Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
File: CVAiiQS52-tHkqaXcn42qv2E0uk.mft (raw, json)
Hash identifier: hr/nApUL33gEhsm1qjooJ50QVkdrWGe7TLzbALM9IRA=
Subject key identifier: C6:BA:B3:9D:B8:A5:79:CA:C9:E0:F2:AE:3A:C3:AD:C6:FA:5A:7F:3D
Authority key identifier: 09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
Certificate issuer: /CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Certificate serial: 0197B7458E3D586DA4E0AAF8F516B87D5CD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
Manifest number: 0CC9
Signing time: Sat 28 Jun 2025 16:01:18 +0000
Manifest this update: Sat 28 Jun 2025 16:01:18 +0000
Manifest next update: Sun 29 Jun 2025 16:01:18 +0000
Files and hashes: 1: CVAiiQS52-tHkqaXcn42qv2E0uk.crl (hash: NPgT9Mi4VDIB+DSqXdvO2sTjPTEVJ22XV6F2Q53GtvY=)
2: P2VGtgj0Ve3JifdhxGXEPs8bYHw.roa (hash: krJRUyY9FgbmyjCpGEy7bhvyTA1VoPtEkFekALAvh2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:8e:3d:58:6d:a4:e0:aa:f8:f5:16:b8:7d:5c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Validity
Not Before: Jun 28 16:01:18 2025 GMT
Not After : Jun 29 16:01:18 2025 GMT
Subject: CN=c6bab39db8a579cac9e0f2ae3ac3adc6fa5a7f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:11:2b:95:99:18:3c:bf:7a:86:70:fa:1d:83:
52:da:2c:3e:40:a8:4f:15:f7:89:a1:c8:67:a7:ef:
10:e5:e7:ed:a7:30:0a:df:70:49:4c:f3:97:da:fa:
aa:1d:a1:9a:00:b7:36:41:d3:06:6e:e4:05:6d:50:
7a:27:4b:11:1d:5b:a7:b3:48:82:ad:be:8a:ec:ad:
9d:4e:8a:0c:ec:11:41:7c:87:17:da:45:4e:08:be:
d5:6f:02:2f:f3:df:e5:40:39:4c:82:77:ae:79:93:
56:d4:54:08:18:fa:6f:f2:86:e9:07:d6:44:94:5f:
57:dd:7a:b8:b4:09:eb:7a:24:7d:b5:8c:98:2a:07:
8e:d9:6e:d1:88:b4:b1:6f:78:92:4c:7f:d8:3f:5f:
a8:64:3f:11:be:2d:ab:9f:81:3f:06:f2:37:65:36:
a2:ed:e3:d0:03:2a:df:6e:29:e1:53:a4:ee:a0:1c:
90:89:05:19:6b:2f:81:5d:69:31:c7:21:92:43:8f:
b4:2c:40:1d:d2:b1:e6:0e:c1:85:ad:60:df:8f:2f:
b8:cc:19:9f:1f:a0:b0:0a:14:7b:a0:c9:ae:52:8b:
30:40:84:86:ba:41:2f:a2:a5:5b:85:f3:04:13:e7:
c3:b3:19:e2:57:6d:38:ca:81:9a:12:54:2f:77:e6:
45:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BA:B3:9D:B8:A5:79:CA:C9:E0:F2:AE:3A:C3:AD:C6:FA:5A:7F:3D
X509v3 Authority Key Identifier:
keyid:09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c3:c3:d0:ae:f6:d0:eb:a7:3e:9b:05:50:24:e4:2f:99:04:
34:e6:bb:a4:f4:95:5c:ee:2c:ee:14:14:95:2e:4f:a9:a2:c5:
ea:08:20:da:ee:3f:7f:fe:26:68:e9:a9:bc:62:76:f5:cb:ed:
8d:5d:11:2b:eb:72:60:35:07:82:b8:d6:f2:b0:83:2a:42:6f:
f0:9f:48:a5:03:2c:f8:52:b3:f4:a9:c1:df:57:66:ba:91:c2:
46:b5:1f:5f:26:e3:15:ad:49:4d:36:c3:22:f7:c8:29:09:01:
34:dc:3f:89:73:cd:00:81:d6:fc:f4:0a:3b:d4:5a:c8:d1:d6:
00:56:7d:27:a1:4f:5f:2c:f1:ee:9f:43:4f:7f:d0:bd:83:01:
3a:d2:7d:10:0b:c7:8d:5e:b8:4a:22:4c:a6:a7:c4:13:6d:37:
43:be:80:a1:a5:4a:9f:e0:91:76:ba:27:a3:52:76:8d:33:d7:
86:81:76:c7:1e:5a:19:2d:ba:c7:aa:c9:7c:1b:51:55:83:af:
a4:44:2c:57:aa:b5:90:4c:9c:2b:2d:1f:97:52:84:54:fc:0e:
c5:10:10:37:44:0b:57:1a:4b:bb:ea:2d:e2:01:ad:4f:67:3b:
29:9f:1b:67:e2:a5:92:ab:88:b2:8a:8b:36:dd:ac:db:b4:dd:
91:2a:d1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:24:26 2025 by rpki-client