Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: A9BSd+N2+TFKWD//kldYM1IGJBfZM+S6uaiAHz5teRg=
Subject key identifier: 3E:BA:AB:C5:40:01:5A:48:79:61:F7:78:FE:4A:B3:54:A5:5A:A5:5B
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 019955D62FBE5DFB830C2B8305614296BADC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 0702
Signing time: Wed 17 Sep 2025 04:02:04 +0000
Manifest this update: Wed 17 Sep 2025 04:02:04 +0000
Manifest next update: Thu 18 Sep 2025 04:02:04 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: iU2kit7FQVeDRqVaMkFIOzXM0bFWndrQALGo7dAcTMU=)
2: PveX9WXxCJj9e18L9V5LXcSlf4I.roa (hash: Gc7ehRUF/Atprjxx4oQFsUeoQdkyLlSY7XL+/gL4J0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:55:d6:2f:be:5d:fb:83:0c:2b:83:05:61:42:96:ba:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Sep 17 04:02:04 2025 GMT
Not After : Sep 18 04:02:04 2025 GMT
Subject: CN=3ebaabc540015a487961f778fe4ab354a55aa55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f9:37:78:d9:75:f1:80:63:cf:97:38:a7:8a:
50:6c:5c:8e:5b:7a:2a:6b:75:96:67:2b:99:a5:3e:
c8:1b:92:a9:43:e4:1b:0f:fc:2d:8f:2a:fc:51:81:
28:56:11:1c:88:28:be:c2:a8:36:6c:e9:fe:06:4e:
25:2b:1c:46:c8:1a:d1:a3:2c:ce:b1:d1:c2:43:7e:
d6:b4:51:e8:31:f1:d0:1b:2e:a2:26:f1:a9:ab:ce:
68:e5:5e:1b:95:f7:c1:1e:bd:a7:cb:e6:c5:77:88:
a8:8d:f1:b7:f6:f9:6d:1a:18:3e:98:43:fb:2c:a9:
29:5a:45:cb:d4:b7:27:c3:cd:d1:62:96:0f:cf:ef:
b4:27:de:a6:d4:1d:1e:bd:21:48:bb:02:a7:b5:4a:
e7:30:50:9d:45:29:e7:cc:c7:71:6d:0b:36:82:b5:
bd:32:06:04:db:0e:b9:e6:b0:ad:72:5d:4d:ab:05:
c6:c6:90:a6:18:3f:80:9a:68:26:49:73:fa:af:8d:
99:47:c7:5e:9d:c2:60:e4:18:07:a2:6e:b1:11:5f:
e0:f6:11:60:4d:f8:0b:1c:51:cc:3f:a0:a0:66:4f:
52:ac:d3:50:bc:51:52:ac:e9:e5:2e:f8:c8:15:85:
36:62:5b:07:01:0e:7b:6a:79:a4:b1:a7:07:91:b1:
81:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BA:AB:C5:40:01:5A:48:79:61:F7:78:FE:4A:B3:54:A5:5A:A5:5B
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:8b:f3:0f:d0:82:9a:ad:70:8c:3c:16:30:7f:d5:d0:55:ff:
c8:12:ef:cc:75:ce:64:cb:e7:df:03:2f:82:07:b9:65:9d:40:
2f:79:05:1d:e7:88:e5:dd:7c:12:82:e4:b5:3f:a4:c2:04:43:
78:d3:b1:3b:5a:13:86:b8:bf:37:6e:1f:ff:73:d7:b6:75:8a:
25:29:5c:5b:97:6a:90:7e:f6:2f:59:a6:51:e0:6b:3b:da:b7:
4f:e6:72:19:f8:dd:a2:98:69:f3:69:78:65:f3:04:dd:27:62:
2b:16:8a:27:ea:d5:08:0c:87:65:95:6d:f6:cd:3f:67:c8:6b:
7b:2e:2b:d9:1b:dd:be:ad:36:03:4b:11:ac:e8:5e:62:cb:9e:
b1:97:bb:09:1b:81:eb:df:54:68:ef:8b:a2:a0:e3:e0:92:c9:
a8:f7:de:b8:bb:9a:22:ef:92:22:f1:d7:80:a9:e3:bb:66:67:
e5:ea:d8:4b:17:d6:ee:c7:47:7a:7f:11:61:76:89:9f:19:2e:
42:db:aa:94:5c:80:28:10:4a:91:c4:8c:6f:04:aa:ea:5f:5f:
05:7a:70:b8:98:43:c6:b7:59:f1:0d:6b:af:2b:cc:8d:5d:d4:
a4:0f:90:46:bf:fc:3f:8a:c8:af:aa:28:27:8b:20:d1:b1:df:
e5:cc:88:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 06:19:24 2025 by rpki-client