Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: humz1fwWdpapmPiNHmHxPbm1udn6cYQlWUQMCUQYgOY=
Subject key identifier: CA:4E:D4:68:45:5A:69:69:86:B2:E3:29:62:69:D5:B3:73:F6:1B:39
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 0197B6A054AD4021E6389BC3905329675125
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:00:49 +0000
Manifest this update: Sat 28 Jun 2025 13:00:49 +0000
Manifest next update: Sun 29 Jun 2025 13:00:49 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: hbJNT0EFlQRtam1hzfVxVvk1bHoPTGr2M/rLWab+1Bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:54:ad:40:21:e6:38:9b:c3:90:53:29:67:51:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Jun 28 13:00:49 2025 GMT
Not After : Jun 29 13:00:49 2025 GMT
Subject: CN=ca4ed468455a696986b2e3296269d5b373f61b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:25:14:90:4d:4c:8a:40:6a:cd:10:cc:1c:ea:
4c:57:26:bf:02:79:2b:4d:ce:e1:5f:ac:83:a6:3c:
6b:f6:ff:62:3e:bd:aa:d3:c8:4b:3d:02:d4:d6:c5:
00:a6:66:40:dd:c1:e1:45:41:48:da:9b:4d:fa:fc:
81:7a:6c:00:5c:43:52:ac:e3:cd:91:02:b4:22:22:
c7:43:08:0b:06:14:70:c5:27:4b:af:4b:ef:79:7e:
64:1b:3d:05:99:11:7a:94:bb:75:fc:49:7c:b3:9c:
c9:a9:77:61:8f:69:a4:d5:dd:bb:e3:b2:a4:f9:1f:
e0:ca:46:52:57:f0:62:83:f6:19:ab:19:1f:3e:22:
2f:90:f9:68:a4:92:80:7f:d6:78:e3:c4:12:86:68:
04:59:a1:3c:9c:9c:af:aa:56:85:34:75:1e:87:6e:
b1:32:6e:8d:59:5a:e9:e9:9b:f1:63:65:b6:87:92:
0f:79:f9:bc:07:9e:ca:e8:5c:ed:bf:cf:04:f6:c1:
a4:89:ad:1a:ad:72:a9:d2:8a:36:97:9d:cf:86:4a:
d8:4d:88:89:6c:de:09:46:6b:e3:48:5f:37:3c:f4:
98:7e:cc:b7:38:d4:d2:98:db:a4:42:c3:de:cd:5a:
b6:0b:fe:8d:26:7c:51:83:1e:6a:d2:dd:6d:8b:c7:
1c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4E:D4:68:45:5A:69:69:86:B2:E3:29:62:69:D5:B3:73:F6:1B:39
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:30:41:3e:55:45:a4:46:fc:f7:05:e0:29:31:e3:e3:db:f4:
83:22:6e:56:84:81:41:b3:7b:48:6f:0a:f6:27:bd:e1:5e:16:
17:7d:f1:7e:66:99:a2:18:e1:76:49:53:0c:fb:d8:3b:6b:cc:
52:eb:e8:c4:c0:2e:ec:d2:04:db:96:62:a7:76:9f:97:cd:06:
2b:89:07:87:bb:fb:d5:0e:6b:78:40:34:5e:c9:4e:f3:b7:81:
ff:6b:57:af:11:7a:9c:25:a6:a9:ac:19:71:49:66:34:d5:ac:
55:65:82:4d:7c:2e:a6:7f:a3:94:1f:45:7a:24:49:1f:c8:be:
1b:d0:47:a2:c2:38:10:49:c1:ee:09:2c:93:21:c0:06:46:48:
29:9b:27:01:4a:1b:ff:42:c1:35:cc:4a:71:f7:91:8b:39:7b:
b4:30:b3:3e:b8:76:74:03:80:32:78:31:71:64:c3:8c:3f:d4:
c1:3a:65:c7:86:ab:ed:c3:5f:56:2c:6b:4e:79:76:33:d8:ff:
17:fa:8a:d3:02:9f:1f:72:c2:6f:63:74:d9:e6:a4:6e:99:fa:
e3:cd:d3:6d:10:27:14:26:22:0b:cd:16:82:ea:11:81:7f:ad:
01:cf:4f:44:68:aa:a4:59:74:0c:02:60:cc:97:83:ba:1b:e7:
76:14:c3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:27:32 2025 by rpki-client