Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
File: CBG8UM_tnQLlgZaiyByYjjC6EmA.mft (raw, json)
Hash identifier: CPcqek7itt95wt0xjSU7ZQvLFzuxXLuCpTJgkwktqD8=
Subject key identifier: 4E:84:C6:08:4E:F2:50:66:56:F6:5D:62:5D:CA:94:38:3E:B1:8C:0B
Authority key identifier: 08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
Certificate issuer: /CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Certificate serial: 01978CC89B88E108DB91AA0B145F7EA16E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
Manifest number: 15A0
Signing time: Fri 20 Jun 2025 10:00:46 +0000
Manifest this update: Fri 20 Jun 2025 10:00:46 +0000
Manifest next update: Sat 21 Jun 2025 10:00:46 +0000
Files and hashes: 1: CBG8UM_tnQLlgZaiyByYjjC6EmA.crl (hash: vfpw2AC/o+lJWhINXR3yuczYLYJ3iKW/0GYR6dw9VSw=)
2: mWwPnP2S4g9JhxWYKKryZjEy1Ao.roa (hash: HyXUe+PYjqIKyOZOZZRdFXR1ckNBvzFOngXjiDgbrBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8c:c8:9b:88:e1:08:db:91:aa:0b:14:5f:7e:a1:6e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0811bc50cfed9d02e58196a2c81c988e30ba1260
Validity
Not Before: Jun 20 10:00:46 2025 GMT
Not After : Jun 21 10:00:46 2025 GMT
Subject: CN=4e84c6084ef2506656f65d625dca94383eb18c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:6e:98:6e:0a:1b:e2:65:07:4a:27:f6:fb:
23:ca:f9:15:8f:5d:5b:f2:cc:a2:40:fc:55:6d:16:
7d:a2:2c:13:3d:51:66:e6:e6:88:ff:82:8a:86:2b:
78:71:84:4c:f2:0b:5b:88:8a:f4:96:06:04:52:be:
1d:8e:a9:67:00:5f:fc:5b:ee:ba:c7:56:86:b2:98:
8c:5b:54:27:69:f1:7c:f5:a4:1e:a4:4f:61:62:bd:
a4:d4:e3:39:da:fa:4c:1e:cf:81:00:01:27:91:d8:
38:c0:cc:61:c8:94:b3:14:99:f4:40:41:66:42:f0:
23:ca:c2:36:7e:14:b3:a1:2e:2a:bb:f9:06:16:2a:
bc:c7:0b:21:06:1d:3d:42:92:d9:05:1e:78:72:84:
f7:1f:d7:54:76:8c:ae:e0:e6:3e:82:be:8a:9f:f9:
92:a3:b7:ac:7c:c5:dc:01:d0:a7:d6:07:a1:9f:bc:
9d:81:8c:9a:af:ee:ad:34:1a:35:b9:4b:07:b9:cc:
a4:5b:fc:9c:58:2e:b9:8b:4c:58:29:eb:22:c7:fd:
24:3f:e1:1b:b4:7a:f1:b3:a5:93:8b:d3:98:a6:5c:
4e:15:5f:c0:29:4f:7b:6a:d3:83:a5:4b:c0:5a:4a:
b1:39:08:51:c3:38:03:41:e1:cd:b9:8d:8b:96:6b:
26:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:84:C6:08:4E:F2:50:66:56:F6:5D:62:5D:CA:94:38:3E:B1:8C:0B
X509v3 Authority Key Identifier:
keyid:08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:2f:a0:4d:21:cf:20:d4:23:63:3a:8c:e3:64:eb:10:df:69:
7e:56:76:21:df:b9:1d:c2:0b:05:93:c6:71:f6:73:b9:61:2a:
46:8f:f1:2b:50:19:93:d3:5b:1e:4e:51:b7:d4:6f:30:16:0f:
28:e5:36:98:96:5c:5f:33:bd:32:30:c5:8c:02:9d:7a:05:bb:
bc:6b:49:fe:1b:a7:d6:83:5b:5b:dd:7e:ba:23:e5:14:c4:d3:
cf:4f:c7:89:10:9a:21:03:7b:08:e3:e8:d0:39:d6:a9:39:7f:
e9:28:e9:16:6a:2f:3f:89:12:ac:1e:90:d0:1f:94:2f:4b:f1:
5c:2a:8f:1c:4b:30:78:ca:76:01:ac:ad:84:83:b1:a5:49:1a:
4d:37:2e:09:5b:73:6f:e1:1e:a0:9b:e6:a5:3a:d0:9b:29:14:
4f:dd:d5:17:4b:7c:b7:07:e2:d1:00:33:3a:d0:a0:fa:fe:9f:
83:5f:a4:d3:41:37:4e:f9:f0:22:9f:b4:e2:4c:b5:45:1d:23:
f8:dd:e0:b2:05:4d:87:75:d6:a5:6d:93:13:7a:37:de:f6:5e:
71:63:25:19:f2:db:e9:69:21:c2:1a:34:21:e6:ed:72:60:d5:
2c:4f:4c:d7:48:17:fb:cd:cd:b7:83:89:0f:75:4e:c4:80:e0:
23:7d:b4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 20:34:33 2025 by rpki-client