Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: WgiN5Mi/IXswzZsVnBW0/XTe+1PhRbeu1gbYAXePIqU=
Subject key identifier: FB:0D:C8:47:CF:AC:49:D3:C5:1E:1D:DF:67:C5:79:7C:22:8A:9D:E6
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 01976BBD93406996C3C5FD6FF984FFE5EC50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 13D8
Signing time: Sat 14 Jun 2025 00:01:15 +0000
Manifest this update: Sat 14 Jun 2025 00:01:15 +0000
Manifest next update: Sun 15 Jun 2025 00:01:15 +0000
Files and hashes: 1: LPL5COduulE_WMolEzZwrGXijT4.roa (hash: H3PvlGhuhwCJd5x48Dt0jme9fPhyxLV/+QRuAD/R+ek=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: hfO98D0/cSvgVQfJ3TbAafoPUv9nMj6zHJRjalosLWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:93:40:69:96:c3:c5:fd:6f:f9:84:ff:e5:ec:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Jun 14 00:01:15 2025 GMT
Not After : Jun 15 00:01:15 2025 GMT
Subject: CN=fb0dc847cfac49d3c51e1ddf67c5797c228a9de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4c:a2:7d:9f:ac:e1:4b:76:5e:6b:98:0b:c7:
89:3e:99:72:d5:1b:74:bb:45:9d:0c:03:e0:93:12:
84:f0:8a:cf:b8:db:e6:a5:45:5a:e9:9c:f5:fc:2e:
32:2c:26:ec:03:74:42:36:8c:e5:2f:7b:c2:07:29:
e5:a5:aa:78:ec:fe:35:ef:d7:c0:90:a9:0c:3d:bf:
23:d3:df:19:19:ec:53:3d:d7:85:20:15:2b:2a:cc:
e3:cd:09:55:9e:a7:69:c4:50:6c:85:a9:13:7c:02:
4d:97:dd:91:92:6f:50:2c:81:21:16:be:f5:89:2d:
1d:75:50:83:80:1e:95:d4:56:11:0c:0a:d2:9f:a5:
74:1a:31:0e:cd:59:34:96:b4:03:41:da:c0:e4:98:
90:32:81:64:b5:7f:12:bb:5d:46:e3:64:f9:9d:35:
9e:17:c5:49:8f:5b:7f:fd:46:8d:42:71:53:35:5b:
98:6f:99:77:a6:b0:c5:1f:d2:cc:82:63:9e:0b:38:
31:a5:f4:05:71:cd:6a:69:72:88:8f:fa:b1:6c:b0:
67:79:4b:24:cd:51:d9:7b:45:cb:0e:74:72:88:d5:
ed:dd:c3:a7:0c:e9:21:6b:80:e2:b2:67:4d:2a:59:
57:7a:b0:64:8e:c4:04:42:ff:79:8e:8c:56:78:f9:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0D:C8:47:CF:AC:49:D3:C5:1E:1D:DF:67:C5:79:7C:22:8A:9D:E6
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:b1:e2:ef:18:94:36:6c:9f:30:cf:89:55:4c:0a:59:ae:9a:
d3:98:df:8f:6d:82:ac:73:e1:c6:09:cd:f5:70:a1:79:46:f4:
c6:d2:93:e8:ba:43:ae:d6:7e:e9:34:d4:c4:58:6d:a6:08:4c:
58:2c:5f:7f:b0:a6:6a:30:ae:30:62:d2:43:51:ab:ea:e2:7e:
ca:0a:89:37:86:7b:6e:b7:a0:39:b8:d7:18:57:15:9e:2c:69:
f8:47:b0:15:6b:f7:ee:99:53:78:bb:38:40:93:8b:13:b5:fd:
53:69:a5:e8:8d:7a:c3:4e:93:46:16:06:14:f5:21:60:83:3d:
63:d8:ad:39:ce:df:3c:37:7f:07:97:a9:64:ba:0f:76:0b:0a:
7c:25:32:c5:98:ab:d9:79:92:35:80:10:9e:2c:98:3d:67:a1:
4c:e2:a1:1c:dc:2a:f7:22:f4:65:2e:d4:17:53:f3:86:d5:e1:
a4:7c:0d:c7:fe:e2:4d:29:5b:c6:a2:17:34:60:9c:79:2c:5f:
61:12:52:18:c8:8a:39:5f:57:8f:d7:8b:5c:6f:99:3f:ce:08:
2d:58:3a:12:7d:45:57:99:bc:c7:6b:2d:28:4e:23:92:44:34:
95:93:3b:a0:8f:d0:80:b5:0b:24:e2:99:e5:3f:21:03:95:cf:
8c:98:f3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:07:44 2025 by rpki-client