Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
File: CWbgXRUnUN-q3l-veRutOR3G0tQ.mft (raw, json)
Hash identifier: MyNbkHWd4kYTKOOyS1HESqVFQm+Saw8fI7H3L6N+CZY=
Subject key identifier: 63:72:81:BF:96:3A:71:94:73:97:35:DA:ED:54:85:FA:3B:53:9F:91
Authority key identifier: 09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
Certificate issuer: /CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Certificate serial: 019872CF27B6FF74CCA4D46A19ABBAFD8E0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
Manifest number: 0E58
Signing time: Mon 04 Aug 2025 02:00:35 +0000
Manifest this update: Mon 04 Aug 2025 02:00:35 +0000
Manifest next update: Tue 05 Aug 2025 02:00:35 +0000
Files and hashes: 1: 5bzk29WC2HSF9C0WZb2ngqPQ56o.roa (hash: fHgyyYyWXqEUztNgt56ZVo1FPxKD7CyfYBjgqkUt9TI=)
2: CWbgXRUnUN-q3l-veRutOR3G0tQ.crl (hash: uneY3e9/KG4KP36vudY6QFrJq00yjaypHK2QYZ8kAxw=)
3: VYOb-2PB3WKsCUYPT2j-nf80wMs.roa (hash: YpnMPKkA2P+LHKT+FLRfK5zKYPPPwWgoJKnxE9kTcx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:27:b6:ff:74:cc:a4:d4:6a:19:ab:ba:fd:8e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Validity
Not Before: Aug 4 02:00:35 2025 GMT
Not After : Aug 5 02:00:35 2025 GMT
Subject: CN=637281bf963a7194739735daed5485fa3b539f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:77:b9:78:39:a8:88:e0:44:61:3b:15:65:b4:
58:50:a6:c9:7b:f5:03:6b:c2:f4:fc:1d:3d:37:f0:
7e:50:e8:93:8d:96:e8:4c:f5:18:db:35:1f:9a:53:
e5:80:11:63:1a:29:d7:b9:a8:2e:3d:8b:29:92:19:
df:ab:40:d9:8b:85:bc:2a:27:fd:6e:01:6c:9e:2b:
6f:b5:bd:1b:28:f5:39:52:dc:65:8b:d9:6a:1a:4d:
b3:f9:24:62:21:7c:f2:3d:61:4a:0a:20:06:57:13:
2a:3a:91:35:b0:8f:c4:0e:9a:f4:11:6e:85:21:39:
e4:68:f8:c2:c7:cc:00:c9:ba:14:59:06:a5:30:de:
aa:4c:5f:a2:0b:5f:0e:43:79:74:f6:e4:27:b3:43:
0a:1f:ef:d0:41:c7:56:23:c4:95:a2:8b:16:5b:58:
08:95:b4:31:34:ee:f0:82:f4:fc:2a:7a:00:4b:7c:
89:45:80:6e:1e:91:b2:81:ad:89:e8:19:07:3b:0d:
02:02:28:d3:3c:f6:22:9f:19:76:af:6e:0c:05:ff:
91:f8:d7:51:1f:3b:c5:a7:20:1c:4b:ef:6b:0e:7a:
da:d7:b0:70:a2:9e:f0:a5:5f:fc:8b:7a:46:1e:07:
4f:50:96:77:5f:94:c2:5d:a5:ec:88:50:1d:c7:b7:
61:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:72:81:BF:96:3A:71:94:73:97:35:DA:ED:54:85:FA:3B:53:9F:91
X509v3 Authority Key Identifier:
keyid:09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:79:14:c9:24:86:1a:6a:61:54:f8:28:70:2d:f1:64:99:4f:
6f:bb:45:ea:f0:3c:f2:01:59:e2:e8:44:78:a2:59:2f:70:05:
a4:6a:d7:6f:17:d9:60:b1:75:a4:32:9b:8c:3d:36:e0:2e:17:
8f:bb:a1:15:71:24:af:39:ac:66:2c:83:17:e8:64:d5:fe:d1:
33:2f:fc:e8:d8:54:47:cc:74:f9:99:b9:2c:3e:08:02:d3:a1:
d5:7f:8d:c6:f8:e0:25:79:29:70:8a:9d:7f:17:0b:e9:ba:0a:
ad:ee:f2:e8:5e:c5:48:c3:f0:be:07:d7:cf:20:93:0b:e3:a8:
47:93:a6:19:cc:11:3d:b0:27:98:93:b9:51:ff:a5:76:e4:e2:
62:07:66:29:9b:65:4f:65:81:17:95:d9:74:f4:64:24:b2:84:
cd:9f:55:69:7e:03:06:1f:c5:86:5e:ff:19:67:13:27:d6:4e:
b2:a3:fd:d4:39:10:54:4b:9c:4c:0f:31:35:97:54:4e:c3:47:
4c:57:c8:de:43:71:54:2c:97:17:cf:da:76:a5:c1:89:3e:89:
76:d4:ad:aa:cb:aa:00:0f:c9:4d:d4:fe:02:5a:9d:c6:29:4b:
97:8e:ee:a0:d2:a0:a4:93:2b:a4:b1:fc:ae:df:06:24:55:f4:
05:bd:d2:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhyzye2/3TMpNRqGau6/Y4OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjZlMDVkMTUyNzUwZGZhYWRlNWZhZjc5MWJhZDM5MWRj
NmQyZDQwHhcNMjUwODA0MDIwMDM1WhcNMjUwODA1MDIwMDM1WjAzMTEwLwYDVQQD
Eyg2MzcyODFiZjk2M2E3MTk0NzM5NzM1ZGFlZDU0ODVmYTNiNTM5ZjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXe5eDmoiOBEYTsVZbRYUKbJe/UD
a8L0/B09N/B+UOiTjZboTPUY2zUfmlPlgBFjGinXuaguPYspkhnfq0DZi4W8Kif9
bgFsnitvtb0bKPU5Utxli9lqGk2z+SRiIXzyPWFKCiAGVxMqOpE1sI/EDpr0EW6F
ITnkaPjCx8wAyboUWQalMN6qTF+iC18OQ3l09uQns0MKH+/QQcdWI8SVoosWW1gI
lbQxNO7wgvT8KnoAS3yJRYBuHpGyga2J6BkHOw0CAijTPPYinxl2r24MBf+R+NdR
HzvFpyAcS+9rDnra17Bwop7wpV/8i3pGHgdPUJZ3X5TCXaXsiFAdx7dhawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNygb+WOnGUc5c12u1Uhfo7U5+RMB8GA1UdIwQY
MBaAFAlm4F0VJ1Dfqt5fr3kbrTkdxtLUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80ZTFiYzgtZjgxMC00MTgyLWE2ZTMt
NzIxYmI0ZmM4YzE2LzEvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80ZTFiYzgtZjgxMC00MTgyLWE2ZTMtNzIxYmI0ZmM4YzE2
LzEvQ1diZ1hSVW5VTi1xM2wtdmVSdXRPUjNHMHRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC3kUySSG
GmphVPgocC3xZJlPb7tF6vA88gFZ4uhEeKJZL3AFpGrXbxfZYLF1pDKbjD024C4X
j7uhFXEkrzmsZiyDF+hk1f7RMy/86NhUR8x0+Zm5LD4IAtOh1X+NxvjgJXkpcIqd
fxcL6boKre7y6F7FSMPwvgfXzyCTC+OoR5OmGcwRPbAnmJO5Uf+lduTiYgdmKZtl
T2WBF5XZdPRkJLKEzZ9VaX4DBh/Fhl7/GWcTJ9ZOsqP91DkQVEucTA8xNZdUTsNH
TFfI3kNxVCyXF8/adqXBiT6JdtStqsuqAA/JTdT+AlqdxilLl47uoNKgpJMrpLH8
rt8GJFX0Bb3S3Q==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:36 2025 by rpki-client