Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: z45uBlo9ub8U00gEj8SlO8jWRzlcIf/Vu83lolrZ2vM=
Subject key identifier: F6:CF:CC:D5:86:57:DD:0E:FC:79:90:24:E3:38:11:B2:54:52:CD:1F
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 0197B7B2E81E4E72122E4753CD61B939C861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 082F
Signing time: Sat 28 Jun 2025 18:00:44 +0000
Manifest this update: Sat 28 Jun 2025 18:00:44 +0000
Manifest next update: Sun 29 Jun 2025 18:00:44 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: ovX3rmm3O57llALjznyu26Zzb0gEuyEpE8ywhzTiC7I=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:e8:1e:4e:72:12:2e:47:53:cd:61:b9:39:c8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Jun 28 18:00:44 2025 GMT
Not After : Jun 29 18:00:44 2025 GMT
Subject: CN=f6cfccd58657dd0efc799024e33811b25452cd1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:e8:27:ab:86:e7:97:6b:42:22:57:a8:00:
b4:30:c3:ed:e9:02:bb:75:8c:c0:d8:94:0f:b4:b1:
d3:42:d1:ec:09:eb:dd:50:e3:15:e9:fe:df:3d:75:
29:0a:01:c3:73:45:b9:9f:8a:dd:8f:6d:2f:8a:20:
e0:bb:c0:68:42:79:79:d5:48:31:f6:0b:6e:66:63:
f9:1f:b9:06:f6:9f:78:26:6b:11:fa:a7:ed:dc:ea:
63:e0:7d:5b:c1:a3:04:7e:d7:4c:07:d7:51:ac:fa:
f8:38:a0:2f:d3:12:84:9d:32:51:d6:bf:66:27:8d:
38:e9:01:2a:da:f0:22:70:e3:1e:5a:b3:f1:69:30:
83:99:ef:71:95:90:27:18:0a:40:f3:eb:a2:a7:a5:
7b:40:18:48:38:11:e7:dc:30:9c:04:57:0c:7c:30:
da:f8:3f:44:4d:e7:b1:37:1d:f8:a6:11:84:a1:85:
7f:dc:5a:4c:3b:ec:41:e3:a5:f0:0e:fc:19:2b:e2:
e5:c5:7c:ca:7c:9f:ee:5a:03:76:ee:9b:02:7a:61:
30:6a:48:21:e1:67:30:6e:07:94:23:67:47:12:8f:
98:c0:5f:ae:f4:e0:db:55:4f:35:9e:df:b0:4b:83:
59:84:db:f4:5d:e0:cd:19:76:5f:8e:3e:66:33:10:
d0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CF:CC:D5:86:57:DD:0E:FC:79:90:24:E3:38:11:B2:54:52:CD:1F
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:fe:40:1f:47:23:bd:1e:2d:b2:b1:6a:e7:b5:4d:4a:e1:0c:
72:79:cf:1b:82:ab:10:fb:82:05:d3:41:38:a1:44:42:fa:0d:
2a:38:9a:1b:c5:07:4f:e7:95:c3:98:07:23:f3:34:a1:91:4c:
d1:03:a4:10:24:12:80:30:88:9a:58:bf:5b:85:eb:cc:a2:c6:
c5:f8:92:f7:44:cd:1e:8b:5b:0c:64:b9:63:f4:16:91:dd:d7:
98:00:c3:7f:68:6f:56:52:39:57:32:96:f3:e7:e2:3d:55:80:
01:d5:36:6a:76:e5:7c:a6:97:26:c8:67:ec:d5:05:fa:40:3d:
8c:6f:a2:12:e6:f9:67:66:fb:c1:39:a9:45:d1:97:8a:92:72:
b8:db:91:be:1d:7e:ad:32:5d:25:ac:e8:5f:00:98:ee:2c:4c:
27:e7:e9:d4:9a:5e:48:2e:27:94:c3:5b:7a:05:ea:cb:2c:c9:
fa:a2:56:00:8a:a1:9c:f4:94:93:4f:2e:2f:b2:d7:c9:f4:7b:
81:f4:f8:39:c5:f9:4f:ea:9a:c2:da:83:55:d0:95:42:6a:c0:
6f:05:eb:a1:f7:cf:09:58:cb:c3:61:d7:47:b8:fb:9c:fa:8b:
01:7c:f0:ad:14:6e:b6:f8:ee:5a:67:1a:61:01:b8:c1:d6:d0:
1d:57:59:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:27:03 2025 by rpki-client