Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: hLiMqhHuMWwb0OnDBonq83F6E1GgoMgQ0hLGV67PrIo=
Subject key identifier: C3:AD:F8:88:2B:10:E8:4F:D8:FF:E6:7E:D7:AB:54:AE:69:36:54:B3
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 0199FBEBB7088A9E1B705DAE996BCF132D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0D4A
Signing time: Sun 19 Oct 2025 10:02:33 +0000
Manifest this update: Sun 19 Oct 2025 10:02:33 +0000
Manifest next update: Mon 20 Oct 2025 10:02:33 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: YFMbHQsjoXnEyL0WU3LOS3pijHiV7LA5NJcsXhU2CGw=)
2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:b7:08:8a:9e:1b:70:5d:ae:99:6b:cf:13:2d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Oct 19 10:02:33 2025 GMT
Not After : Oct 20 10:02:33 2025 GMT
Subject: CN=c3adf8882b10e84fd8ffe67ed7ab54ae693654b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:05:15:60:21:2c:f4:eb:84:24:70:6b:cf:ca:
9a:6a:dc:fe:36:3e:68:f2:c4:2b:e4:e4:61:f8:4b:
46:fe:34:bf:a2:0e:1e:dd:79:26:79:e6:20:8e:fd:
ce:1f:ca:e3:fa:46:36:1a:8b:88:cf:b0:18:90:9f:
70:77:15:29:ac:2f:93:62:78:44:c9:72:ed:1c:5f:
62:67:31:d6:41:2f:4a:7e:2b:e8:8e:66:b3:2f:08:
a2:d0:1c:4d:07:cb:88:57:2e:ce:d8:ac:e4:da:78:
e3:91:e2:6c:98:56:82:00:60:c0:81:82:39:09:1f:
a8:66:93:b8:94:2b:8b:3b:05:e8:e2:bd:f9:7f:f8:
fc:52:81:39:d8:b4:ec:dc:ee:55:88:6c:17:6b:d8:
bc:4c:29:43:6f:f9:c9:ce:c1:a2:26:ba:c0:b0:00:
c3:60:07:71:a9:38:74:a0:f9:67:cf:38:49:40:f0:
5e:19:d4:99:33:10:5a:5b:4b:45:45:38:50:bb:9c:
8d:b2:0a:64:56:5c:94:b7:92:5d:09:79:d6:ef:8e:
a2:b0:94:6f:00:30:46:3a:f4:3e:ab:41:69:94:76:
22:04:e6:9e:70:f7:d7:4c:b1:0b:e6:93:b4:ab:c4:
45:cc:3d:17:b3:65:2e:5b:3d:62:51:90:09:95:7a:
6a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AD:F8:88:2B:10:E8:4F:D8:FF:E6:7E:D7:AB:54:AE:69:36:54:B3
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:19:8f:ee:b6:4b:a1:12:4b:31:b2:05:73:c5:4f:52:a6:30:
fd:60:99:56:9c:ea:c1:48:43:8b:6b:e5:ff:ef:83:02:3b:2c:
03:da:2b:25:3a:04:d9:da:cc:8b:8f:26:1e:07:e6:82:ee:32:
07:1b:a8:ad:cf:7b:54:b1:4c:ca:d9:62:9e:97:ea:fa:af:b0:
c5:8c:33:7e:3f:83:d5:be:7a:75:94:70:38:6d:be:d7:5b:46:
42:ee:c1:8b:5b:45:a2:2c:90:c0:62:83:c2:ae:57:26:5e:d4:
cb:40:ad:b3:98:9f:2c:d5:3f:76:50:e3:e3:45:6f:f7:87:06:
41:a3:2c:9d:53:cf:f7:78:80:a8:7b:c6:dc:ba:13:5c:16:f3:
1f:3c:6b:4a:01:60:6c:ab:f1:6d:5b:c3:dd:7d:f7:6c:da:a8:
1d:7a:2f:a4:8c:26:3c:2b:79:7a:0e:81:cf:cf:0d:af:82:ce:
8c:cb:e9:d0:46:6b:81:c3:8b:fb:bb:47:73:7d:22:70:fe:93:
9a:ac:d0:9b:59:50:53:bb:7a:c3:40:84:ed:ea:c5:d8:8c:53:
55:ef:46:c6:74:4b:2b:55:0b:f0:1a:f8:a8:ff:8e:e0:29:69:
67:df:9d:46:6e:85:1b:24:d4:ca:bd:58:98:ed:12:af:31:a7:
39:f5:a5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:20:04 2025 by rpki-client