Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: 3IK0NSgZ3J7KMbeLtR4Fs1rE+LYGvE+cs0DVFR0vEmM=
Subject key identifier: 8B:3C:45:31:A9:BE:4A:28:D1:DD:CF:B8:94:4A:76:9E:04:8C:CE:8E
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 0198D9603CE3CB8328E33B1B1A004B6A783A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 08C5
Signing time: Sun 24 Aug 2025 00:00:19 +0000
Manifest this update: Sun 24 Aug 2025 00:00:19 +0000
Manifest next update: Mon 25 Aug 2025 00:00:19 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: n0hLdKt2u4KepY4UA8n/1o7+Td6znJR8uchKUB/NiLQ=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:60:3c:e3:cb:83:28:e3:3b:1b:1a:00:4b:6a:78:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Aug 24 00:00:19 2025 GMT
Not After : Aug 25 00:00:19 2025 GMT
Subject: CN=8b3c4531a9be4a28d1ddcfb8944a769e048cce8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:57:34:83:b7:db:b6:22:87:50:4b:b7:b8:a8:
4a:43:e2:bd:6b:de:7b:da:97:ab:56:f3:1b:92:aa:
44:12:2a:95:bd:cd:0a:32:6c:99:e6:e7:27:7c:e3:
d1:b6:bb:4e:c5:1c:0c:6f:e6:b1:9c:21:fa:ad:83:
60:3e:60:76:64:c7:fa:4d:4b:82:45:70:42:33:0b:
f0:ec:75:4f:1e:e8:4b:f1:89:51:89:b1:85:69:0f:
f7:4e:3a:a1:84:0b:49:0f:f5:c9:ac:8b:0e:12:cc:
8f:e5:c4:b9:8a:3d:7a:05:70:4d:a7:6f:3e:25:59:
e5:da:29:ab:73:6c:21:62:dd:62:7a:e8:8e:4a:7c:
f2:a6:37:72:a7:8b:5e:6e:73:7e:2c:a2:6d:8c:44:
57:88:e5:0d:74:f9:9f:f4:ef:3a:d1:15:50:8a:5c:
10:99:c4:f1:b1:13:34:31:51:fa:30:c1:89:9a:6e:
e5:25:bc:f9:76:38:6c:94:4d:b5:a6:91:69:b3:93:
68:da:a5:47:80:c9:dc:b8:ce:0f:a1:ac:a5:7f:8c:
02:58:b9:5d:5d:53:4a:c5:6b:7b:e8:51:ef:36:9c:
e2:88:d8:19:60:3a:b5:15:ec:93:b6:1f:2c:ed:e1:
bc:5f:dc:e5:1f:6e:b8:62:5f:51:7a:97:ab:9e:3e:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3C:45:31:A9:BE:4A:28:D1:DD:CF:B8:94:4A:76:9E:04:8C:CE:8E
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:34:a1:8b:21:4e:b8:03:9e:76:45:0a:3a:bb:b6:5c:0c:fb:
7a:d5:aa:b8:b3:b1:ff:a5:0d:45:09:bf:25:88:17:88:b9:00:
fa:27:a3:2e:21:32:20:bf:e9:db:af:e1:05:19:de:e0:6a:2a:
d0:d3:d7:f3:94:0b:b8:a3:b3:d1:af:8b:ea:2e:a0:de:e7:a7:
49:02:76:8c:21:b5:b0:4b:0a:02:1a:15:79:d5:fa:40:53:08:
96:ea:cb:95:1c:27:f3:f8:f6:0b:11:23:2c:7c:97:53:3d:ed:
b0:84:60:a2:30:d9:40:5f:ee:83:21:29:1b:d3:f9:e6:24:27:
5a:44:a0:d6:90:eb:d5:96:ac:52:1b:3d:65:0c:ae:2f:71:df:
3d:7f:b6:2b:0d:fd:d1:20:db:a4:ea:a6:78:f2:5e:67:7f:e5:
8f:c4:12:a5:a6:1c:ed:ce:1f:64:a7:bc:f5:93:73:ea:40:1c:
e2:f6:a5:4a:c7:b3:f9:5a:61:13:72:7a:bc:81:9b:d4:0f:96:
8d:29:24:69:9c:d9:88:94:72:52:82:ba:dc:4a:90:4a:a1:21:
b0:38:aa:f0:26:3a:65:ad:af:f1:69:e6:51:8a:a8:31:3d:ca:
b1:17:60:46:a9:b5:06:fc:04:39:ef:74:05:85:dd:87:3f:e2:
20:24:ef:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:49:27 2025 by rpki-client