Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
File: CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft (raw, json)
Hash identifier: NJf3fUmWd9rNxmtl1byeEAnkVzvX8Xg1DFhwP+pw/Qs=
Subject key identifier: 1F:47:AA:AA:EC:F2:F8:8A:95:4E:3E:BA:DE:E2:2A:70:B4:F1:8B:80
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 019769CEE712D758ED74666942228DC06843
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
Manifest number: 08EC
Signing time: Fri 13 Jun 2025 15:00:56 +0000
Manifest this update: Fri 13 Jun 2025 15:00:56 +0000
Manifest next update: Sat 14 Jun 2025 15:00:56 +0000
Files and hashes: 1: 4bMtkdss6ipZLuaULzydMUpyiaQ.roa (hash: ftsUwXeTU/zCajSXbJ3x6QJLG4thVRnSbA76L16HZhs=)
2: CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl (hash: nJwEUTZMAUgS3zbyxBkQaBCGpJeuaE5khVWVUk4XVfc=)
3: k6IT53wky2OyxFkQBPrbNFj6TNQ.roa (hash: brdxpAD59FYZoJp1BAGf2U6f2BoN13pBWQRPGF1mMCg=)
4: wTQDqjXgoUhzhSugRLMIDWXZVNA.roa (hash: sP07Xq5SBcl1K6LagQUnTqXSUPfJF0A6TBK/LGuxJ5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:e7:12:d7:58:ed:74:66:69:42:22:8d:c0:68:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Jun 13 15:00:56 2025 GMT
Not After : Jun 14 15:00:56 2025 GMT
Subject: CN=1f47aaaaecf2f88a954e3ebadee22a70b4f18b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:3c:cf:fb:1d:11:b4:ab:4e:75:94:b4:78:4b:
19:c6:04:52:0e:b4:8b:90:db:d1:0c:eb:b2:d2:28:
a9:f9:02:80:33:79:e2:52:95:c4:3b:03:1e:0c:1e:
9e:e2:ba:1f:13:fa:e4:b1:86:21:a6:22:75:73:a9:
18:3e:3a:4f:56:c3:81:17:df:91:2b:19:40:61:7b:
6f:0b:b0:41:8b:d6:2d:ac:8e:ae:da:a0:10:49:85:
d2:49:f6:8f:44:ea:cb:44:76:58:65:b0:f7:f4:89:
d0:e1:aa:da:68:4d:db:65:9c:61:d9:3a:be:8e:ba:
78:96:20:50:f2:60:d1:da:4f:9b:8f:87:f9:2a:92:
67:3b:5e:9a:0e:62:18:d2:cf:bf:f9:77:d2:a5:2b:
23:b9:b6:b2:d1:d0:fa:d3:e3:f4:9e:0e:a1:6a:2f:
db:50:b2:81:22:ed:ae:8a:18:d0:ce:6b:bf:03:f1:
75:77:61:70:9c:33:09:cf:f3:17:7b:fb:3d:8e:27:
89:17:6b:3a:eb:05:b3:c6:e1:1d:25:61:d8:d5:2e:
e1:99:f6:d0:24:fa:d1:23:d7:6c:16:ef:bb:d1:b8:
a0:bb:c2:90:85:c5:57:48:a7:79:2a:5f:21:2e:67:
4a:29:ab:4e:7c:2b:96:7d:de:fe:c6:65:ca:e1:b7:
f3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:47:AA:AA:EC:F2:F8:8A:95:4E:3E:BA:DE:E2:2A:70:B4:F1:8B:80
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e1:bb:d8:c1:6a:b9:4d:67:3b:4a:13:f9:50:96:f8:aa:c5:
e2:ad:26:97:4d:4e:6d:15:ad:9e:b9:f4:1a:7a:5a:d3:40:34:
d8:61:70:a4:5f:6d:89:24:1a:a2:82:13:6a:f0:41:1f:e3:8e:
7a:df:e1:ca:f0:d8:de:e2:f9:55:33:49:8f:25:4f:4d:3d:5b:
7e:ef:fd:dc:cb:cf:14:b8:2a:4b:32:d4:41:7d:c8:77:6e:26:
66:e5:04:63:18:af:26:d8:39:00:fb:31:2f:9b:9b:38:53:0f:
b5:a1:0b:a5:75:8b:3e:1c:cb:42:8c:3d:b1:33:ad:81:b1:ed:
47:af:69:40:e3:96:6e:de:b2:0f:5b:1f:b8:e7:f2:39:27:97:
f3:3a:3b:1a:01:27:0f:93:9e:74:44:36:09:cb:21:ae:79:a2:
ee:46:bc:79:5f:5a:e3:07:b9:d1:50:a0:34:87:6a:76:20:b8:
c4:22:3e:b4:9c:eb:89:9a:a4:03:72:a5:70:62:96:cf:38:98:
22:84:7f:cb:fe:64:87:de:83:ef:79:b1:30:c5:18:9f:2e:9a:
12:99:5a:45:d0:81:c2:87:74:51:85:25:73:25:02:d5:57:a4:
bf:09:38:41:99:65:9c:46:28:86:44:57:6c:be:f8:8c:03:6a:
8f:b1:1c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:29:39 2025 by rpki-client