Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: uLmhWWI2P/BRlgP/tKspczwtJp4ssJy3ABf/0ULZAh8=
Subject key identifier: 29:9F:41:2F:79:5E:25:7A:94:AC:5C:D6:97:43:A6:FF:BF:0C:98:34
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 01992331821345E7D6802965A6256B5A0B09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 0AF0
Signing time: Sun 07 Sep 2025 08:01:11 +0000
Manifest this update: Sun 07 Sep 2025 08:01:11 +0000
Manifest next update: Mon 08 Sep 2025 08:01:11 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: wKp/4srcrZ4OMGnyw7MMxSV/SO4MY63o0umSzxu9k+8=)
2: VNahP0UQveZ8aD0TsmaExJY0tZA.roa (hash: mRQeMIIWNprrsGatyNnULZeqD9q6svl4Pj1uiYVKUX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:82:13:45:e7:d6:80:29:65:a6:25:6b:5a:0b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: Sep 7 08:01:11 2025 GMT
Not After : Sep 8 08:01:11 2025 GMT
Subject: CN=299f412f795e257a94ac5cd69743a6ffbf0c9834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:2b:51:b7:9e:ec:54:a5:05:53:74:88:b0:
a6:6b:30:52:1e:07:37:76:38:4e:6c:d5:bf:4f:7f:
b1:6e:45:77:4a:76:4f:51:d0:dc:b0:23:37:16:fe:
02:e7:6e:78:7a:50:c6:6e:c4:51:c5:09:7c:e0:7a:
15:0a:07:e7:c2:9d:f1:e5:b2:45:7c:f1:39:a5:75:
99:51:a1:95:c7:12:43:18:0f:32:81:57:f2:6f:36:
f7:bf:c6:ad:81:46:39:66:aa:31:ee:13:c0:8d:7f:
2e:8e:f4:2e:eb:91:7e:c7:3e:97:ce:9c:d6:b3:d6:
14:53:aa:fd:b6:38:27:33:fe:88:66:c1:0b:ff:4e:
3b:88:f1:d9:de:28:2f:be:b4:f7:5d:04:c6:b3:9f:
76:35:b2:ec:3a:80:c4:b2:93:62:e6:85:c1:38:f2:
67:d7:da:5e:44:a6:c0:b8:22:af:22:47:15:cf:61:
77:16:67:b3:9e:2c:5a:66:96:24:13:48:45:43:65:
2f:ea:ad:e6:c9:51:da:51:b6:34:94:94:7c:0f:66:
64:ba:6e:a1:88:ce:16:46:0d:61:e3:9f:12:1e:1a:
5a:50:78:27:e9:e9:7c:0d:6c:f5:87:7b:53:b0:94:
16:ac:5c:88:cf:a4:8c:aa:4f:08:67:1f:61:7d:59:
3a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9F:41:2F:79:5E:25:7A:94:AC:5C:D6:97:43:A6:FF:BF:0C:98:34
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:1c:21:34:ec:3d:10:f6:16:d7:ee:39:31:d5:01:c6:1f:c0:
c6:61:be:15:63:43:70:93:ed:5b:ed:51:65:a2:4f:1d:20:b4:
29:1e:4a:2a:61:82:62:4e:50:f6:c2:fe:3d:02:37:58:ea:26:
eb:fa:21:c4:01:44:af:74:f1:db:bc:bb:4a:d4:e5:1f:5c:2c:
54:22:fb:58:34:d7:fb:8e:0f:58:d7:ef:73:5c:c2:d1:6c:60:
d2:13:8d:93:95:b8:10:af:97:7a:28:b7:3d:c9:08:10:2d:62:
16:69:bd:ff:9d:07:5b:71:13:6d:b3:ad:1a:f7:b1:67:26:9a:
da:68:1f:30:d2:8d:ae:65:e3:ae:ad:58:e7:51:30:f8:83:66:
c2:1c:4b:fc:fd:ab:c5:26:ec:79:2a:1e:29:e4:16:42:0e:93:
1d:7f:f6:8b:d8:b2:15:2e:b7:c0:d6:d7:fb:5b:c0:60:0c:79:
f2:13:c3:d8:c3:0d:40:26:67:6a:86:04:ec:e1:7f:f7:9d:71:
e3:93:b9:33:d2:eb:19:d3:49:a1:81:23:66:04:f3:3d:b9:44:
4b:07:59:2e:ea:21:12:27:30:f9:4f:6b:19:b5:a7:af:1c:7f:
4e:03:b4:fa:19:8c:8f:c1:51:3a:3f:8d:e7:be:27:fe:ce:dc:
77:70:8e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:29 2025 by rpki-client