Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
File: a_CO0PpuGTufOlC_cmtB0MMpspc.mft (raw, json)
Hash identifier: fQwgr0jY+K3a/8p9BKQaXPXJzCdyDIcvrmdAPru/ln0=
Subject key identifier: E5:FC:E6:E4:78:69:E0:6E:E5:E9:04:DA:10:2E:19:DB:C7:2F:CC:78
Authority key identifier: 6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
Certificate issuer: /CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Certificate serial: 019882E74F7A14DA3FC5444F598C68BC1DCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
Manifest number: 020E
Signing time: Thu 07 Aug 2025 05:00:53 +0000
Manifest this update: Thu 07 Aug 2025 05:00:53 +0000
Manifest next update: Fri 08 Aug 2025 05:00:53 +0000
Files and hashes: 1: a_CO0PpuGTufOlC_cmtB0MMpspc.crl (hash: 2kkwPJDOQnTUqAjrJ1WBrjk6na6kEyiWROEDLyak0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:4f:7a:14:da:3f:c5:44:4f:59:8c:68:bc:1d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Validity
Not Before: Aug 7 05:00:53 2025 GMT
Not After : Aug 8 05:00:53 2025 GMT
Subject: CN=e5fce6e47869e06ee5e904da102e19dbc72fcc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:d6:6c:6d:7b:28:65:4b:29:bb:3b:c3:24:
e8:82:94:a1:98:4c:c2:1b:9d:31:8b:3b:de:8f:0b:
2b:73:ff:c3:3b:b7:96:34:20:8e:16:da:87:b5:47:
92:fd:a2:fa:07:26:d0:97:be:c8:2f:6e:4c:be:ce:
54:98:f9:51:61:76:8e:9e:02:f0:dd:33:c2:e1:ef:
84:e6:0b:5f:98:fa:2c:6a:3f:f3:9b:59:64:d0:69:
7a:f8:e0:d7:1f:c2:a8:15:1e:a8:44:b3:c5:5e:1c:
4c:d4:85:1e:03:15:bb:88:42:08:62:d7:50:5c:dc:
18:34:b6:85:49:9f:be:ea:92:7f:9e:e9:5f:7f:30:
57:c6:9c:4d:c0:79:e2:8c:21:5c:7f:8d:3f:0b:5b:
f8:4b:b3:53:6b:42:58:c9:79:8c:7e:4b:42:d7:c9:
e4:48:b8:13:e7:79:d9:46:5b:db:53:40:17:a9:37:
5c:15:3a:59:20:68:a2:de:d4:38:cb:cc:c9:6e:d8:
c3:be:a2:f7:ed:57:77:5e:6b:a7:cc:0a:70:1a:12:
de:3d:5c:4b:5b:f1:6f:81:92:e7:d8:7f:ba:04:be:
6a:ed:a9:99:5b:e5:64:36:fd:ef:86:01:54:d2:6a:
a3:2e:b7:ee:81:db:de:23:79:41:0a:89:a9:0d:67:
b2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FC:E6:E4:78:69:E0:6E:E5:E9:04:DA:10:2E:19:DB:C7:2F:CC:78
X509v3 Authority Key Identifier:
keyid:6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:f8:4f:5c:91:9d:6f:95:92:d1:ee:fb:55:8b:87:96:c1:14:
fb:dc:3f:d5:99:d9:e8:1d:bc:a5:58:2a:a2:38:56:ab:49:f4:
1b:a8:1f:c8:fa:26:fb:59:b1:14:35:ac:5c:2f:31:56:1e:91:
ea:4d:5d:ab:e1:77:3c:85:e7:09:29:b4:ce:b8:18:10:fb:f8:
03:5d:2d:c3:4c:24:9c:2d:84:c0:70:f6:0d:20:d4:1a:97:46:
55:9d:25:2d:c8:ac:9d:5e:08:67:72:29:ce:cf:17:cf:c4:f6:
df:c0:a7:34:7d:fe:b9:da:ec:4c:a3:d0:33:dc:c8:79:29:e1:
3a:bf:8e:38:64:2a:5a:39:85:14:c7:2b:66:0c:3b:f7:0c:6e:
ab:0d:fa:87:25:ba:2b:53:2d:28:dd:19:57:90:11:5c:9f:c5:
78:d5:59:19:23:fc:fa:c3:11:8e:43:b9:7a:54:4b:dd:e9:05:
40:ae:a9:8c:4c:97:a0:9b:5e:52:49:97:ab:93:48:a1:8d:b3:
bf:68:f6:6d:51:4c:25:1a:58:70:84:6a:d8:60:f9:80:9d:b2:
fb:03:24:2c:af:63:ee:29:5e:7c:83:3d:08:a6:1d:ed:14:fc:
38:e3:2f:4f:90:c5:1a:49:60:d9:02:87:ba:de:2a:28:22:bf:
f7:16:04:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiC5096FNo/xURPWYxovB3KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZjA4ZWQwZmE2ZTE5M2I5ZjNhNTBiZjcyNmI0MWQwYzMy
OWIyOTcwHhcNMjUwODA3MDUwMDUzWhcNMjUwODA4MDUwMDUzWjAzMTEwLwYDVQQD
EyhlNWZjZTZlNDc4NjllMDZlZTVlOTA0ZGExMDJlMTlkYmM3MmZjYzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRfWbG17KGVLKbs7wyTogpShmEzC
G50xizvejwsrc//DO7eWNCCOFtqHtUeS/aL6BybQl77IL25Mvs5UmPlRYXaOngLw
3TPC4e+E5gtfmPosaj/zm1lk0Gl6+ODXH8KoFR6oRLPFXhxM1IUeAxW7iEIIYtdQ
XNwYNLaFSZ++6pJ/nulffzBXxpxNwHnijCFcf40/C1v4S7NTa0JYyXmMfktC18nk
SLgT53nZRlvbU0AXqTdcFTpZIGii3tQ4y8zJbtjDvqL37Vd3XmunzApwGhLePVxL
W/FvgZLn2H+6BL5q7amZW+VkNv3vhgFU0mqjLrfugdveI3lBCompDWeyzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOX85uR4aeBu5ekE2hAuGdvHL8x4MB8GA1UdIwQY
MBaAFGvwjtD6bhk7nzpQv3JrQdDDKbKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUt
M2Q0MjA1ZjVlMmQzLzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC82N2E2M2EtMWEwMy00ODIyLWFjOWUtM2Q0MjA1ZjVlMmQz
LzEvYV9DTzBQcHVHVHVmT2xDX2NtdEIwTU1wc3BjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASvhPXJGd
b5WS0e77VYuHlsEU+9w/1ZnZ6B28pVgqojhWq0n0G6gfyPom+1mxFDWsXC8xVh6R
6k1dq+F3PIXnCSm0zrgYEPv4A10tw0wknC2EwHD2DSDUGpdGVZ0lLcisnV4IZ3Ip
zs8Xz8T238CnNH3+udrsTKPQM9zIeSnhOr+OOGQqWjmFFMcrZgw79wxuqw36hyW6
K1MtKN0ZV5ARXJ/FeNVZGSP8+sMRjkO5elRL3ekFQK6pjEyXoJteUkmXq5NIoY2z
v2j2bVFMJRpYcIRq2GD5gJ2y+wMkLK9j7ilefIM9CKYd7RT8OOMvT5DFGklg2QKH
ut4qKCK/9xYEnA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:11:57 2025 by rpki-client