Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: LXjayQhQFNTnuX/E7VhIoXHee4hRqZPHgxI1tM04P+w=
Subject key identifier: 49:B6:03:20:05:4E:33:CF:B3:A6:50:57:EF:54:1B:A9:4F:22:57:E0
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 0198D54E3338353B3BE8236851D4803B9A07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 03F8
Signing time: Sat 23 Aug 2025 05:02:08 +0000
Manifest this update: Sat 23 Aug 2025 05:02:08 +0000
Manifest next update: Sun 24 Aug 2025 05:02:08 +0000
Files and hashes: 1: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: 3WTsp7woYIjDEQ2MVgBldTouXGtcjPR4IZKrvcB+FhQ=)
2: UmoMMcgLYQ1NME06W-RaoSwOLvs.roa (hash: DXndsPFPDd7x23rCZc6g3GNT4ZixvQ1GmrG9rBzETuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:33:38:35:3b:3b:e8:23:68:51:d4:80:3b:9a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: Aug 23 05:02:08 2025 GMT
Not After : Aug 24 05:02:08 2025 GMT
Subject: CN=49b60320054e33cfb3a65057ef541ba94f2257e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:f1:57:00:66:89:3a:a2:53:fa:ed:e5:6a:
ef:fc:52:e5:b0:83:b1:cc:91:cf:2f:7d:a0:82:9a:
10:c8:5a:c1:63:95:34:cd:6f:dd:88:0b:5d:97:28:
2a:08:56:94:a6:23:e5:a1:bd:33:dd:1a:0d:5c:48:
84:19:99:d1:da:76:ea:35:b1:1a:61:ec:a9:36:c5:
31:32:4a:8b:ea:a4:e9:19:66:17:c9:96:03:e7:ef:
69:12:f7:48:88:34:6a:24:ff:5e:d8:d1:03:0c:01:
3f:fd:8e:4a:79:2c:91:04:67:70:0d:15:2a:f3:de:
26:42:62:1d:da:23:7a:57:dd:28:07:36:2a:2d:7b:
04:ef:ea:f6:4a:ff:1f:43:84:c5:77:c0:7a:40:63:
c6:39:63:86:e5:ba:0a:b7:c3:22:1c:c2:56:dd:51:
1f:9e:e0:83:c5:1a:7f:78:1d:7d:16:4b:4a:d6:4b:
88:7a:19:e2:72:8e:da:cd:fb:6d:ee:2a:89:48:e9:
1a:99:ed:1b:0b:23:dd:08:17:73:48:0a:7b:58:89:
de:bf:79:25:99:4b:62:4a:c2:09:0f:64:8b:03:61:
98:38:59:4a:82:d3:16:ec:c5:e6:77:66:0a:5a:c2:
fa:d3:dc:d1:df:54:a2:89:53:73:e6:29:32:fc:50:
85:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B6:03:20:05:4E:33:CF:B3:A6:50:57:EF:54:1B:A9:4F:22:57:E0
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:36:16:aa:a2:27:61:30:68:4e:cb:24:2a:68:70:e5:e5:27:
bd:29:e9:40:7f:d2:4d:41:58:74:cc:07:ef:e5:b7:62:62:2d:
73:ce:79:d0:0e:55:04:70:18:89:b2:b3:d5:c5:17:d7:1b:ba:
3c:0c:20:7e:93:66:9a:14:19:13:f3:09:0a:d0:6c:bc:77:63:
3e:a0:79:c5:53:24:bd:90:92:16:0f:3f:6a:4a:36:9c:40:4c:
d0:63:21:e0:c9:6b:3b:bd:80:36:a4:a0:71:37:4e:00:f7:03:
f9:70:34:62:ce:97:0a:39:fe:e1:a1:c4:2c:4b:86:ce:a9:6e:
82:c6:66:cd:17:85:28:33:b1:30:82:e1:37:1b:84:a2:b2:4a:
f9:4e:36:1d:5a:92:5d:2d:b0:03:07:26:79:a9:cf:03:f4:43:
56:52:8c:5c:13:44:c0:0e:2c:a1:36:64:2f:94:b4:78:29:94:
22:4a:87:09:1d:1a:56:cc:19:66:db:41:af:92:6b:2f:75:e4:
5c:f8:f8:73:34:f8:02:7e:32:fb:20:84:4b:0b:e8:e8:62:cc:
0c:0d:c8:af:a3:b2:61:fc:c0:dd:ba:18:b4:7c:ca:45:21:31:
16:74:8a:7c:07:b6:0d:98:63:29:3f:4d:73:93:b4:f6:46:76:
7b:2b:ab:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:53 2025 by rpki-client