Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
File: CpfAyBiGg3PEAUcVBTra9hrx2h0.mft (raw, json)
Hash identifier: DReQ8Xarc4bQAwJMKT5lSNMpLOe8L8ckD9xNXgl0UZw=
Subject key identifier: A1:B9:9C:7F:30:87:87:0F:06:B4:31:68:C2:0D:E7:0B:36:5A:F4:AC
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 0197B632CB5B6D892E51B037C52F071BBC26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 11:01:11 +0000
Manifest this update: Sat 28 Jun 2025 11:01:11 +0000
Manifest next update: Sun 29 Jun 2025 11:01:11 +0000
Files and hashes: 1: CpfAyBiGg3PEAUcVBTra9hrx2h0.crl (hash: VF/NmdMYNxIxANqVXLBgk/mmVEPr+uWNfPGXm4gfLGY=)
2: _qAUmpmDNefd9UH0oGsDdu0Dm10.roa (hash: dhnP4xuQumbVUsoW5XRDL/9RukaAPXCZivf9aCXaQyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:cb:5b:6d:89:2e:51:b0:37:c5:2f:07:1b:bc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Jun 28 11:01:11 2025 GMT
Not After : Jun 29 11:01:11 2025 GMT
Subject: CN=a1b99c7f3087870f06b43168c20de70b365af4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:98:03:19:d5:56:9b:dc:b8:4b:25:60:99:40:
bd:ef:58:8d:1b:42:86:1a:7a:7f:85:38:bb:d8:5f:
ac:fe:71:b5:b4:f2:3a:7c:80:e5:c8:3f:ec:b1:1b:
98:c5:e6:9c:e1:30:27:38:bd:5a:35:02:29:1e:39:
44:32:36:1c:78:1e:bb:07:4c:bd:77:7b:31:fc:24:
ec:d0:7e:97:12:15:b0:33:fe:31:22:fe:c0:d2:7b:
3f:8b:66:d8:0e:ef:16:ee:22:78:ae:46:a0:f8:cb:
0b:21:4c:e4:ba:8c:a7:00:fd:9d:aa:d9:c7:97:20:
6e:24:59:38:73:c3:d5:5e:a6:93:39:26:67:04:d3:
38:c2:ee:89:c3:d3:49:72:bf:80:9e:f1:ea:7e:d8:
ff:8b:5a:70:84:9f:0d:12:54:31:f7:f7:25:84:78:
ce:82:bb:24:5e:28:2f:af:e1:6c:f2:46:d7:27:c7:
6e:48:7c:77:75:fc:a1:38:1f:26:77:7e:10:99:2a:
6d:ba:72:f3:5e:da:5f:35:65:b9:1f:39:82:ea:82:
d5:89:d9:09:82:3c:dc:8d:43:34:4d:60:62:1d:f8:
5e:de:bd:ff:e3:a6:d7:5e:26:86:d9:41:f1:83:56:
55:23:b7:33:57:01:04:39:17:51:72:52:d0:51:3a:
24:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B9:9C:7F:30:87:87:0F:06:B4:31:68:C2:0D:E7:0B:36:5A:F4:AC
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c8:d3:47:57:7c:00:f9:56:c9:5b:cd:5f:00:1c:bc:7c:82:
25:80:d3:2a:dc:e9:85:2e:dd:4d:ae:73:29:0d:29:de:97:a4:
a0:8d:b5:8e:98:64:a3:cb:49:ea:cf:20:7b:c0:98:4e:35:cf:
ff:35:27:b7:2d:1f:c7:c5:63:ef:37:86:e1:c5:d7:b5:ee:b3:
0a:ae:c5:f2:7a:23:d2:b0:be:08:74:c6:15:7b:82:ee:98:6c:
54:47:17:d2:d1:71:ef:10:2e:eb:1f:6c:4f:61:ee:5c:4e:f5:
24:d7:c0:29:a0:9f:f7:6f:8c:5c:a0:f7:fc:b6:dd:a2:b4:9b:
1d:35:a5:f3:f3:8f:ab:20:c0:59:42:1c:e9:33:21:02:c4:6c:
90:91:e6:37:b1:54:bb:48:15:94:f3:dd:67:ed:05:18:78:59:
ca:2a:41:38:e4:0b:06:59:b9:a1:fe:76:ac:76:cb:14:4d:5d:
04:5e:f7:68:09:71:70:4f:ea:e7:13:d7:be:fb:b2:e2:9d:a5:
41:b6:8e:51:a7:10:10:78:2d:3d:61:c0:fd:fa:dd:dc:0d:68:
01:e3:de:78:df:56:b4:91:a6:ba:4c:eb:bc:0b:a3:f4:1f:97:
6f:d8:a3:29:d6:2c:c2:dc:13:69:95:55:e4:9c:9b:49:19:1c:
1e:8a:f3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:03:09 2025 by rpki-client