Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: 8vkEsLsDksOjt9V6iHxb81TvEFg3fWZOfv4nfL6Q5aE=
Subject key identifier: 39:B5:0A:8B:EC:F3:04:34:DA:9B:30:E6:E8:0E:A5:B1:EB:B0:A5:B8
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 01974A0C8AB4ECD66E5D37C701B3B743F3B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 09FB
Signing time: Sat 07 Jun 2025 11:00:25 +0000
Manifest this update: Sat 07 Jun 2025 11:00:25 +0000
Manifest next update: Sun 08 Jun 2025 11:00:25 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: sqmQgItUXojP3nrWELRYB8WijKMXbNWzfDmseTDvOiE=)
2: VNahP0UQveZ8aD0TsmaExJY0tZA.roa (hash: mRQeMIIWNprrsGatyNnULZeqD9q6svl4Pj1uiYVKUX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:8a:b4:ec:d6:6e:5d:37:c7:01:b3:b7:43:f3:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: Jun 7 11:00:25 2025 GMT
Not After : Jun 8 11:00:25 2025 GMT
Subject: CN=39b50a8becf30434da9b30e6e80ea5b1ebb0a5b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4e:74:85:4c:8b:cd:fc:4c:5f:d6:07:aa:6d:
af:5a:23:c7:dd:4b:1f:24:3e:2a:be:25:3a:b2:1c:
df:fb:d6:ce:53:47:df:b9:02:b1:8c:62:b6:0a:30:
87:22:7d:20:83:b4:05:2e:cb:cc:db:d6:e4:46:24:
89:5b:d7:90:92:00:45:ba:8b:73:a5:20:cb:aa:d8:
89:96:a7:09:94:93:90:40:1a:ff:c2:af:61:14:58:
d8:32:9f:d0:9f:f5:1c:33:3c:f2:2d:27:ab:0f:cc:
b3:ed:9a:d6:4a:fc:94:0d:13:ef:b2:34:12:43:df:
84:bd:0f:f7:32:9f:fb:a2:b5:b8:34:24:13:aa:3c:
8b:f4:ed:1b:21:33:c1:67:1f:8a:96:70:bc:fe:4b:
cc:6a:e7:b7:dd:36:7c:d1:28:f3:30:d7:5e:5f:90:
42:89:27:91:0f:fe:24:4c:08:66:6f:7a:c1:08:ec:
86:c9:a7:39:a2:fd:a9:d5:92:07:f2:03:cf:64:0e:
53:79:47:f2:be:a9:e3:7b:43:39:73:89:9b:2a:30:
f2:fb:a5:1c:4b:62:b2:56:e9:56:90:d4:74:c1:b9:
eb:da:78:8b:24:2c:b2:aa:ab:fb:bb:24:5f:8f:42:
4f:31:58:ac:81:7b:42:b9:66:38:70:00:ae:19:aa:
55:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B5:0A:8B:EC:F3:04:34:DA:9B:30:E6:E8:0E:A5:B1:EB:B0:A5:B8
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:f4:df:6f:be:95:e2:dc:ba:0c:ab:48:c4:10:ac:9e:de:62:
ad:11:66:95:eb:bc:21:03:47:11:89:67:47:5d:1a:c3:00:39:
48:28:af:dc:d6:8c:2d:a8:cf:19:d2:b3:11:68:0a:3d:f1:de:
41:4f:40:29:6f:65:a4:2e:ed:0b:49:b7:4c:d3:e4:87:17:cc:
29:e4:be:e1:16:aa:fe:fa:0a:5d:a9:46:22:84:87:24:f2:cf:
2f:a6:de:ce:34:ee:8e:cd:07:75:6f:99:28:67:34:c0:e5:92:
b5:a4:b4:28:ce:31:db:52:2e:74:2b:a6:40:09:15:b3:7f:8b:
69:4d:cc:13:e7:ca:d5:53:23:31:4f:44:8c:21:88:bb:df:4e:
aa:45:03:77:70:4c:4f:e2:76:6f:a3:d2:58:63:16:f0:86:2e:
08:33:8b:cd:6a:53:83:54:fc:10:f3:12:ba:44:b5:b7:da:02:
81:88:cf:5e:94:52:91:37:e1:9d:f0:f4:44:5e:58:09:27:70:
d3:2c:c0:bf:c7:0b:46:61:38:43:dc:d7:e1:8c:70:e8:5d:b8:
78:2d:2a:1d:a9:45:0a:d4:7f:ba:fb:83:df:15:04:61:2e:97:
4b:0a:56:63:4b:a7:1f:f6:e7:0a:0c:c3:d1:06:6f:c2:0a:9c:
18:28:de:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:31:58 2025 by rpki-client