Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: cfV62nddt7L8Nun2zVhozQ5Zjttu9IXXqE7IV+BTjfk=
Subject key identifier: 3C:CA:0C:8F:BA:F2:2A:D8:54:C3:15:64:F3:15:6F:E2:7B:7D:72:6B
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 0197B7454FF9823932BCE797CA0F9FF93491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 0831
Signing time: Sat 28 Jun 2025 16:01:02 +0000
Manifest this update: Sat 28 Jun 2025 16:01:02 +0000
Manifest next update: Sun 29 Jun 2025 16:01:02 +0000
Files and hashes: 1: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: /oHBL6UuP1+YjEXzvDtrSvHDHyk5ssgHQ7jqHcthH74=)
2: rOIGMeXF9bxOY5fu4vCOE7NrCP0.roa (hash: 1nU5+mzZGJaibKrLnnLB5qj48GydY1KP7W2pluR6Ujw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:4f:f9:82:39:32:bc:e7:97:ca:0f:9f:f9:34:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: Jun 28 16:01:02 2025 GMT
Not After : Jun 29 16:01:02 2025 GMT
Subject: CN=3cca0c8fbaf22ad854c31564f3156fe27b7d726b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0b:a5:7d:93:0a:48:b8:00:35:e7:f0:26:ed:
45:dc:83:8d:b0:13:f0:0b:8d:49:b9:b9:54:fa:f2:
a7:55:4f:2f:a8:3b:1f:22:d8:7d:e4:37:40:1a:f1:
07:d4:ad:ca:5e:c2:2f:26:f4:b3:3e:1d:1e:19:ed:
c9:b1:47:db:b7:6b:87:8a:5c:fa:a9:a6:50:4b:be:
b0:71:d8:7e:4d:6f:ce:e3:2a:11:7d:47:a7:ed:4a:
61:45:41:fe:ed:24:b3:3e:7b:04:b2:ab:d0:02:f1:
d2:64:44:78:02:ad:2b:36:c4:3e:73:1a:35:89:6b:
ba:03:3f:30:4c:cf:20:6a:d4:51:30:86:a4:09:30:
a7:fa:ee:91:63:19:41:31:b2:dc:88:3a:eb:0b:03:
60:99:68:8b:ac:18:b0:ee:b7:22:ac:8b:8d:ae:5f:
37:88:23:1e:d0:a4:77:15:41:80:a1:5b:54:86:02:
a4:fd:2d:75:ed:c0:a8:fc:38:47:25:6c:0c:57:12:
7f:40:db:79:0d:85:b9:10:bf:5a:c4:ef:24:16:84:
d7:49:26:f9:23:cb:60:87:d3:9e:a3:db:98:d9:3d:
09:22:88:3f:cc:9c:4d:0b:33:ed:ba:9b:ee:e3:1d:
1e:5b:9b:27:fb:2b:55:70:48:84:e3:2e:ed:b9:75:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CA:0C:8F:BA:F2:2A:D8:54:C3:15:64:F3:15:6F:E2:7B:7D:72:6B
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:56:5d:c0:a4:6f:f4:34:03:bf:d5:6b:2b:96:8f:0b:2e:fb:
d7:f9:da:85:d6:9a:7e:17:7b:27:46:ef:9b:95:1d:b3:c5:11:
18:3c:09:b1:1c:c1:14:19:4e:91:cc:7a:e5:a9:d6:75:4e:99:
5d:78:c5:38:64:4a:f2:2f:f0:d5:e7:c5:51:9d:39:ef:a8:9d:
c0:de:c0:dd:a1:16:03:aa:5c:ec:82:cf:6d:b4:90:33:7c:0e:
ee:30:c9:bd:97:a9:5a:af:9e:03:8a:c4:f2:29:9f:08:51:df:
8b:d3:55:2d:7a:c4:d3:c2:c8:1d:c5:3a:f9:bb:0e:ce:0c:d3:
13:43:66:bf:f1:47:fb:35:3b:58:e1:d5:24:2e:d3:61:d6:e9:
bd:a8:8d:e7:37:16:53:27:f3:d9:45:a9:ed:67:13:d9:b9:8a:
b8:05:7c:52:aa:39:7b:cb:59:18:6c:4e:e8:42:10:24:32:c1:
9c:7a:1e:90:99:42:b2:20:ed:17:53:20:70:61:69:78:8d:e1:
5c:7d:57:9d:e5:c3:88:17:78:1c:c1:c8:d8:18:8b:9b:76:dd:
f7:60:6e:ec:8b:e8:5e:7b:73:3c:d8:c2:c3:fb:6d:04:ff:9e:
c7:da:d0:f9:d3:03:cc:54:32:f1:32:b0:42:9f:c4:6f:e2:01:
40:ce:67:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RU/5gjkyvOeXyg+f+TSRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMTkwMDdhMjhhZGUwNzgxZDMxMmQ4ZDQ5NDcyZGIzNjc2
NzA0MTYwHhcNMjUwNjI4MTYwMTAyWhcNMjUwNjI5MTYwMTAyWjAzMTEwLwYDVQQD
EygzY2NhMGM4ZmJhZjIyYWQ4NTRjMzE1NjRmMzE1NmZlMjdiN2Q3MjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQulfZMKSLgANefwJu1F3IONsBPw
C41JublU+vKnVU8vqDsfIth95DdAGvEH1K3KXsIvJvSzPh0eGe3JsUfbt2uHilz6
qaZQS76wcdh+TW/O4yoRfUen7UphRUH+7SSzPnsEsqvQAvHSZER4Aq0rNsQ+cxo1
iWu6Az8wTM8gatRRMIakCTCn+u6RYxlBMbLciDrrCwNgmWiLrBiw7rcirIuNrl83
iCMe0KR3FUGAoVtUhgKk/S117cCo/DhHJWwMVxJ/QNt5DYW5EL9axO8kFoTXSSb5
I8tgh9Oeo9uY2T0JIog/zJxNCzPtupvu4x0eW5sn+ytVcEiE4y7tuXVdgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDzKDI+68irYVMMVZPMVb+J7fXJrMB8GA1UdIwQY
MBaAFHMZAHooreB4HTEtjUlHLbNnZwQWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgt
OWY5NDk0OTY2YzU0LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9mOGM3ZTItMzI4Mi00ZWJiLTg1MDgtOWY5NDk0OTY2YzU0
LzEvY3hrQWVpaXQ0SGdkTVMyTlNVY3RzMmRuQkJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL1ZdwKRv
9DQDv9VrK5aPCy771/nahdaafhd7J0bvm5Uds8URGDwJsRzBFBlOkcx65anWdU6Z
XXjFOGRK8i/w1efFUZ0576idwN7A3aEWA6pc7ILPbbSQM3wO7jDJvZepWq+eA4rE
8imfCFHfi9NVLXrE08LIHcU6+bsOzgzTE0Nmv/FH+zU7WOHVJC7TYdbpvaiN5zcW
Uyfz2UWp7WcT2bmKuAV8Uqo5e8tZGGxO6EIQJDLBnHoekJlCsiDtF1MgcGFpeI3h
XH1XneXDiBd4HMHI2BiLm3bd92Bu7IvoXntzPNjCw/ttBP+ex9rQ+dMDzFQy8TKw
Qp/Eb+IBQM5nhQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:07:32 2025 by rpki-client