Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
File: CVAiiQS52-tHkqaXcn42qv2E0uk.mft (raw, json)
Hash identifier: GC7c7m0ijoGiCN7pRqtKRIDcgSJSYaKjnnDhkWRfi3Y=
Subject key identifier: 76:FF:E3:2E:16:1C:5F:E4:B9:43:F2:D0:7E:88:15:96:CB:21:10:F9
Authority key identifier: 09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
Certificate issuer: /CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Certificate serial: 0198D8F2C820E2006FE60F36BE4390DF3189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
Manifest number: 0D5F
Signing time: Sat 23 Aug 2025 22:00:46 +0000
Manifest this update: Sat 23 Aug 2025 22:00:46 +0000
Manifest next update: Sun 24 Aug 2025 22:00:46 +0000
Files and hashes: 1: CVAiiQS52-tHkqaXcn42qv2E0uk.crl (hash: VKM718Gzir+ME98n7nWjA3ajYWDdp/jsXix86HD1fI4=)
2: P2VGtgj0Ve3JifdhxGXEPs8bYHw.roa (hash: krJRUyY9FgbmyjCpGEy7bhvyTA1VoPtEkFekALAvh2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:f2:c8:20:e2:00:6f:e6:0f:36:be:43:90:df:31:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Validity
Not Before: Aug 23 22:00:46 2025 GMT
Not After : Aug 24 22:00:46 2025 GMT
Subject: CN=76ffe32e161c5fe4b943f2d07e881596cb2110f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c1:46:59:cf:2e:8f:88:54:ad:a9:1f:76:34:
ea:93:26:ef:45:6e:7e:8d:49:88:c2:be:ef:31:72:
64:17:b4:85:47:04:ee:5b:a3:0c:dc:0e:8e:de:2f:
22:b6:0d:3e:84:66:4c:27:63:dd:81:34:c3:11:c0:
a9:8c:7d:a3:86:2d:1c:4b:57:bc:8e:22:a5:d7:f9:
43:27:52:65:d4:01:02:2d:a4:a0:9b:c6:3f:32:65:
80:0d:69:27:c4:0b:01:0c:5f:60:e6:f5:34:6b:a1:
05:d7:55:31:00:93:e1:db:8a:da:69:2a:7f:31:12:
73:7c:3d:63:f1:f1:1c:35:66:03:85:b6:c0:73:da:
fa:84:69:c4:03:e5:d4:25:a2:37:ee:83:ad:52:b2:
8a:62:7f:d2:22:10:6b:46:22:83:23:8d:d7:73:bf:
96:d1:21:66:db:fd:01:2c:47:ad:d4:a7:28:92:88:
68:94:74:ea:89:59:65:e8:b1:36:ff:07:92:4d:c0:
5d:20:bb:b3:97:b6:b8:36:18:c5:96:3e:3b:33:fc:
3f:0e:5c:75:82:28:93:e5:a9:46:f9:22:46:13:18:
a3:dc:ec:ee:db:f9:e3:52:26:7d:bc:35:58:61:fe:
91:57:df:a5:f0:3c:65:58:55:af:d1:b2:29:2a:0e:
b1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FF:E3:2E:16:1C:5F:E4:B9:43:F2:D0:7E:88:15:96:CB:21:10:F9
X509v3 Authority Key Identifier:
keyid:09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:98:63:6f:17:5c:5f:a6:3d:35:52:c8:7f:95:61:ed:ac:14:
c6:82:15:3f:63:c4:2b:c1:37:f8:b1:77:8d:9b:99:98:e4:92:
13:25:cb:6f:21:bb:e0:fb:d1:79:37:bc:a4:c8:b1:b5:6f:bf:
02:2e:d7:67:51:e5:65:92:ce:ef:11:89:59:ef:c7:0b:17:48:
f6:d3:d2:00:ef:34:43:66:69:af:f6:5c:a0:ff:ef:c7:15:5b:
f7:8d:a5:8b:7f:ea:79:ed:85:43:25:b8:fc:5f:0b:43:90:c1:
4a:17:44:ce:ee:0d:d7:06:c1:d8:3c:b2:3e:1f:8a:a6:8b:ea:
da:c5:f4:3e:c2:e3:59:58:f5:82:2a:b6:b8:ae:1e:7b:ee:05:
c2:50:56:bc:3a:79:6c:89:58:a9:75:32:08:cd:ad:34:1e:d6:
0a:f1:8e:2d:33:7f:64:60:3f:63:4e:f3:e7:8f:06:c0:be:a1:
7e:f7:04:83:b3:71:79:50:81:d5:28:8f:fb:e7:78:83:cf:bb:
de:e3:3a:e9:f4:7a:d3:37:19:c6:32:25:c7:4f:2f:e1:59:5f:
32:e5:03:7d:2a:c0:b7:26:f1:ff:ac:de:32:aa:e3:01:91:86:
7f:28:ed:60:f7:b1:05:9a:b1:34:3c:c9:e4:30:a8:e4:f4:86:
76:2c:69:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjY8sgg4gBv5g82vkOQ3zGJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NTAyMjg5MDRiOWRiZWI0NzkyYTY5NzcyN2UzNmFhZmQ4
NGQyZTkwHhcNMjUwODIzMjIwMDQ2WhcNMjUwODI0MjIwMDQ2WjAzMTEwLwYDVQQD
Eyg3NmZmZTMyZTE2MWM1ZmU0Yjk0M2YyZDA3ZTg4MTU5NmNiMjExMGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApMFGWc8uj4hUrakfdjTqkybvRW5+
jUmIwr7vMXJkF7SFRwTuW6MM3A6O3i8itg0+hGZMJ2PdgTTDEcCpjH2jhi0cS1e8
jiKl1/lDJ1Jl1AECLaSgm8Y/MmWADWknxAsBDF9g5vU0a6EF11UxAJPh24raaSp/
MRJzfD1j8fEcNWYDhbbAc9r6hGnEA+XUJaI37oOtUrKKYn/SIhBrRiKDI43Xc7+W
0SFm2/0BLEet1KcokoholHTqiVll6LE2/weSTcBdILuzl7a4NhjFlj47M/w/Dlx1
giiT5alG+SJGExij3Ozu2/njUiZ9vDVYYf6RV9+l8DxlWFWv0bIpKg6xJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHb/4y4WHF/kuUPy0H6IFZbLIRD5MB8GA1UdIwQY
MBaAFAlQIokEudvrR5Kml3J+Nqr9hNLpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQt
NjI4MjFjMmMyOTlmLzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQtNjI4MjFjMmMyOTlm
LzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaZhjbxdc
X6Y9NVLIf5Vh7awUxoIVP2PEK8E3+LF3jZuZmOSSEyXLbyG74PvReTe8pMixtW+/
Ai7XZ1HlZZLO7xGJWe/HCxdI9tPSAO80Q2Zpr/ZcoP/vxxVb942li3/qee2FQyW4
/F8LQ5DBShdEzu4N1wbB2DyyPh+Kpovq2sX0PsLjWVj1giq2uK4ee+4FwlBWvDp5
bIlYqXUyCM2tNB7WCvGOLTN/ZGA/Y07z548GwL6hfvcEg7NxeVCB1SiP++d4g8+7
3uM66fR60zcZxjIlx08v4VlfMuUDfSrAtybx/6zeMqrjAZGGfyjtYPexBZqxNDzJ
5DCo5PSGdixp0w==
-----END CERTIFICATE-----
Generated at Sun Aug 24 06:39:18 2025 by rpki-client