Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: cUEOyMpSMEASt0X14A7N+oy7m0qGS+8mCQ6FDf9EYAE=
Subject key identifier: 4A:45:E5:1B:89:31:02:4D:82:51:82:B3:3C:DE:C0:E3:13:6D:21:D5
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 0198D65F3943A2A79FF3C38AF7C788C9C62B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0CB2
Signing time: Sat 23 Aug 2025 10:00:21 +0000
Manifest this update: Sat 23 Aug 2025 10:00:21 +0000
Manifest next update: Sun 24 Aug 2025 10:00:21 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: syL0pOSQfYxO9kR7M6x7Q8BY7K+owmHGWtmyCKHLbBc=)
2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:39:43:a2:a7:9f:f3:c3:8a:f7:c7:88:c9:c6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Aug 23 10:00:21 2025 GMT
Not After : Aug 24 10:00:21 2025 GMT
Subject: CN=4a45e51b8931024d825182b33cdec0e3136d21d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:8a:ac:0b:3f:4a:c6:a5:da:04:3e:9c:d7:
17:ac:ae:73:c8:02:4f:df:af:4c:b8:36:57:76:d5:
42:c0:5f:50:8e:07:43:75:5b:ea:bc:17:38:69:68:
c9:da:4f:eb:c4:1f:a2:2e:99:53:c3:c4:74:39:7c:
84:c6:6f:f8:89:df:3c:6d:b6:6d:c7:85:fe:ca:56:
d5:74:82:1f:9e:12:20:68:a0:1c:7f:41:e7:05:ec:
dc:f3:b6:3f:56:d0:cf:c9:6a:f1:1b:f9:da:63:e7:
fb:9c:61:83:03:09:66:39:30:38:45:d2:96:0e:15:
13:ce:b9:01:86:5d:bf:93:e5:0f:0b:e2:e3:7a:06:
c5:fe:20:d5:8d:c5:1a:9e:9a:09:9e:94:60:7d:28:
5a:90:56:de:ae:60:98:31:0a:30:5d:7c:dc:5e:d5:
b5:0a:b8:4b:8a:45:fb:47:87:00:41:43:c6:0e:36:
19:c1:36:22:3e:9a:77:d5:14:34:22:55:bc:e9:3b:
c7:a6:86:3a:6b:8e:c2:ee:ae:b5:86:34:53:23:42:
da:21:af:dd:a2:11:a5:c7:4c:74:7b:6e:3d:43:75:
a5:52:72:28:7e:63:f7:25:d4:c4:cb:01:ca:7c:48:
a8:d8:38:95:7b:40:75:eb:10:7b:29:5f:42:3c:98:
9e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:45:E5:1B:89:31:02:4D:82:51:82:B3:3C:DE:C0:E3:13:6D:21:D5
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:65:85:cc:eb:71:3a:81:40:cb:77:c7:89:b6:ee:79:28:76:
ac:40:df:c9:90:5c:60:79:9b:3b:d0:00:80:15:82:03:42:be:
92:59:6b:a5:ef:df:53:bf:2b:47:d4:ee:e7:df:e2:27:78:d9:
91:51:37:a1:eb:84:b4:24:52:f5:d2:fa:11:5c:8d:1e:2b:46:
7f:0e:48:d2:ef:99:f8:f3:b9:c9:b6:6f:c2:74:db:a4:67:ec:
54:5d:17:a4:1e:b1:c6:e1:02:62:8d:e0:13:d5:3d:c1:69:b8:
3e:c3:7f:7e:59:15:08:6b:c9:2b:69:5f:71:b5:90:19:bd:bd:
ff:a0:4b:06:04:79:ec:14:2c:af:c8:21:13:8b:fe:9a:8d:90:
e5:eb:91:18:0e:db:39:c2:27:12:ba:c2:c6:53:12:ae:ae:a1:
d1:9a:0f:74:69:6f:90:d0:24:63:5d:4c:6c:34:c5:71:85:a4:
07:4b:15:84:f5:9b:de:ce:bd:c7:a0:44:9b:36:9a:1d:8d:4b:
8d:3b:82:30:3c:df:39:8d:ef:5b:ec:b9:02:07:15:94:93:17:
8a:b5:a6:e7:fb:39:3f:07:24:2e:d8:f1:bd:b1:8e:c8:21:75:
c4:de:da:4a:92:43:66:6a:18:75:0d:b2:e5:4b:7a:7b:5a:45:
9a:51:54:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXzlDoqef88OK98eIycYrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl
ODBlNzkwHhcNMjUwODIzMTAwMDIxWhcNMjUwODI0MTAwMDIxWjAzMTEwLwYDVQQD
Eyg0YTQ1ZTUxYjg5MzEwMjRkODI1MTgyYjMzY2RlYzBlMzEzNmQyMWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmGKrAs/Ssal2gQ+nNcXrK5zyAJP
369MuDZXdtVCwF9QjgdDdVvqvBc4aWjJ2k/rxB+iLplTw8R0OXyExm/4id88bbZt
x4X+ylbVdIIfnhIgaKAcf0HnBezc87Y/VtDPyWrxG/naY+f7nGGDAwlmOTA4RdKW
DhUTzrkBhl2/k+UPC+LjegbF/iDVjcUanpoJnpRgfShakFbermCYMQowXXzcXtW1
CrhLikX7R4cAQUPGDjYZwTYiPpp31RQ0IlW86TvHpoY6a47C7q61hjRTI0LaIa/d
ohGlx0x0e249Q3WlUnIofmP3JdTEywHKfEio2DiVe0B16xB7KV9CPJiejQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEpF5RuJMQJNglGCszzewOMTbSHVMB8GA1UdIwQY
MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt
ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3
LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmWFzOtx
OoFAy3fHibbueSh2rEDfyZBcYHmbO9AAgBWCA0K+kllrpe/fU78rR9Tu59/iJ3jZ
kVE3oeuEtCRS9dL6EVyNHitGfw5I0u+Z+PO5ybZvwnTbpGfsVF0XpB6xxuECYo3g
E9U9wWm4PsN/flkVCGvJK2lfcbWQGb29/6BLBgR57BQsr8ghE4v+mo2Q5euRGA7b
OcInErrCxlMSrq6h0ZoPdGlvkNAkY11MbDTFcYWkB0sVhPWb3s69x6BEmzaaHY1L
jTuCMDzfOY3vW+y5AgcVlJMXirWm5/s5PwckLtjxvbGOyCF1xN7aSpJDZmoYdQ2y
5Ut6e1pFmlFUWw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:39:29 2025 by rpki-client