Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json)
Hash identifier: p3UtclmB6ey+ik6VtmM6cFeE+JoJlnWoY8fhinuKpM0=
Subject key identifier: 0D:27:8F:D6:AC:B1:A4:D8:06:EE:9D:52:8A:5F:71:86:39:65:C8:6F
Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Certificate serial: 0197B6A1621B2E65E822F7547323CC0D85FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
Manifest number: 0C1D
Signing time: Sat 28 Jun 2025 13:01:58 +0000
Manifest this update: Sat 28 Jun 2025 13:01:58 +0000
Manifest next update: Sun 29 Jun 2025 13:01:58 +0000
Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: JOwHzCfN9gG/GMIIULZPhrW3XOIZXLK3/BIk9ujlCeY=)
2: GWHlXKm0sM09h00CHS4OA90ZDEo.roa (hash: nINowmfDfKGL1Tvt7j8uTMeqVpzK8gUstL889w0cG50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:62:1b:2e:65:e8:22:f7:54:73:23:cc:0d:85:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79
Validity
Not Before: Jun 28 13:01:58 2025 GMT
Not After : Jun 29 13:01:58 2025 GMT
Subject: CN=0d278fd6acb1a4d806ee9d528a5f71863965c86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:41:f8:0f:94:fa:3c:87:92:a8:e0:76:49:12:
16:02:94:ea:70:7d:0b:23:4c:df:3e:f6:74:27:81:
e4:aa:6a:35:d1:22:87:64:d7:b9:eb:46:3a:a5:de:
b0:93:75:52:56:4a:2a:07:9f:8e:ca:a2:6d:dd:6a:
0b:d5:bd:37:b2:89:14:0d:06:09:bd:e4:01:e9:ce:
78:1a:8a:03:9c:c1:75:76:95:ba:cc:14:0e:01:68:
47:5c:d8:0c:27:18:d9:3c:c3:76:7e:bc:77:a1:f6:
18:d2:f2:49:4c:b7:8d:34:25:90:04:76:ac:cf:c9:
73:3d:06:fc:87:ee:0e:ce:c3:01:93:9f:ff:26:33:
08:57:03:c1:f6:85:43:09:d8:b6:3c:1d:e2:15:f2:
77:67:3c:8f:90:f3:70:bb:c2:5e:5c:1d:cb:7b:df:
9f:ca:d3:c6:bc:94:72:51:9f:2a:ef:81:04:96:ab:
e9:a6:d4:36:12:dc:bd:d3:ac:96:ca:45:ce:82:04:
7a:2c:c2:bc:34:2b:3a:c9:da:f2:8d:f3:e1:41:a8:
e9:b1:c1:34:60:9f:ed:87:84:7f:ad:44:7a:6e:2f:
ae:89:7c:47:51:7e:f4:85:ea:1f:c5:cc:1b:a1:81:
c4:16:5d:83:c4:03:46:f4:0d:c4:d0:03:3e:42:6b:
cc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:27:8F:D6:AC:B1:A4:D8:06:EE:9D:52:8A:5F:71:86:39:65:C8:6F
X509v3 Authority Key Identifier:
keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:eb:97:4f:9c:42:d9:8c:71:c7:d3:9b:06:1b:a2:5b:65:cf:
73:7b:22:45:c3:da:e2:93:cc:fa:b8:20:1e:29:a7:99:86:da:
59:bc:54:ef:a4:6d:75:90:85:c6:e0:3a:bf:2f:64:60:45:7c:
30:a4:1c:9a:c0:59:79:5c:b0:f1:84:da:fe:6d:38:9a:b4:2f:
ad:e1:ae:42:61:49:12:f6:1d:fa:c6:c3:2d:1a:30:78:f2:68:
2a:ca:34:45:69:94:b2:c7:39:60:e7:a1:5b:b1:28:b9:10:3a:
cc:cd:f6:89:7d:2c:1f:f5:6a:77:53:41:5d:05:ef:6d:62:1b:
ff:2f:02:00:20:8a:65:40:d3:95:c4:e5:17:a0:7e:0c:0c:95:
c8:4c:b4:be:67:85:17:40:68:e1:51:63:a2:cb:f0:f8:70:4d:
5f:e6:d2:00:e6:87:7f:fc:2f:5d:d8:f0:01:d6:00:1b:11:bf:
43:da:89:71:09:35:e5:db:78:f0:59:01:da:23:03:c9:21:11:
fc:39:d0:60:3d:00:f6:07:02:f9:dc:0c:6c:9b:45:fe:0c:9e:
6f:c4:69:08:7c:2c:9e:97:cb:11:3e:83:2b:94:c6:dd:7e:a2:
17:00:dc:b2:80:e1:c8:6c:2c:a6:80:09:20:15:cb:68:94:3a:
b6:47:71:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:21:53 2025 by rpki-client