Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: qLe+OqR0BZz3AfGRW7c2WsZ6iDq0mEe/XMxxsonIE/U=
Subject key identifier: 02:2B:D6:F7:FD:56:1A:DE:B6:4A:66:A4:BA:A8:0F:BA:EE:E6:58:8C
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 0197B6A1C68A39A405DD03A67DB41FCE1B8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 0525
Signing time: Sat 28 Jun 2025 13:02:24 +0000
Manifest this update: Sat 28 Jun 2025 13:02:24 +0000
Manifest next update: Sun 29 Jun 2025 13:02:24 +0000
Files and hashes: 1: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: ghyrR7oy8Gje8SHyfMYhYyp2gPT1bkIQtUHj/bXKqqk=)
2: IZ-nCDCZ_WFPQrV4b51Gvn4a1GU.roa (hash: 1zcxhGAttFQP5ld0bDKnJ/ztckFUeO0GInmPR3RRBiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c6:8a:39:a4:05:dd:03:a6:7d:b4:1f:ce:1b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: Jun 28 13:02:24 2025 GMT
Not After : Jun 29 13:02:24 2025 GMT
Subject: CN=022bd6f7fd561adeb64a66a4baa80fbaeee6588c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:bd:b2:4a:b9:b4:17:df:7e:74:da:4f:d3:
2d:ae:2b:f2:b3:43:86:99:8f:47:ea:9c:63:53:1e:
5d:2d:b8:ed:54:10:78:8c:99:fc:32:d5:d0:2b:09:
0f:c0:cb:0f:08:22:ba:ce:d1:c6:cb:e8:ff:aa:af:
99:68:e9:24:7a:97:8a:e8:fa:3a:06:fd:da:00:e3:
87:4d:e9:55:58:63:86:16:0b:d8:10:db:ed:cf:3d:
25:f7:96:e7:0b:48:ea:e1:dd:d0:37:ad:5d:66:91:
ff:ad:51:6c:96:b5:19:54:e9:c7:36:24:b2:69:67:
d3:c0:fa:ab:ac:e8:d8:be:11:3e:4b:22:83:1c:97:
f9:b5:f9:7b:de:19:de:d3:2f:2f:f8:16:61:08:35:
9e:3f:d6:4f:47:a2:a5:98:a9:8c:db:c8:2b:ae:e1:
91:b4:fb:43:0b:fd:31:dd:e8:7f:bb:24:0a:3a:39:
9a:a7:90:dc:60:35:a5:76:59:a1:f9:40:eb:04:40:
f6:3c:35:02:98:aa:f1:0a:35:a4:12:79:eb:4d:48:
fe:a3:e7:29:34:44:a8:bd:cc:4e:cb:42:38:5b:20:
c9:cb:8f:0c:a1:bc:db:ce:25:19:86:ca:9a:fe:36:
f8:2a:92:2e:3c:f0:a3:1b:ca:d5:55:64:92:6d:e7:
48:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2B:D6:F7:FD:56:1A:DE:B6:4A:66:A4:BA:A8:0F:BA:EE:E6:58:8C
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:a8:90:82:94:43:ab:56:ff:8a:50:55:93:8b:b5:77:20:de:
31:2d:71:18:ba:f6:3a:17:2a:c0:dc:95:2d:6e:f7:7c:33:71:
0c:c8:ba:e7:ee:4f:cd:2b:c8:ef:c0:a9:14:60:b4:cd:7c:ad:
db:31:97:8d:ce:7c:2d:d6:8e:16:ec:b9:88:51:1e:b6:f7:c6:
38:07:94:d2:13:b5:0c:57:68:3e:81:df:6e:d8:41:dc:d3:2c:
d1:e0:6a:03:a7:63:54:38:69:24:8f:7f:d0:b8:7f:9a:58:be:
49:67:6d:c6:f8:eb:00:68:d6:9a:d3:28:6f:39:19:5d:a0:d8:
6a:82:76:e1:23:b3:0c:8f:c0:8f:cd:15:8c:66:98:68:a4:cb:
54:82:2a:d8:e8:fc:94:ee:62:01:2b:2e:58:a8:6d:ca:ba:76:
ab:d0:be:b7:1c:b5:2f:97:b6:33:f7:50:78:ef:e1:09:d6:8f:
cb:da:ba:a4:3e:00:f5:70:d1:fc:6b:9a:8d:87:44:21:42:d4:
de:93:7c:8d:fd:e5:16:d3:c8:3a:a3:4c:2a:5f:19:df:a1:75:
8a:5f:53:7e:aa:3a:6a:5c:cb:b7:f7:5c:3b:fc:b8:d6:46:14:
56:7b:bc:82:62:9d:24:7b:fa:e7:bb:b1:07:9d:16:76:94:bb:
4b:78:36:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:12:57 2025 by rpki-client