Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: rAnIPavmVino6nP/ym0nrBPoc5QgrbfzwbQr3GUqrRY=
Subject key identifier: F4:E6:67:13:25:E5:C9:32:03:C1:90:08:BC:83:39:47:5F:17:46:C2
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 019922FABB107129935FE13E4BE42189F88F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 0CB1
Signing time: Sun 07 Sep 2025 07:01:21 +0000
Manifest this update: Sun 07 Sep 2025 07:01:21 +0000
Manifest next update: Mon 08 Sep 2025 07:01:21 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: NhqsTbHU3918/8nwwLqLzWBHRMqlD/QnLz/JZCQHoLw=)
2: U0OBxV0NmzWdhOROB_4XE_nOuxo.roa (hash: R0oHniHcgRLjr+xP295YEa+yjJ7+h87sW92ahFuO7CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:bb:10:71:29:93:5f:e1:3e:4b:e4:21:89:f8:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: Sep 7 07:01:21 2025 GMT
Not After : Sep 8 07:01:21 2025 GMT
Subject: CN=f4e6671325e5c93203c19008bc8339475f1746c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:af:e5:94:60:20:28:a5:38:64:ae:a1:0e:3c:
40:d8:6b:d2:ce:71:c5:83:d2:67:b2:7d:c5:39:5f:
1d:ea:5d:fb:54:81:d2:a3:b2:64:23:b7:45:c3:8b:
8a:55:38:9a:5c:68:09:85:9a:b1:3c:cf:83:7d:b6:
a0:4a:dd:e1:b3:75:05:e7:30:a9:9b:a4:ea:a2:de:
fc:68:74:35:66:d3:d0:81:ec:47:d5:48:62:72:3c:
e3:dc:f6:81:05:f9:02:77:b8:28:b0:cb:f8:db:41:
3f:e4:ba:71:0f:5a:16:69:95:6b:6f:c3:45:8a:a5:
ab:ba:45:af:0b:aa:3b:cd:31:d2:5c:eb:2f:7f:52:
cb:26:e2:12:66:45:2f:17:b6:34:b7:ec:3e:51:7a:
65:79:49:67:fd:bc:94:21:9a:01:5a:67:c0:d0:a8:
9e:d4:a9:4c:71:d5:78:24:86:19:8b:e8:99:55:8a:
7f:1c:d9:1d:b4:f3:7e:43:46:26:59:79:51:e4:f8:
cb:1d:d4:f3:68:f8:ad:4f:c4:82:ac:3b:60:f5:2d:
fd:60:8e:76:fb:06:6d:db:5a:86:75:3c:f7:97:b7:
40:93:f2:10:1b:4c:c4:47:4d:51:24:fd:5c:aa:9b:
6c:1b:ca:ff:f6:10:93:bf:1f:db:42:30:0e:58:27:
c5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E6:67:13:25:E5:C9:32:03:C1:90:08:BC:83:39:47:5F:17:46:C2
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:92:08:7c:96:5c:73:0f:01:00:0e:ad:9b:df:1c:23:2c:6a:
31:0e:d5:9d:49:f7:03:52:2c:13:32:2a:25:56:6d:6b:92:c6:
ff:91:4c:52:d8:9d:25:4e:1a:c4:f0:f0:34:6a:2a:03:ff:11:
11:2d:57:72:75:29:0e:a7:52:62:b1:f5:35:a9:12:fd:16:58:
bf:3a:a0:88:16:d0:82:5f:44:c4:fb:0a:f6:a0:9b:d0:9f:17:
7b:53:d9:cd:30:04:93:da:13:17:5e:a5:8f:25:3c:69:a9:a3:
43:2a:a7:e7:c5:d5:34:85:a3:d9:1c:4b:29:be:f8:1e:ae:0d:
63:ce:1e:42:46:26:d5:6d:2e:b7:cc:ee:a6:a7:a1:bb:8d:8c:
9b:b7:c5:41:f8:3d:24:82:e2:41:d8:64:ea:ed:b4:54:f3:9e:
df:21:16:14:64:d5:c6:54:b3:f2:8b:8d:b0:a6:e1:7b:f7:76:
03:7b:5f:a3:b8:f3:0d:6e:56:e5:a4:fd:33:69:25:1d:60:7e:
2c:2c:02:cd:8d:05:30:8e:b8:d2:d7:e5:17:4e:d2:e4:b6:6f:
a8:6d:c0:0c:9a:ef:1c:28:ab:70:cd:ae:ec:49:73:bb:2d:62:
c2:a1:0e:f4:72:3c:fc:c7:b0:7d:90:ae:5e:7a:c9:d5:fa:db:
1e:6d:5e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:17 2025 by rpki-client