk17stKWnlwRrbqlSFw.mft (raw, json)
Hash identifier: fodT9pJR1E/xzQRK8KNFhtmEvA6Whzis5sTHeM16foM=
Subject key identifier: AF:29:AD:A0:A9:E5:0E:EB:C2:DE:B6:83:EA:F1:0C:D9:BE:14:8B:F9
Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Certificate serial: 0197D62B6E61BAAA391FF6FA6E6AD549C935
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
Manifest number: 09ED
Signing time: Fri 04 Jul 2025 16:00:59 +0000
Manifest this update: Fri 04 Jul 2025 16:00:59 +0000
Manifest next update: Sat 05 Jul 2025 16:00:59 +0000
Files and hashes: 1: cpnOZKDxYk17stKWnlwRrbqlSFw.crl (hash: Oj12H5r/ypxbRAuukiZWTJCvvQogDl8+hcWL7sSnYqA=)
2: hGLXMAJyrLLUknw2I4rIa47GY5A.roa (hash: 2PfIq+E4/YZaE6ygL6f+ygB4E8ocD+aiVc7FkOqVsVA=)
3: vbTBxrwzB75awQdnuHxvUmGSxrI.roa (hash: BNvntPsh9Cs3tqn2zXlS+7ZhQF3J782Zk6D2d5jtV8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d6:2b:6e:61:ba:aa:39:1f:f6:fa:6e:6a:d5:49:c9:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Validity
Not Before: Jul 4 16:00:59 2025 GMT
Not After : Jul 5 16:00:59 2025 GMT
Subject: CN=af29ada0a9e50eebc2deb683eaf10cd9be148bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:be:48:30:05:e3:96:3e:22:6e:47:d6:08:98:
dc:81:81:80:78:b5:60:a4:4b:cf:a5:07:0c:45:9e:
f6:44:06:96:4e:63:e7:85:d2:a5:a8:9b:b8:f1:de:
28:03:8e:26:d3:16:13:a5:7c:50:c4:4b:aa:b7:aa:
5b:78:1b:6d:ff:4f:1f:35:8b:69:ae:e4:b3:03:25:
73:23:59:b0:e2:0d:1a:5b:ac:0c:2b:7b:35:d2:93:
ba:19:fe:cc:95:74:6c:2d:18:80:f8:82:aa:a2:da:
7e:d4:f1:56:44:3a:68:b0:d8:de:ea:33:c8:6b:59:
90:07:3f:2c:fe:61:cc:4f:01:49:32:fc:0e:74:bf:
96:d2:f7:d7:c7:69:8f:b2:09:86:f7:b1:4a:36:d1:
45:d3:fe:9f:5a:1c:14:3b:40:b8:0e:3c:1c:93:39:
cc:f7:7d:7e:78:95:61:32:8d:d2:8e:2f:49:1a:09:
ff:ac:ff:08:22:de:cc:6a:d9:ac:c7:e3:08:1e:21:
c0:67:7e:f4:38:2a:9e:e1:5d:b2:5d:4e:af:0b:d2:
bb:a3:30:86:da:b0:47:e1:e8:c2:f8:e5:81:1f:7a:
da:3b:05:43:03:f9:0b:a4:33:c4:51:cf:be:86:01:
89:9d:4e:7c:11:11:1e:a5:fc:f2:16:73:77:a6:53:
2a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:29:AD:A0:A9:E5:0E:EB:C2:DE:B6:83:EA:F1:0C:D9:BE:14:8B:F9
X509v3 Authority Key Identifier:
keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:7f:a8:1d:5d:d2:4f:db:91:19:6f:1d:b0:52:84:bd:25:35:
11:9a:d1:46:60:03:53:51:41:7b:be:24:a4:20:9e:c4:cc:80:
62:57:ca:45:51:ea:8c:6d:69:a5:59:58:20:f4:2a:a5:0d:86:
31:66:cd:07:0f:9a:92:c9:17:c8:97:c8:58:f5:b9:6c:d4:5f:
0f:35:78:68:d9:bb:af:71:ff:9f:9a:7a:9b:58:fb:96:22:7f:
5f:53:08:5c:34:60:36:2d:91:6e:88:81:fd:b7:08:31:fb:33:
2a:ab:17:92:20:b0:4e:cc:14:9a:9e:1e:14:57:60:15:a1:49:
3c:ce:70:fe:48:c5:ae:87:52:b6:7f:1f:65:9f:a8:18:c0:46:
d8:d9:a0:07:2b:2b:be:f2:ba:6b:dd:d1:5b:5a:94:82:8f:ae:
94:fa:fc:fd:76:81:1d:a0:90:81:cf:79:eb:55:b1:96:8b:91:
c6:d6:0d:9d:f3:85:c8:d2:08:3d:f9:ab:02:56:3c:f5:98:ca:
4f:da:90:37:e8:41:49:4c:f7:d4:20:5a:33:3d:e5:30:2f:e1:
85:54:90:de:af:30:38:8e:f8:61:ac:27:07:27:48:11:03:06:
24:2c:42:30:d5:c0:56:6b:35:54:d9:7c:12:1b:b6:74:04:bb:
7b:38:4c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 00:55:04 2025 by rpki-client