Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json)
Hash identifier: Pl3TN1lMJziQsmGnwLxOoMFORsxXHeJfNxGutJwpoTE=
Subject key identifier: 77:C5:D3:0B:AD:43:DE:B9:D2:4D:AC:39:82:11:04:B7:2A:0B:04:3C
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 01991E4231C394146F1E5D0E40C097D564E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
Manifest number: 11A0
Signing time: Sat 06 Sep 2025 09:01:18 +0000
Manifest this update: Sat 06 Sep 2025 09:01:18 +0000
Manifest next update: Sun 07 Sep 2025 09:01:18 +0000
Files and hashes: 1: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: GhoUdFK0eu8hmizc14ehJB3ivQazI54uijOkMbd/NQQ=)
2: x-sFc0XuZWyC8mb5YkUAH-GfdII.roa (hash: SLT0QNLc8vBCO5UeVhbutYzbWFamBQrhqoa9wxuI2Us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 09:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1e:42:31:c3:94:14:6f:1e:5d:0e:40:c0:97:d5:64:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: Sep 6 09:01:18 2025 GMT
Not After : Sep 7 09:01:18 2025 GMT
Subject: CN=77c5d30bad43deb9d24dac39821104b72a0b043c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:46:5f:4b:47:a2:00:cc:0b:5e:23:6d:8a:
45:ad:ee:ac:b5:cf:63:78:14:c5:a9:a6:9b:ba:49:
de:3d:3d:b9:a2:59:88:36:73:02:49:ae:fb:d5:c6:
7f:b7:8c:c9:96:ba:b2:9a:99:d2:1b:0d:3c:8b:ca:
60:80:d3:c1:ad:e3:34:bd:bb:27:2e:ff:87:b5:2e:
e2:30:5a:e0:1b:5e:bf:c2:5c:96:e4:5f:ad:05:25:
1f:5e:a7:cb:98:48:b1:7b:6d:0d:69:ea:91:01:24:
81:e2:81:d8:cd:5d:5e:4d:e1:91:8c:13:29:6e:b7:
f8:03:20:5d:d9:75:a1:01:05:7c:89:ed:f8:ed:10:
a4:8f:9b:99:73:98:4f:39:c8:67:5a:4f:12:92:20:
7f:00:db:2d:98:fc:08:c9:18:fc:3a:be:43:49:4a:
8c:7f:73:a6:f0:ce:5c:9b:46:92:1c:fd:cf:d3:94:
cb:fa:c4:9e:f4:f0:c9:2d:14:85:db:2f:df:b9:40:
c9:7f:a2:06:fa:ba:6a:ff:f1:24:c7:e1:c7:a2:da:
d1:88:db:b4:37:01:c6:e3:8d:c1:00:fd:bf:90:5f:
df:ae:97:a2:52:90:31:20:9e:be:77:0c:65:2b:98:
d3:5c:21:13:78:79:fe:02:09:54:a9:c7:82:03:ef:
d1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C5:D3:0B:AD:43:DE:B9:D2:4D:AC:39:82:11:04:B7:2A:0B:04:3C
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:70:be:73:88:7a:e6:61:18:50:df:a7:98:1b:be:15:40:bd:
d9:76:41:70:7b:fe:09:5b:c8:83:10:87:02:e0:29:89:ff:d4:
0e:ab:03:b2:bd:70:f1:c5:ae:91:47:10:92:ed:68:01:b3:92:
7a:02:b2:18:d3:98:40:44:c3:aa:9c:37:4a:61:7c:66:7e:38:
1b:c1:66:d4:69:f9:d7:29:18:60:bc:04:31:40:e8:01:bf:5c:
d4:1b:cb:be:8b:74:98:c0:b2:63:42:a5:a0:df:e0:a2:ef:f9:
26:90:40:5c:fa:a7:0b:7a:76:34:cb:16:1b:fc:f5:64:db:57:
c6:4c:00:a7:34:bd:c2:96:2f:90:7d:fa:13:9a:e9:16:55:ee:
fe:bf:57:3e:ab:de:b7:59:32:50:b0:22:67:6b:9e:5b:21:7a:
e6:56:66:5a:de:00:9c:72:17:9a:73:e4:ae:e2:e9:ce:dd:19:
90:6e:60:ba:ce:4a:e7:fa:af:13:4f:ac:c3:0f:19:71:61:3f:
4f:09:0a:d3:ec:33:ea:d4:4e:44:f5:6a:8c:b0:4f:1b:ae:e9:
0b:53:af:51:70:d0:cf:2e:ef:fb:fd:dc:7e:cd:d1:c4:b1:64:
41:11:96:11:2c:b5:be:2b:7a:2c:ea:af:e2:be:f1:04:61:d9:
59:88:94:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 16:58:07 2025 by rpki-client