Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: +H6j5UOZiQfXLxEevGTxkN0cTQA75IvGcYnJxkWF3Sk=
Subject key identifier: D9:D7:87:2F:F2:5F:ED:B1:77:80:98:84:68:DB:E5:A6:C5:4B:03:66
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 0197B88FBD62D9E878843D157976697F778F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0163
Signing time: Sat 28 Jun 2025 22:01:57 +0000
Manifest this update: Sat 28 Jun 2025 22:01:57 +0000
Manifest next update: Sun 29 Jun 2025 22:01:57 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: 1+wg1t6lobNrV7pzJ8cl96n/qLTc1rS/J9lzZjhxeU8=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:bd:62:d9:e8:78:84:3d:15:79:76:69:7f:77:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Jun 28 22:01:57 2025 GMT
Not After : Jun 29 22:01:57 2025 GMT
Subject: CN=d9d7872ff25fedb17780988468dbe5a6c54b0366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:71:df:aa:c7:24:58:41:85:13:41:4f:77:
e4:81:ce:43:15:33:a7:01:73:3e:61:3a:ca:70:2a:
c9:61:29:e1:16:2c:1d:4a:7a:39:6f:65:26:0c:47:
2c:fb:eb:75:4d:5d:33:cd:2f:13:27:90:90:0f:9a:
a0:17:83:11:ae:5c:1f:f6:85:b8:4f:cf:ba:06:9c:
71:9d:7d:78:52:35:7f:d8:3e:e4:ba:92:b3:fa:1f:
84:b2:9e:f2:c7:7c:f0:7e:b6:5d:69:23:cc:18:92:
98:85:57:bd:e3:10:46:94:03:6b:33:9a:c4:5e:56:
37:66:cc:82:18:f4:70:d7:43:c1:69:63:0a:ff:ea:
ab:f8:09:32:b3:fd:f5:d1:be:92:ea:46:d7:0c:33:
0b:05:2b:c9:9a:60:a8:3a:1b:67:b7:a5:7c:90:eb:
ed:f8:04:55:e5:42:c0:4a:4f:27:74:4b:d7:b1:a6:
98:2b:5b:65:5d:ec:6f:53:25:5f:5b:1f:42:df:25:
ff:e8:7f:5b:eb:c9:8d:dd:00:2f:2b:92:00:37:fd:
b2:1f:f0:dc:5e:30:4c:27:fa:a2:57:70:48:26:d2:
7d:2e:66:af:5f:c7:91:e3:6e:4c:64:64:70:42:a0:
52:6e:91:11:7c:df:69:c3:a4:00:43:53:7c:34:96:
7d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D7:87:2F:F2:5F:ED:B1:77:80:98:84:68:DB:E5:A6:C5:4B:03:66
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:d9:10:56:31:92:e2:bf:95:22:20:ce:31:61:b5:ed:af:e2:
ee:1a:ff:2d:b2:07:0e:32:28:35:9d:48:e8:3c:64:4f:ea:60:
50:a5:dc:d7:79:89:b1:5a:33:36:b8:ae:86:bc:87:63:80:7a:
f2:95:2b:9b:b7:c8:a3:6f:7d:94:fd:59:43:3b:57:ac:7f:a4:
48:3f:15:ea:55:38:66:21:83:c1:4b:e2:3b:c8:7c:43:c2:49:
f2:33:19:6b:12:37:c0:f0:4d:22:db:b3:f7:cf:93:51:02:a7:
a3:af:25:06:26:0b:f1:b5:7b:60:ca:c7:c4:48:fa:ce:dc:8c:
2b:bd:19:fc:13:06:1f:36:2f:a1:5d:e8:e1:34:7b:19:d3:54:
78:3c:0b:17:45:f2:49:2b:29:73:bc:29:16:48:c4:9a:ac:f6:
b7:f8:35:d6:82:73:8d:f3:fc:05:e6:d5:94:75:3c:c1:47:10:
f0:ab:04:a9:a4:1a:95:19:19:b4:f1:93:31:19:cf:89:58:4b:
a3:1b:83:7b:24:3f:71:e3:fe:ab:95:84:76:6d:e7:a7:b2:0e:
fb:73:d5:fc:ac:38:67:12:a4:07:33:b7:33:f2:df:c0:ca:70:
cf:3f:43:8e:2e:6a:e1:78:43:fb:59:90:03:f6:7e:ab:9c:0e:
e6:74:9f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:53:59 2025 by rpki-client