Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: QHNO+cpx/qGWsEeN+fiP/bDlqAh0xPyfqETeZx0eAwI=
Subject key identifier: 5C:64:7B:77:92:AC:7D:99:D1:7C:5E:79:F4:F1:D0:59:05:DA:69:E9
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 0198D65FD06C237F93D4A96734EB89D663A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 01F7
Signing time: Sat 23 Aug 2025 10:01:00 +0000
Manifest this update: Sat 23 Aug 2025 10:01:00 +0000
Manifest next update: Sun 24 Aug 2025 10:01:00 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: uTTEV0zRpy+7HdDKwOALFttn+VYf1NOreL9OacjxdKw=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:d0:6c:23:7f:93:d4:a9:67:34:eb:89:d6:63:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Aug 23 10:01:00 2025 GMT
Not After : Aug 24 10:01:00 2025 GMT
Subject: CN=5c647b7792ac7d99d17c5e79f4f1d05905da69e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0c:f4:63:d3:52:91:55:59:fd:92:2d:ff:28:
40:6f:c2:ba:3c:a5:cf:19:dc:e1:53:9c:41:6f:42:
8e:9c:69:aa:60:7d:91:d3:ab:c6:11:90:e4:a8:41:
ca:94:db:40:49:9f:b4:db:df:b1:a4:a9:83:ae:06:
a1:3b:4d:00:47:8d:27:9f:71:c9:0f:b4:88:f3:2f:
8a:a9:3d:4b:ee:ac:90:ad:64:8c:7c:65:03:f5:dd:
67:0a:c0:eb:53:bd:bc:a7:87:5b:86:88:d3:24:c8:
87:fb:5c:5e:8d:b5:1f:f0:88:a7:22:37:8e:a0:bf:
ad:af:87:07:2c:46:e7:92:e3:3d:91:aa:0a:e0:f4:
dd:47:59:ad:6c:bd:d4:29:4c:fb:ac:c5:24:4a:1c:
60:f8:95:05:32:c6:03:d9:53:56:36:c2:c0:05:eb:
16:6b:ad:d7:04:02:6f:46:6f:b6:c5:f5:a1:73:21:
cb:a7:12:f2:ce:04:2d:8b:8c:9f:72:d8:0f:bf:a4:
39:ab:64:4a:d1:74:49:98:21:cc:56:29:ee:f0:3d:
9d:dd:5e:3f:80:69:c8:20:da:36:0b:43:54:2e:b7:
b3:0b:e8:80:54:97:20:0b:b6:2e:0c:42:5e:67:e3:
41:8d:fe:19:5f:63:3b:17:38:8b:6b:30:37:77:14:
86:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:64:7B:77:92:AC:7D:99:D1:7C:5E:79:F4:F1:D0:59:05:DA:69:E9
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:a9:10:ed:14:ac:0b:c1:5a:f5:a4:c1:cb:52:e5:6a:36:21:
87:58:20:d9:11:18:ee:71:2e:37:2e:7e:26:b1:d1:de:aa:97:
c8:9f:5f:f4:29:ed:df:f0:25:36:62:85:f7:c6:6d:04:af:95:
05:11:69:8a:33:77:db:62:24:68:ce:69:3a:ed:15:89:b2:35:
53:0f:e2:64:dc:c8:59:fa:90:a4:75:78:32:21:ea:61:bd:bb:
4b:47:6b:0a:ac:de:31:4c:13:b0:7a:9c:31:32:b0:eb:27:66:
a1:f2:b4:18:8d:e0:72:47:c8:6e:ac:c1:e9:5e:94:98:f7:61:
1e:8b:14:c9:11:ab:80:88:11:a5:98:db:e6:10:61:24:41:a7:
86:d4:de:30:13:a6:51:26:07:83:c2:76:e2:c6:3d:52:c4:05:
ce:a3:ad:e4:37:67:e7:b7:14:fc:cd:b2:ee:47:3c:da:a4:0b:
2b:fb:e4:4f:3d:d6:c3:f5:2b:8e:d3:c0:5c:01:15:c4:f0:89:
aa:6e:45:30:14:c6:bf:72:db:4d:73:f4:ba:32:34:c0:46:c1:
81:62:60:18:c5:42:b4:7b:da:fb:36:63:38:e1:69:cd:40:bb:
a6:96:cf:4a:37:ea:7b:83:19:bd:7f:0b:2c:a6:81:54:81:cf:
6c:40:1a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:19:08 2025 by rpki-client