Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: 0I9B3WXjF48YOPtAwuPHu8v5XYLtYtvFCBQo1uJ7WhY=
Subject key identifier: 8D:4D:34:7D:BF:7C:6D:BC:C5:91:F5:33:53:3E:96:2A:6A:83:92:25
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 0197B77C4ED8700A93F703129CE7E145AEF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 0364
Signing time: Sat 28 Jun 2025 17:01:06 +0000
Manifest this update: Sat 28 Jun 2025 17:01:06 +0000
Manifest next update: Sun 29 Jun 2025 17:01:06 +0000
Files and hashes: 1: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: BAlsAw2aCFCIuM9uQ7i7eDH8jEB+U0gid/bGl0vSABo=)
2: UmoMMcgLYQ1NME06W-RaoSwOLvs.roa (hash: DXndsPFPDd7x23rCZc6g3GNT4ZixvQ1GmrG9rBzETuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:4e:d8:70:0a:93:f7:03:12:9c:e7:e1:45:ae:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: Jun 28 17:01:06 2025 GMT
Not After : Jun 29 17:01:06 2025 GMT
Subject: CN=8d4d347dbf7c6dbcc591f533533e962a6a839225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:e3:a1:30:31:8a:b0:d6:0a:94:fa:89:c3:
f9:52:bb:1c:12:c0:55:b4:8d:ee:f7:b9:f3:8f:22:
3b:c4:76:f5:a4:98:77:87:86:68:ba:ec:08:94:c4:
25:41:55:32:97:95:21:7f:c8:02:41:2e:51:da:b6:
40:d5:ed:3e:77:99:49:ae:69:e0:74:33:a8:a2:b2:
57:65:3a:6a:c3:ae:fd:10:26:7d:59:14:50:45:1a:
84:a5:1f:84:1d:85:8c:cb:47:52:17:37:7c:0d:76:
66:32:84:09:34:94:65:1f:fb:67:79:fc:54:cd:93:
a3:a9:12:cc:66:a7:a5:3b:cf:22:05:2a:e3:6f:2b:
d8:7e:b9:2b:ea:b0:d9:1e:79:90:33:41:bc:15:62:
3b:92:f3:c0:53:78:19:26:58:4a:8f:d6:46:3f:2d:
6d:f5:f3:81:c6:ad:83:16:7f:7a:11:9f:79:87:c0:
12:37:91:9b:9e:ed:17:3d:3f:14:90:4b:a2:d7:ca:
b8:1f:7f:5f:a3:41:47:10:b6:01:81:d4:8f:e1:87:
ac:64:40:28:09:2b:18:b3:c5:f5:37:82:51:1b:3b:
a0:41:87:50:39:2e:28:42:d1:d4:48:9b:f3:77:c5:
b4:7a:e7:30:bb:fd:ca:49:a0:ae:67:de:58:08:fb:
7d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4D:34:7D:BF:7C:6D:BC:C5:91:F5:33:53:3E:96:2A:6A:83:92:25
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:ed:62:34:84:68:2e:83:b0:f7:fb:bc:da:6f:3a:8b:e0:41:
31:8f:a9:cd:bd:d2:7c:71:ca:16:99:77:f9:e4:be:f4:b4:bc:
44:9e:11:00:84:85:fe:87:fc:57:d1:ee:2b:d2:22:08:aa:88:
68:30:67:41:0b:a8:c3:26:86:92:94:12:e0:e5:bc:89:6f:64:
03:fb:7b:0d:b9:5b:ba:96:80:37:b3:df:11:c4:fe:e5:63:8e:
87:a8:aa:fd:c6:b0:4e:ed:8e:3c:9d:96:0e:1e:75:ca:8b:42:
da:73:b5:20:a6:16:9d:89:12:ee:fc:3f:3c:ce:fc:df:d6:cf:
92:1c:21:9b:05:15:4d:59:10:14:07:f1:8e:5a:3b:bf:ac:46:
13:67:85:31:cc:a6:3d:e8:42:7d:3d:19:34:4e:fd:0e:e1:07:
1d:41:8f:e6:3a:2d:12:f2:91:12:4a:da:cf:94:8b:5c:d7:3a:
ab:26:be:27:8b:49:0d:e3:c7:1c:8c:18:32:d3:80:7d:ee:df:
15:27:77:26:4b:6f:10:a9:b4:7f:76:47:e1:96:9c:93:f7:0c:
ed:da:a5:72:1d:12:3b:6c:3d:9e:7f:87:74:5a:7c:6c:44:a5:
87:8a:36:d3:83:a7:27:36:5d:b8:b3:4b:15:45:49:72:47:9d:
14:84:b2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:02 2025 by rpki-client