Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: hQks5Tf6Bk15B3d77kUU0uzU2YOJWZVkEbP97We8McU=
Subject key identifier: 3C:B5:89:11:5C:11:AA:B6:25:76:5F:51:E1:0F:94:4A:78:89:FA:64
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 019762F0A78D933A7E62624E34F7FDA593FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 0BC9
Signing time: Thu 12 Jun 2025 07:00:27 +0000
Manifest this update: Thu 12 Jun 2025 07:00:27 +0000
Manifest next update: Fri 13 Jun 2025 07:00:27 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: oeR0vEeNu71AwmLn1pgvdFg1gSZR+5+S3fLzDaC4QM8=)
2: U0OBxV0NmzWdhOROB_4XE_nOuxo.roa (hash: R0oHniHcgRLjr+xP295YEa+yjJ7+h87sW92ahFuO7CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:f0:a7:8d:93:3a:7e:62:62:4e:34:f7:fd:a5:93:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: Jun 12 07:00:27 2025 GMT
Not After : Jun 13 07:00:27 2025 GMT
Subject: CN=3cb589115c11aab625765f51e10f944a7889fa64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:e4:fa:28:05:28:53:6c:c9:ae:9d:64:84:
e8:20:0d:9a:af:03:41:7b:c4:a9:b9:e8:29:ca:22:
22:35:c7:cd:dd:e0:91:c0:42:5e:7b:6f:3b:50:c2:
57:a9:b6:f3:67:23:8d:07:22:88:69:8e:e8:01:19:
61:76:38:87:89:dd:f8:91:8c:ed:c3:79:af:bd:41:
a5:5f:26:a0:bd:4f:20:b8:a0:ca:c5:89:68:9d:cb:
06:f1:cc:79:ab:2f:58:9f:8d:e0:77:5b:30:af:de:
ca:4a:bc:4f:3b:ed:d9:15:93:57:b3:63:ee:d7:1b:
12:b0:ca:31:77:db:bd:ea:a9:d4:14:52:be:9a:eb:
eb:b8:f3:07:1a:f8:95:b7:50:0d:8c:ed:d0:85:bc:
d5:f3:bd:d1:7d:3f:8f:40:7f:96:f0:8f:43:f3:62:
09:ce:f3:e7:9b:3f:28:1d:79:df:01:ff:f8:41:f7:
8c:a2:4b:52:f5:f0:17:f8:f7:c0:de:3d:1a:54:81:
ff:16:2d:68:c0:73:0d:fb:5a:f8:bc:d1:32:9c:9b:
c9:ff:15:15:a7:3c:fe:63:47:c6:90:c1:7e:d5:7a:
25:61:20:9f:7a:a8:67:bc:ca:54:49:b2:a8:1e:dc:
77:90:23:97:24:b2:23:09:5b:75:c9:77:61:c6:19:
c8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B5:89:11:5C:11:AA:B6:25:76:5F:51:E1:0F:94:4A:78:89:FA:64
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:b6:e4:5c:92:62:cf:db:df:60:11:39:8a:e2:44:ca:d7:aa:
60:65:40:80:cb:ed:4e:62:21:e0:0b:25:a3:34:af:d8:90:14:
0b:7f:79:59:1b:07:ac:ac:66:c7:6b:00:f5:ea:b6:b1:9a:7c:
3b:27:e8:bb:67:9c:1e:f9:10:58:9c:58:1f:39:2c:ff:a7:0d:
fa:78:93:5b:93:0d:91:51:35:26:d5:6c:43:89:47:db:fa:1f:
7e:29:7d:e3:fc:5a:56:22:2a:e7:44:09:e8:6d:74:ab:b1:23:
96:9b:dc:74:7d:bc:1e:e3:57:8c:fd:45:c8:1b:2c:70:d5:16:
81:40:33:5c:14:ac:e7:2d:2e:c3:53:76:66:b5:02:1d:82:8f:
26:38:a5:7c:03:e4:ca:b8:ba:5f:27:31:d9:d7:48:81:7a:39:
35:5e:7f:2b:9c:d8:95:10:30:b6:61:1e:f6:a5:b1:95:ea:35:
f7:a6:9a:d5:a6:bd:2e:5b:f7:3f:fe:10:f8:2b:a8:99:bf:34:
c5:95:fd:2b:3d:1d:ae:18:bf:5a:cf:1d:59:9f:ce:30:6a:1e:
33:82:09:76:7b:d2:c3:f2:85:18:a8:16:94:e0:f6:75:39:82:
53:93:e5:69:c7:2e:1b:41:d3:7d:cf:82:7d:03:a1:cd:62:0e:
e0:d3:46:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:04:58 2025 by rpki-client