Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: U9BTFYCWatVAZeZBMbD0oqJZlcz2T7N4X15KlJpxKgA=
Subject key identifier: 94:8A:64:A0:A9:3B:3E:54:D1:A0:89:3B:62:56:0F:9B:0F:91:41:11
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 0199FCFD676ED66C83D7FB9FA9B847C12788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 095C
Signing time: Sun 19 Oct 2025 15:01:29 +0000
Manifest this update: Sun 19 Oct 2025 15:01:29 +0000
Manifest next update: Mon 20 Oct 2025 15:01:29 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: LbxkSuTHesiLgbgbCVZxKc+rI/jPY/MTVhw5rY3UpvY=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:67:6e:d6:6c:83:d7:fb:9f:a9:b8:47:c1:27:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Oct 19 15:01:29 2025 GMT
Not After : Oct 20 15:01:29 2025 GMT
Subject: CN=948a64a0a93b3e54d1a0893b62560f9b0f914111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fa:07:fd:f3:e8:9b:37:d4:a4:8f:86:3d:7a:
ef:d8:30:da:1d:ad:df:72:1b:1b:bb:bd:3d:1c:04:
ac:1c:96:32:bd:3b:13:5a:72:ce:02:24:a7:1f:4c:
e0:67:15:dc:59:ce:7f:cb:78:0f:2a:4e:ae:8e:7a:
c9:64:78:f4:91:37:46:33:55:e4:bd:e1:b0:48:04:
56:18:01:fb:dd:e0:1a:a9:e9:1e:d7:a1:8e:44:7f:
9d:1d:49:54:ec:cd:ff:08:91:77:34:b7:b6:af:ea:
a1:dd:06:da:09:a3:c2:21:ea:a5:d2:29:1e:c5:86:
7f:83:a5:21:71:b0:10:7c:90:03:17:57:8c:41:6f:
23:4d:36:04:9a:5a:e8:ff:17:34:6d:a5:4c:c1:8c:
b8:31:86:47:f8:2a:e8:ae:f0:46:64:b0:fc:ba:19:
0e:3a:0c:1b:54:eb:b1:76:57:82:80:46:7d:71:d9:
1d:a4:0a:49:a9:05:ae:a8:33:e1:6b:fd:77:0d:51:
e3:58:60:dc:7c:ea:e5:2b:e3:29:51:77:39:31:05:
cb:d8:f9:5e:5f:fe:66:f4:7b:41:dc:52:c1:25:f0:
6b:2b:81:89:3e:a8:4e:3e:5f:76:8c:74:d8:1f:43:
e3:06:71:9c:0d:87:15:0d:4c:da:49:4e:66:0b:4c:
99:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8A:64:A0:A9:3B:3E:54:D1:A0:89:3B:62:56:0F:9B:0F:91:41:11
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:46:19:80:54:06:e2:ba:0c:3b:a0:48:51:25:93:0b:30:47:
9f:e2:22:0c:b5:10:84:dd:0a:76:ba:28:b5:14:bb:aa:a6:b8:
35:2d:44:86:19:b5:d4:a7:25:16:57:04:e5:d6:d0:d7:2c:3a:
d8:00:c2:02:5a:59:7a:a0:14:4a:b0:ef:ca:c8:0f:98:32:76:
85:37:78:0c:18:50:d8:ac:a5:c0:16:44:d2:7f:12:cf:0d:33:
e3:b6:38:42:a9:16:ab:81:85:ef:5a:c1:7e:df:c3:66:3f:d1:
4a:0d:94:bf:b1:ca:03:ca:62:73:1a:a3:49:80:64:c1:38:63:
98:28:31:b6:c3:03:20:be:8d:00:07:13:4d:c7:8e:1d:94:54:
36:97:f3:3a:b1:e7:96:e9:29:10:2f:cf:fe:a0:da:9d:ac:56:
87:4d:c0:bb:bd:9e:47:b1:b1:ec:c0:10:c0:ad:e2:5f:f1:e1:
a3:51:29:81:2b:49:3d:cc:a5:52:3f:9b:26:4a:37:57:65:84:
bd:1a:73:7a:f6:7e:d5:e0:01:d9:35:a3:d3:6f:0e:77:4f:3c:
5b:fd:20:b9:da:79:7f:a3:7a:ba:4a:e6:8c:40:ba:d2:ef:1d:
9e:31:af:f7:05:e3:85:b6:3a:0b:9b:75:4d:60:95:47:dd:dd:
77:a7:53:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:57:23 2025 by rpki-client