Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
File: CWbgXRUnUN-q3l-veRutOR3G0tQ.mft (raw, json)
Hash identifier: EwMnVTtUQjag75+6LBxulsLAkvMszB4MfAW0nLCZZGo=
Subject key identifier: D7:CA:E6:C5:C5:81:22:F1:8E:40:AC:B5:8B:E8:FB:B7:93:45:8D:A3
Authority key identifier: 09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
Certificate issuer: /CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Certificate serial: 0197684DE3EBBAEAAC53C73BF6A8F149EB61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
Manifest number: 0DCE
Signing time: Fri 13 Jun 2025 08:00:24 +0000
Manifest this update: Fri 13 Jun 2025 08:00:24 +0000
Manifest next update: Sat 14 Jun 2025 08:00:24 +0000
Files and hashes: 1: 5bzk29WC2HSF9C0WZb2ngqPQ56o.roa (hash: fHgyyYyWXqEUztNgt56ZVo1FPxKD7CyfYBjgqkUt9TI=)
2: CWbgXRUnUN-q3l-veRutOR3G0tQ.crl (hash: C7kBEr5jFUuZVJ5TQYs3KFS0iiX/39glbHNkoUqCIbw=)
3: VYOb-2PB3WKsCUYPT2j-nf80wMs.roa (hash: YpnMPKkA2P+LHKT+FLRfK5zKYPPPwWgoJKnxE9kTcx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4d:e3:eb:ba:ea:ac:53:c7:3b:f6:a8:f1:49:eb:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Validity
Not Before: Jun 13 08:00:24 2025 GMT
Not After : Jun 14 08:00:24 2025 GMT
Subject: CN=d7cae6c5c58122f18e40acb58be8fbb793458da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f7:40:b0:3f:81:6c:b8:88:3b:bd:75:67:0a:
95:0e:b7:c9:38:2a:d4:05:15:ae:ee:3c:81:1a:03:
7e:da:f9:27:0b:d7:d0:0d:61:cb:cf:1f:bc:f3:99:
16:07:a2:0e:8c:7d:ea:63:f9:64:d2:0c:ad:23:e9:
ca:4d:c2:69:3c:1e:65:d5:16:c6:5f:78:94:26:f4:
89:9f:e6:d7:a9:03:9a:47:0e:0b:ce:06:f1:11:d5:
c4:39:18:a9:82:7d:13:0c:4d:9c:5c:a7:96:56:ae:
81:7b:59:d5:b0:9a:8c:14:55:04:e5:f5:b8:30:e5:
ae:35:42:77:5b:f8:cc:2d:c5:a4:bb:2a:17:36:63:
e5:04:98:51:65:67:e6:93:54:93:db:1d:19:69:ff:
3b:ad:aa:47:f9:d4:7b:d6:f6:96:7c:86:88:fa:77:
c0:a2:64:43:ff:00:66:b7:23:91:6e:08:f8:76:6a:
87:cd:fd:a9:17:fd:1e:69:5c:09:61:0d:c5:62:b9:
6f:2e:35:9c:b4:0c:45:b2:75:1e:e5:37:03:b5:5d:
70:36:dd:a5:9e:7b:8c:ec:fb:d6:03:d8:15:97:4c:
65:f3:8e:ff:8c:9d:ca:e5:e0:e0:92:18:98:c3:cf:
3d:31:28:08:d3:9a:d9:8e:bc:ab:96:e7:ed:c2:36:
31:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CA:E6:C5:C5:81:22:F1:8E:40:AC:B5:8B:E8:FB:B7:93:45:8D:A3
X509v3 Authority Key Identifier:
keyid:09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e7:d3:c9:5f:26:d2:04:9e:62:ff:3e:37:d6:4d:b1:8f:d0:
14:67:56:a1:06:a7:d2:72:bb:47:e2:2c:ba:85:fa:e4:ba:3d:
22:41:37:9d:33:7c:9a:d1:65:99:33:8f:ae:68:4a:67:78:71:
46:a7:21:f8:e3:d1:40:1e:e3:e0:04:0a:2e:c2:2c:89:1a:69:
0d:24:cf:01:3c:d3:1e:3f:b9:6a:35:dd:06:68:fe:97:ae:81:
fd:da:fd:ac:55:8b:8a:39:12:aa:d2:b5:7b:12:4b:15:52:64:
6f:24:ad:4f:cd:6d:2b:99:32:04:38:b9:dd:23:9e:56:8b:91:
da:99:fb:2c:2c:8a:e3:79:42:c0:46:4e:1a:58:c6:56:6a:0f:
d3:bf:2b:c2:a3:a0:f9:08:79:24:c2:de:f3:63:d9:fb:12:c6:
66:ea:fc:05:d6:93:97:9c:75:97:75:24:1f:2c:b4:8a:f9:72:
4e:98:40:db:22:3e:06:50:37:0b:45:85:37:f9:03:36:a5:3b:
5f:6e:3f:50:b2:e3:c7:c2:04:9c:e2:a0:76:cf:8e:69:08:fe:
f3:bb:70:48:fe:52:8b:07:3e:79:35:96:9b:af:c5:04:7d:7a:
25:18:8c:9f:5a:2c:86:82:8f:e3:3e:4c:f9:fb:cb:13:00:9d:
d4:83:c2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:10:51 2025 by rpki-client