Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
File: Cga2XLuXZnq9_5uGGiL50B0dRss.mft (raw, json)
Hash identifier: eoUUnKdkoioZPAVGHx/Yk9MELQElroRJjeMSUJczAWI=
Subject key identifier: 93:F4:F5:6C:6B:66:2F:53:3E:00:28:18:8E:21:98:F8:6C:18:E3:B0
Authority key identifier: 0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
Certificate issuer: /CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Certificate serial: 0197B58E65E7117D37558FCDA3171CAE6ED5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 08:01:37 +0000
Manifest this update: Sat 28 Jun 2025 08:01:37 +0000
Manifest next update: Sun 29 Jun 2025 08:01:37 +0000
Files and hashes: 1: Cga2XLuXZnq9_5uGGiL50B0dRss.crl (hash: A7i91LnNmJWMKxBxGVTin1THC9/TkqaNjibifls8CPo=)
2: xnuUEnVXaSzz9cF5USCrsyD97so.roa (hash: j10VBwI4MUaDD8l8nXJ3vdwJpNrClSEXJCQ84BCSTro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 08:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:8e:65:e7:11:7d:37:55:8f:cd:a3:17:1c:ae:6e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb
Validity
Not Before: Jun 28 08:01:37 2025 GMT
Not After : Jun 29 08:01:37 2025 GMT
Subject: CN=93f4f56c6b662f533e0028188e2198f86c18e3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d4:da:13:20:18:3d:94:50:63:62:6f:92:de:
af:da:7c:5b:9d:0a:e4:97:0e:c8:0e:f9:78:52:61:
4b:04:cf:cb:96:51:f9:cf:e5:ea:6a:73:25:33:83:
bb:55:ae:c6:47:e8:d3:f4:7b:c1:7c:7d:9d:2f:15:
5a:af:9d:0f:db:25:7a:c9:c5:a6:9d:c8:b4:4d:b1:
69:c4:3a:e0:01:2a:fa:36:60:f8:c8:94:7c:5b:58:
b4:80:bf:11:1a:d9:82:5a:f9:57:b2:f2:1f:69:c4:
1d:de:85:25:22:63:42:2d:a7:4f:d6:9f:93:e0:15:
b6:ab:80:4b:d1:1b:62:27:e8:86:11:6b:c1:0c:c5:
96:0c:e1:68:1d:70:30:bb:34:38:3b:c0:46:83:c8:
45:af:62:db:09:fc:c6:2d:e6:f3:51:1d:cb:0f:0c:
d2:06:8c:6a:97:11:bb:51:c3:93:86:a6:b0:3d:14:
f1:c4:86:5b:67:c4:be:8f:84:72:05:89:5b:08:f5:
16:86:fe:65:7f:82:3c:58:73:51:3e:e9:3b:a5:f6:
a8:54:de:a4:fb:6b:30:c5:1b:57:e9:82:f8:e0:a5:
fc:d5:15:08:63:dd:d7:1a:de:68:6c:fd:82:0f:a2:
df:2f:27:12:aa:62:d7:b4:e0:08:02:10:21:30:6a:
25:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F4:F5:6C:6B:66:2F:53:3E:00:28:18:8E:21:98:F8:6C:18:E3:B0
X509v3 Authority Key Identifier:
keyid:0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:25:dc:8d:c8:b5:46:b5:17:56:6c:00:06:ca:2b:44:b5:b1:
0f:4e:4a:b5:6b:d1:18:f1:fc:7e:f5:e9:10:2b:f1:a7:dd:14:
28:33:4a:62:7c:15:b5:01:0f:4f:3c:ea:a7:3e:ab:1b:76:a1:
97:ec:a7:65:dc:5f:89:bc:22:a9:91:52:0f:76:d3:2c:fa:c9:
12:89:8a:65:14:5f:96:39:c1:0e:8c:79:7d:62:6b:0d:e0:a1:
65:67:60:e6:15:74:bb:8d:3a:5a:f4:1f:50:db:fa:34:98:fc:
37:59:bd:5f:e8:35:26:68:43:fc:5a:58:f9:7d:ce:9a:39:f1:
43:fb:95:94:ab:54:ce:ce:13:c3:a5:58:56:db:68:65:8a:d3:
22:60:65:12:6d:77:27:8d:68:69:68:65:28:33:88:f6:87:a4:
30:db:16:62:be:7b:55:2d:a5:78:b6:b5:e1:ca:57:45:04:2a:
ab:ce:ad:65:54:e3:7c:70:92:59:e9:64:b1:a5:83:b6:48:bb:
3d:81:f8:96:19:bc:62:1c:ed:ed:ee:9b:d9:26:29:d7:80:50:
33:30:19:24:65:f3:8d:0b:29:96:3c:41:41:5a:f8:b5:81:32:
15:5c:aa:4e:0a:10:cf:f3:42:57:89:23:08:90:e1:fb:af:d3:
0a:b9:e7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:58:32 2025 by rpki-client