Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: k7fWDT41jRlU93W9CSRobP/GHITiRk7H4w6AXQl48P8=
Subject key identifier: 4D:40:3D:90:38:09:71:46:AA:81:A4:5A:B7:8F:E5:49:AE:19:68:62
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019874F491BA0026EE6C01E3C261541510A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0891
Signing time: Mon 04 Aug 2025 12:00:41 +0000
Manifest this update: Mon 04 Aug 2025 12:00:41 +0000
Manifest next update: Tue 05 Aug 2025 12:00:41 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: xG++HhNcQxM5HZCwjtKAHk/7BSJl5hCLZBst+PoVl7U=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:91:ba:00:26:ee:6c:01:e3:c2:61:54:15:10:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Aug 4 12:00:41 2025 GMT
Not After : Aug 5 12:00:41 2025 GMT
Subject: CN=4d403d9038097146aa81a45ab78fe549ae196862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3f:42:ab:1f:6f:77:55:52:f4:2c:2d:40:ac:
ea:48:18:fd:4f:4e:1b:36:9a:f7:ae:ad:b8:a1:7c:
51:91:a0:36:bb:0b:19:be:cd:db:e0:6b:54:b6:bb:
3c:98:32:8a:0b:32:d1:90:ea:02:54:d3:35:9b:7d:
50:5d:48:2c:ea:83:6f:ea:ed:a0:80:bc:45:ae:76:
43:74:00:cc:6d:e2:d2:b4:be:14:b4:dc:d9:dd:b9:
cc:49:0d:0f:05:53:13:22:a5:85:2b:28:05:c3:33:
f3:4b:62:2d:96:02:b0:f0:ea:3d:2a:be:14:db:2f:
e6:a3:9f:b9:1d:21:dc:9c:62:b0:5b:f8:87:c2:fb:
cd:55:c8:29:b1:bc:ee:51:ed:5d:f1:90:84:8e:27:
19:04:3b:30:3e:2b:15:cc:6b:ea:df:06:f9:ab:a1:
2b:2f:f1:9e:1e:33:24:dc:df:b2:1e:0b:03:41:76:
e7:b3:74:ef:4c:9c:0f:85:30:d4:b3:d9:9b:ca:95:
d1:29:64:da:f8:fd:bd:48:15:4d:77:9a:8a:0d:0b:
dc:6c:03:bf:09:97:91:15:71:1f:71:7f:cf:a4:57:
19:66:6d:54:67:7c:88:8a:f1:f1:82:3c:6f:9b:f8:
8f:24:43:d3:93:05:1b:3f:c8:d9:60:37:18:19:36:
bd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:40:3D:90:38:09:71:46:AA:81:A4:5A:B7:8F:E5:49:AE:19:68:62
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:e7:74:d2:87:b7:36:76:79:2c:2c:2b:84:04:c5:0e:dc:67:
b3:1b:cd:d8:e6:c3:88:bf:bf:36:9b:c8:00:6f:48:8f:50:0d:
41:df:44:db:f2:91:60:e1:13:da:9c:b9:48:32:e4:bb:c1:64:
e7:2c:ca:3c:99:06:c9:18:48:d3:f0:b6:1b:e8:15:ed:26:15:
b1:6c:fd:3d:d7:ce:b6:4b:bf:bd:8d:db:6f:44:c5:fd:7c:82:
21:03:dd:bb:44:85:f6:3b:81:6f:a8:f0:06:0e:a7:d2:a4:70:
11:42:62:b0:e6:00:09:5e:c0:67:b1:00:7e:39:da:b9:e6:1a:
d2:7c:86:4e:76:44:d1:d1:5e:43:13:69:85:35:02:f4:ac:f0:
09:c2:a8:0e:bb:29:4b:0d:c6:eb:c0:c4:c2:dc:4e:5d:ce:6d:
24:fd:12:99:c6:ac:6c:95:45:eb:1f:1d:40:50:8e:62:c0:76:
a2:76:0a:c8:19:fe:1c:1e:2e:1c:74:0d:8e:3e:8d:9b:df:e7:
d1:a1:54:ff:6a:68:9e:81:2f:ba:ee:a5:35:be:82:41:49:f1:
54:3c:54:b1:aa:c3:ed:40:4d:10:70:57:7a:e2:cd:8b:2d:05:
76:5a:33:f2:13:76:11:79:7d:64:c3:0f:ac:58:66:8e:66:43:
8b:66:40:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:00:44 2025 by rpki-client