Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
File: cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json)
Hash identifier: GCeMe5eJSvFv1YsxeRiVK26Di3VR9tEZJILFEC/Ixbw=
Subject key identifier: 0C:AE:E1:03:73:72:A6:BE:5D:D2:93:CF:D0:BB:DE:14:AB:F7:B1:15
Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
Certificate issuer: /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Certificate serial: 0197C1242B8B5B69631260834694C832EECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
Manifest number: 0255
Signing time: Mon 30 Jun 2025 14:01:02 +0000
Manifest this update: Mon 30 Jun 2025 14:01:02 +0000
Manifest next update: Tue 01 Jul 2025 14:01:02 +0000
Files and hashes: 1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: KngmRb+om35rss+rV6YXOcsEUzKNFFzLcG6VQJ6I49A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:24:2b:8b:5b:69:63:12:60:83:46:94:c8:32:ee:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Validity
Not Before: Jun 30 14:01:02 2025 GMT
Not After : Jul 1 14:01:02 2025 GMT
Subject: CN=0caee1037372a6be5dd293cfd0bbde14abf7b115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:ea:18:86:35:e5:de:5f:64:7d:53:ff:3a:
6b:6a:2a:41:b6:17:8a:75:55:d8:1c:9b:33:41:de:
c7:a6:b1:ed:ad:ec:8e:5a:a3:c0:75:ab:26:e1:51:
25:4f:be:09:3e:d5:83:18:59:bd:ca:d3:0a:53:5a:
7d:4b:6d:7f:50:6f:e8:dd:aa:f1:c9:43:83:7a:ef:
69:dc:31:f3:e6:ac:df:e6:16:28:75:a1:52:49:5a:
f3:be:ca:a7:03:ea:f2:7f:2a:70:96:70:87:7e:64:
54:a2:76:c4:bd:50:15:15:b4:f4:b2:d3:99:fa:82:
00:76:5b:86:d0:73:36:4e:08:35:91:15:05:e2:58:
d8:c2:be:89:ff:e8:c2:f2:12:78:59:b3:5c:b5:b8:
b0:fe:01:4b:ee:c5:51:3d:8a:0f:ea:90:48:b0:18:
6a:ad:2e:42:e0:e5:0b:ea:d6:a9:89:f8:82:fa:28:
29:b8:5e:76:3e:9c:a5:06:0a:f5:65:d7:ff:69:64:
91:56:18:97:4c:8c:79:5e:42:6d:d9:dd:c0:0d:c7:
c0:1d:33:cb:f6:57:33:d6:77:c3:e5:eb:16:3f:3c:
84:d5:00:e6:f2:72:a7:a8:18:60:c9:92:00:05:72:
19:2c:43:19:e0:17:94:21:9b:ac:0b:55:f0:c6:45:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AE:E1:03:73:72:A6:BE:5D:D2:93:CF:D0:BB:DE:14:AB:F7:B1:15
X509v3 Authority Key Identifier:
keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e8:cd:75:ec:43:39:85:cc:6e:cd:53:fb:4f:b1:da:89:73:
21:d0:02:f5:3f:3b:eb:6a:90:b6:95:e9:c8:07:b7:fb:41:62:
0a:c2:e5:88:3c:69:3c:6d:bb:d6:0d:ec:8e:b4:17:cb:c0:18:
7c:01:32:76:69:a4:08:65:19:a0:ec:75:d3:8a:ff:ee:fa:fa:
26:61:0b:bc:3f:0b:ed:5a:79:7e:ac:d5:69:34:6a:7a:3e:1d:
27:26:96:cb:fb:e5:84:37:ba:e9:f1:be:71:bb:8e:6f:4d:fe:
3f:e4:d0:69:16:12:30:cb:85:2a:14:c6:eb:59:27:e9:6d:91:
c6:ee:8f:d7:63:a8:8a:58:0c:e3:b8:b6:b5:d2:ed:2c:44:c7:
01:64:0b:22:3f:59:2c:20:12:39:0e:bc:16:b9:4a:55:bb:b4:
ef:d0:8d:46:d6:55:50:42:c0:d6:2b:56:06:a7:c6:36:92:b8:
36:78:8b:78:43:b8:af:2b:64:e4:a4:d7:ba:19:30:60:da:3e:
e6:d9:58:14:f1:8c:c3:76:b3:91:55:7c:65:2f:98:a2:3f:2d:
47:b7:4d:19:dc:ac:48:42:d7:cd:e3:f2:98:84:3a:f8:2b:03:
a0:e4:98:6b:cc:24:ed:ec:0b:9a:96:2d:48:67:df:c0:ba:56:
27:cc:1a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 19:54:05 2025 by rpki-client