Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
File: CVAiiQS52-tHkqaXcn42qv2E0uk.mft (raw, json)
Hash identifier: 40HWCw7y5qWl8fm2Ga/RaHqJJqDPu8os33Aeq0z44/A=
Subject key identifier: 79:BB:A8:40:E1:38:D6:C3:A7:44:80:17:1C:3D:CB:B5:87:67:14:E4
Authority key identifier: 09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
Certificate issuer: /CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Certificate serial: 0199FC8F4A9E9D8874EAD0F6B74624437748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
Manifest number: 0DF6
Signing time: Sun 19 Oct 2025 13:01:13 +0000
Manifest this update: Sun 19 Oct 2025 13:01:13 +0000
Manifest next update: Mon 20 Oct 2025 13:01:13 +0000
Files and hashes: 1: CVAiiQS52-tHkqaXcn42qv2E0uk.crl (hash: TxJPykSBF/2Vb+f3P0XipMf1ipPj8ljVRs+8HGxnPX4=)
2: P2VGtgj0Ve3JifdhxGXEPs8bYHw.roa (hash: krJRUyY9FgbmyjCpGEy7bhvyTA1VoPtEkFekALAvh2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:4a:9e:9d:88:74:ea:d0:f6:b7:46:24:43:77:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Validity
Not Before: Oct 19 13:01:13 2025 GMT
Not After : Oct 20 13:01:13 2025 GMT
Subject: CN=79bba840e138d6c3a74480171c3dcbb5876714e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b4:a4:54:0e:44:47:e6:69:48:0b:40:ca:86:
89:78:03:6a:7a:82:47:77:69:5a:72:e3:94:ef:d9:
fc:a6:60:cf:65:57:07:fe:10:68:7f:44:5d:05:2b:
37:42:1d:1b:91:cf:4f:34:20:fd:f9:2b:91:0f:f5:
9b:60:f7:81:5c:ed:28:20:d3:6e:0f:1b:54:b5:9b:
b2:a0:a0:06:21:71:f4:15:8d:8f:b8:ea:8c:47:8a:
f4:57:2e:35:45:3d:22:77:00:6d:d5:70:f1:ce:16:
ea:ef:11:7b:83:e8:3f:29:35:cd:e0:ff:8b:a7:d6:
06:c4:5d:9f:91:14:33:29:93:b2:d8:99:ee:07:3c:
f2:1e:fc:15:aa:f5:ac:f0:c8:04:ec:7b:b9:16:0e:
1b:28:4d:a3:51:0a:ce:79:7a:96:c8:1f:e9:0c:2c:
16:a1:e0:54:0c:41:e8:e8:67:34:04:3c:34:2b:aa:
22:47:01:e1:ad:2a:fb:2c:3f:3c:7f:68:3e:fa:98:
ba:97:0a:a9:17:53:23:7a:5b:c4:37:d2:b6:f5:87:
29:35:00:99:87:4b:67:19:c3:32:c2:15:46:83:a7:
7a:96:f9:8f:62:7e:55:dc:ce:1f:9a:bd:99:14:7b:
8b:ab:f3:ad:f7:e3:84:91:d6:47:8b:d7:95:73:b3:
87:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BB:A8:40:E1:38:D6:C3:A7:44:80:17:1C:3D:CB:B5:87:67:14:E4
X509v3 Authority Key Identifier:
keyid:09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:65:3b:97:d9:c1:3b:b9:57:90:72:84:56:63:ce:b9:8c:01:
d4:6c:39:55:09:e9:6e:ee:bf:6d:3b:11:03:d9:03:95:a3:71:
50:16:73:f9:44:f6:09:ce:80:88:41:7f:3d:8f:96:1e:16:d6:
c8:73:e4:82:90:a9:96:a6:5a:2e:b4:d7:c8:24:09:9b:dc:5c:
1d:dc:da:b2:64:fa:bf:32:4b:f0:67:7f:6a:dd:7e:15:97:7f:
c0:44:7d:46:df:63:27:3b:b8:0a:78:1a:5a:0c:81:1f:db:1e:
d4:2b:4f:08:57:70:a7:39:e8:16:f4:27:05:5f:29:00:c2:bf:
31:23:2f:fb:9b:c8:e0:c3:4d:b7:9e:6e:bc:f2:95:56:d4:74:
40:00:4d:0e:38:87:27:9c:e9:db:38:85:ee:7c:e9:85:de:b4:
80:b7:71:b7:e9:73:5a:f6:ac:8f:c8:07:59:b2:54:ae:56:50:
2e:4d:04:73:1f:10:9d:93:78:3b:00:eb:ec:17:6b:1e:46:dd:
e2:04:a5:de:09:9b:1e:4a:52:36:76:99:5e:17:64:70:06:4d:
a3:27:fe:7a:31:33:c3:99:61:97:7a:ce:48:d8:60:06:1b:3f:
91:13:1f:b3:b3:de:f3:b9:83:d6:ef:6f:f8:87:18:3b:81:48:
ac:4f:b6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:08 2025 by rpki-client