Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
File: CuQnEByy4r1WUITeZHH260jST5Y.mft (raw, json)
Hash identifier: cMRRsABs7k7P5GtYTkkevRN+iTQ+R1Ha8pffXg0C0NI=
Subject key identifier: 34:C0:05:D4:4F:80:65:79:23:35:BC:07:B1:4D:29:3A:39:18:E2:90
Authority key identifier: 0A:E4:27:10:1C:B2:E2:BD:56:50:84:DE:64:71:F6:EB:48:D2:4F:96
Certificate issuer: /CN=0ae427101cb2e2bd565084de6471f6eb48d24f96
Certificate serial: 01988F90A7D9D6812A1AC839E76C0BB55797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
Manifest number: 0BC3
Signing time: Sat 09 Aug 2025 16:01:18 +0000
Manifest this update: Sat 09 Aug 2025 16:01:18 +0000
Manifest next update: Sun 10 Aug 2025 16:01:18 +0000
Files and hashes: 1: CuQnEByy4r1WUITeZHH260jST5Y.crl (hash: WKmZ3dPRFADp3Ws+muJP8u/kvipazdVx6tIPVM1Js3g=)
2: LfJ8ODju367d2avuOQm5piH-KjI.roa (hash: o3ZK8YLnbi2AKR9dzokceRf3/tnSGkPPHYTuBxrwd0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:90:a7:d9:d6:81:2a:1a:c8:39:e7:6c:0b:b5:57:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ae427101cb2e2bd565084de6471f6eb48d24f96
Validity
Not Before: Aug 9 16:01:18 2025 GMT
Not After : Aug 10 16:01:18 2025 GMT
Subject: CN=34c005d44f8065792335bc07b14d293a3918e290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:42:00:17:e7:97:91:ed:86:f3:3f:ad:26:39:
31:14:66:47:5c:a4:9e:80:2b:38:c7:58:cc:ba:6c:
a6:28:5d:b8:4f:4c:98:a6:cd:1a:d0:f1:46:ce:71:
13:ff:9e:6d:c3:09:7b:aa:53:cd:c4:aa:99:28:63:
21:54:9c:24:7d:43:79:66:e3:8a:96:dc:d9:35:96:
66:5c:5d:b3:98:58:4c:2f:b5:2f:7f:d3:f7:03:95:
e1:df:87:e0:15:d4:56:53:37:a2:a7:08:bf:c0:27:
59:09:15:d3:0f:20:7f:e4:74:e8:e0:9d:2a:1e:e1:
06:a4:f3:db:60:00:23:ab:31:bd:07:c8:3f:b0:0f:
53:cc:9a:70:ff:46:1a:8e:e8:96:9c:57:e1:f6:86:
3e:5a:53:bb:cd:0d:f5:20:de:5e:f4:9d:9f:8d:8a:
e2:ea:6b:f8:fc:97:76:e3:a5:94:94:e0:6e:23:6a:
ef:f8:13:bb:27:93:aa:89:f0:b6:9e:9e:83:d6:15:
33:92:f5:f8:c0:6a:35:e1:78:ba:6a:19:d0:c9:88:
aa:bb:ac:5f:24:85:a0:8c:d0:b9:72:8f:0f:42:af:
90:7a:fa:67:04:84:7e:71:77:21:3a:88:21:e7:33:
f3:99:93:3c:b4:51:d8:1e:e8:dc:04:00:2d:e2:ca:
1a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C0:05:D4:4F:80:65:79:23:35:BC:07:B1:4D:29:3A:39:18:E2:90
X509v3 Authority Key Identifier:
keyid:0A:E4:27:10:1C:B2:E2:BD:56:50:84:DE:64:71:F6:EB:48:D2:4F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:59:2f:59:b2:a7:37:78:73:8a:cf:04:de:fd:22:48:0e:91:
7d:46:2f:60:4c:69:e2:15:36:64:4e:2d:6b:dd:2d:e8:d3:83:
25:ac:d9:06:0b:63:81:25:6a:39:7e:9a:e8:55:d4:f6:95:7b:
6b:2c:86:76:2c:b2:4c:59:08:a2:f3:a0:40:7a:5d:be:ed:95:
a8:50:ce:9f:ac:03:22:76:f1:0c:2e:72:91:57:80:42:60:ad:
1d:49:16:57:c8:b8:77:21:fc:e5:aa:92:63:c7:35:28:bc:cc:
40:9e:98:6c:02:66:e3:95:29:7a:1a:b9:ad:cf:db:1a:e8:67:
1d:0b:3b:6b:04:6b:fc:05:29:0c:74:60:6e:d3:04:50:7c:80:
64:39:64:08:7d:a9:1b:71:6d:42:da:38:f1:a8:07:b7:7b:b1:
55:e5:35:93:0b:4e:92:ed:2d:7f:86:e1:eb:f3:2c:5b:92:fa:
57:50:e7:21:20:0a:ad:3e:40:46:c2:9e:14:a3:92:d1:b7:fd:
48:69:4c:44:81:44:64:3a:dd:54:ff:57:68:9d:2d:99:8d:ff:
29:af:96:65:c2:df:16:c2:40:7c:c2:70:67:0a:d1:ea:be:02:
c3:c4:3b:fc:c1:38:2c:7c:0d:84:e5:26:a4:97:3e:0e:d1:57:
d3:59:1c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:43:14 2025 by rpki-client