Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json)
Hash identifier: ZSjxMjBexSS0yOjAPSxOIvtRB+Bjta4DsDpRgap6QtY=
Subject key identifier: 8A:31:FE:4E:DE:CF:09:50:D3:CE:48:6C:7C:22:AC:B9:FE:0F:75:2B
Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c
Certificate serial: 01987450160DF641684BBC2938E282E78349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
Manifest number: 1461
Signing time: Mon 04 Aug 2025 09:01:02 +0000
Manifest this update: Mon 04 Aug 2025 09:01:02 +0000
Manifest next update: Tue 05 Aug 2025 09:01:02 +0000
Files and hashes: 1: LPL5COduulE_WMolEzZwrGXijT4.roa (hash: H3PvlGhuhwCJd5x48Dt0jme9fPhyxLV/+QRuAD/R+ek=)
2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: N6ung+L6jSnVrUWAqDwpgRoO1fW6/qAKJINDx+bIzbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:16:0d:f6:41:68:4b:bc:29:38:e2:82:e7:83:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c
Validity
Not Before: Aug 4 09:01:02 2025 GMT
Not After : Aug 5 09:01:02 2025 GMT
Subject: CN=8a31fe4edecf0950d3ce486c7c22acb9fe0f752b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:84:b2:d1:61:80:ee:44:3e:03:0f:58:ce:dc:
e3:1e:2d:3c:b1:d1:1f:56:ba:66:6b:f0:78:33:f5:
10:2f:14:c5:26:85:ba:66:5f:37:dc:7c:fb:f5:63:
8d:08:61:21:8f:3a:5c:2b:5e:ee:8c:42:4b:f6:cb:
86:0c:f4:c9:c0:b5:00:a2:45:bd:11:c0:35:3b:c4:
51:ce:48:c7:02:ab:20:18:cd:fe:45:30:65:16:27:
53:31:93:30:d1:82:4c:ed:73:40:c8:e2:d3:f9:36:
f2:92:13:cc:31:f8:e9:6a:9b:96:28:03:26:d9:bc:
bc:96:43:bd:74:4f:bb:fe:98:65:1e:c0:1e:83:8d:
a5:97:1f:15:09:09:01:47:6b:10:72:ba:12:2a:df:
32:c7:24:77:0b:85:2f:72:08:e1:1d:21:2e:23:36:
3a:4e:15:4a:04:04:f8:93:08:c2:d7:5f:c9:ed:f6:
54:34:5f:70:c2:89:b0:05:36:71:fe:f7:dc:77:a7:
11:a1:c3:fc:59:5a:e3:c4:7e:e2:0e:4e:95:89:c9:
09:6a:d1:1d:16:52:6a:52:8a:95:19:61:95:e3:c9:
7f:79:c1:72:3e:af:33:1f:5d:77:78:6c:a7:d8:81:
19:02:13:72:b2:d6:4e:c4:2c:9e:57:af:c1:9e:5f:
b7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:31:FE:4E:DE:CF:09:50:D3:CE:48:6C:7C:22:AC:B9:FE:0F:75:2B
X509v3 Authority Key Identifier:
keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:fb:8b:b7:10:b8:73:bc:ca:cc:c3:e0:ea:e1:71:32:6b:ac:
4a:39:66:4c:ba:7b:0a:ce:81:2e:46:8f:33:75:c0:1a:62:8d:
da:a0:47:28:26:a4:3b:cf:e3:46:33:1e:c3:b5:cd:5c:07:5e:
43:c8:c1:a5:74:17:10:3e:c5:4a:66:69:f9:c9:1e:af:ff:9f:
3a:3d:cf:bd:fb:f7:49:da:22:a6:3e:73:cd:2d:53:41:5c:88:
e7:ab:de:48:10:9c:30:67:91:3d:7a:6d:3b:68:fd:89:6c:fd:
50:d9:2d:4b:90:73:e4:a4:b5:27:da:1e:b8:ca:9f:95:12:6f:
90:e2:96:28:f5:23:1c:7d:94:c0:19:cd:02:2b:86:28:c1:eb:
74:43:4f:65:ce:c5:5a:ce:4e:db:b0:c7:88:d7:f5:ef:ad:ad:
0c:df:5a:a6:ed:e2:3e:de:6a:9e:4c:ea:ee:f0:51:55:d2:cb:
b8:80:f0:df:4c:97:bb:aa:47:c1:db:f1:85:31:df:f2:d0:c0:
f9:41:73:09:10:22:99:d6:1d:5d:1d:6c:c0:4e:d9:5f:c9:82:
b0:a3:0d:65:c5:d0:c1:eb:a4:08:8b:40:84:d1:0d:d3:ce:5f:
74:27:6c:55:3d:1c:18:d6:61:65:7e:1f:66:41:d1:b3:0f:ca:
00:f6:e6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:58:24 2025 by rpki-client