Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: rSGrt1xfBYx5GAzaKLYc/VewjBVqVTb9gOIUQF0pOLs=
Subject key identifier: 71:6A:48:B1:1E:20:7E:77:45:95:D5:70:7D:A1:97:32:2C:78:3A:22
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 01987450778C3F0DA8BF97C82DF497EB96E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 09:01:27 +0000
Manifest this update: Mon 04 Aug 2025 09:01:27 +0000
Manifest next update: Tue 05 Aug 2025 09:01:27 +0000
Files and hashes: 1: 7wYbQJjmUZJ3jrCYQep7ej1ycX8.roa (hash: gX6AQ4uDUscH9HZMwyFhtSxb+YXiJVmytGAK7BhRx4Q=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: myvjvS+fJXgHWKyXHS8FozbkXnCuWmz/MhzRWinZJeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:77:8c:3f:0d:a8:bf:97:c8:2d:f4:97:eb:96:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Aug 4 09:01:27 2025 GMT
Not After : Aug 5 09:01:27 2025 GMT
Subject: CN=716a48b11e207e774595d5707da197322c783a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:68:02:4b:d5:39:74:7a:a7:05:9d:d1:40:70:
71:0e:09:65:f8:36:c1:d6:3e:ed:e6:d0:a0:b1:a9:
a2:ea:d7:c6:6f:ed:6d:94:2b:b1:76:44:13:67:ca:
53:1d:d8:48:83:bc:20:b9:ca:ce:34:a2:cb:00:71:
92:84:e5:c4:18:89:78:d7:cb:0d:66:b0:70:fc:9d:
61:c5:49:80:aa:d7:a3:5b:68:83:3a:a7:eb:9e:ad:
52:a5:16:5e:70:14:fd:1f:f7:fd:cf:91:b4:18:7d:
ce:f2:bf:7d:85:18:c3:a0:25:31:4a:3a:b1:18:8c:
6a:8f:f7:6e:18:f4:87:a6:e9:65:1b:ac:21:09:19:
65:de:fa:2b:be:0d:fb:69:ca:55:00:47:88:a3:be:
73:00:bc:17:d7:8e:23:ac:34:1a:da:f1:7f:dd:a5:
a1:21:ab:1b:b2:7f:5d:90:00:1a:1f:f1:f9:fb:c0:
a1:b7:49:85:94:e4:5f:dd:3b:22:c8:de:d3:25:86:
d0:55:92:ff:9a:c6:95:4e:10:27:7c:fc:e0:05:9f:
1b:dd:b0:45:8e:f1:38:3d:a5:08:7c:68:06:3c:43:
b8:83:d3:1c:a9:e9:b1:33:27:a7:ef:a9:c2:86:b3:
fe:de:e3:38:b3:11:28:94:d9:77:34:0f:0e:9a:f9:
cf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6A:48:B1:1E:20:7E:77:45:95:D5:70:7D:A1:97:32:2C:78:3A:22
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:5a:89:fd:49:78:93:8b:e4:a7:b3:ba:de:e8:47:6b:91:7e:
aa:87:4e:dc:e1:47:2b:d8:cf:1c:fa:f4:68:ab:ef:9b:d4:a0:
76:4d:bf:56:f8:db:b7:55:08:46:64:29:5d:51:0f:10:94:a3:
1b:e8:3f:f9:8d:21:c1:42:9a:5d:17:3b:1f:b1:ed:3f:52:e5:
9c:c7:a1:3d:da:ff:cd:62:3f:f1:b6:ec:b9:e1:c8:6d:ff:ae:
9a:2e:f9:03:6d:a6:c7:60:47:f8:ea:31:a3:b9:81:07:72:d0:
81:b9:a7:c7:2e:d6:da:bc:22:91:35:36:b8:96:11:58:f2:bf:
99:1a:0c:70:00:a3:c6:10:f3:8b:59:2e:7c:a3:43:3c:b2:f2:
fa:12:b6:c9:96:b5:5c:f5:95:f4:2b:bd:70:21:eb:be:ba:c7:
ad:53:c0:40:83:da:ef:33:b1:b3:9d:bc:8e:a0:52:6b:0f:2f:
6b:02:d6:b3:85:40:b4:e7:fe:f7:45:2e:27:1c:1b:dc:62:3e:
86:4e:d8:a3:8d:bc:3e:ab:26:ea:d6:de:31:a5:fa:df:04:c0:
31:c0:2a:8f:53:9f:21:51:43:4e:75:32:9b:2b:c8:89:44:99:
5c:ce:66:d2:4c:55:6d:99:7c:36:bc:f2:6c:b5:b6:46:7b:fa:
fe:1c:d9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:19:03 2025 by rpki-client