
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
File: CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft (raw, json)
Hash identifier: 9vs+/iTGi/AOm1Zr95lnU4cdv79WCROOu1hOVnIv1pY=
Subject key identifier: 1A:0E:F4:18:B6:9D:AD:9A:7E:E2:3E:E3:89:06:5C:48:4E:EE:A2:81
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 019885B1FB500FCB21BC836604A9F86E0B97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
Manifest number: 097F
Signing time: Thu 07 Aug 2025 18:01:30 +0000
Manifest this update: Thu 07 Aug 2025 18:01:30 +0000
Manifest next update: Fri 08 Aug 2025 18:01:30 +0000
Files and hashes: 1: 4bMtkdss6ipZLuaULzydMUpyiaQ.roa (hash: ftsUwXeTU/zCajSXbJ3x6QJLG4thVRnSbA76L16HZhs=)
2: CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl (hash: u0F2ba8kNvLhn++h96k+F006v3Uoj0uNug6OP/+1CxQ=)
3: k6IT53wky2OyxFkQBPrbNFj6TNQ.roa (hash: brdxpAD59FYZoJp1BAGf2U6f2BoN13pBWQRPGF1mMCg=)
4: wTQDqjXgoUhzhSugRLMIDWXZVNA.roa (hash: sP07Xq5SBcl1K6LagQUnTqXSUPfJF0A6TBK/LGuxJ5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:b1:fb:50:0f:cb:21:bc:83:66:04:a9:f8:6e:0b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Aug 7 18:01:30 2025 GMT
Not After : Aug 8 18:01:30 2025 GMT
Subject: CN=1a0ef418b69dad9a7ee23ee389065c484eeea281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:93:c9:1d:fe:77:8c:53:bb:9f:47:13:eb:0e:
4f:b2:3f:cc:18:c2:ca:21:d9:a3:b8:8a:96:4b:37:
44:44:a2:97:b9:f0:2f:5e:c7:8d:ad:61:ec:b5:9f:
66:c7:14:fe:d1:7f:6c:94:87:1c:4f:e9:08:38:77:
e0:0f:3b:3c:42:f7:f2:36:9e:09:9b:59:ac:f4:59:
1b:36:44:2a:2c:92:e3:b0:24:d3:18:4f:85:a2:d4:
c0:1c:08:c6:a5:ad:cf:01:e5:4c:f6:02:28:37:1c:
87:a0:d4:7c:bd:c8:11:af:95:c4:38:e0:ec:e1:3b:
91:89:66:22:44:7a:2a:b0:b3:d6:11:83:fe:e3:23:
92:e2:e8:c7:fc:20:db:ba:5b:2c:a4:9b:09:c1:53:
79:a7:a9:c5:d7:f2:fe:50:9d:36:9c:ea:3f:65:2c:
be:57:03:d9:b6:aa:dc:82:dc:ac:6c:ab:d7:cd:54:
2b:66:a4:82:86:4d:2c:9a:f9:8d:dd:d2:19:9f:e2:
10:1d:e7:b9:4a:76:54:a3:8e:56:b7:c1:6c:2d:4a:
88:37:96:63:f3:12:b6:5f:d1:b5:57:f1:32:bc:24:
60:a0:68:fd:9d:d7:7a:84:6b:a6:4d:26:a6:71:94:
ee:d9:b0:1b:25:da:2a:73:0b:ec:e4:cd:69:dd:72:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0E:F4:18:B6:9D:AD:9A:7E:E2:3E:E3:89:06:5C:48:4E:EE:A2:81
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:26:95:ac:ea:61:05:28:a4:98:47:33:f0:88:75:eb:c7:6f:
08:a0:8f:3d:00:d6:57:57:20:7f:10:7b:f6:a8:7b:f0:1d:b5:
e5:9d:0c:cb:92:04:50:69:46:fa:64:0c:6d:44:08:57:82:d4:
57:53:22:ff:8c:d4:27:d1:fb:b5:2d:17:0f:75:2e:56:49:f7:
41:93:33:1a:62:b0:4a:6e:af:00:3a:35:a1:71:14:2f:9a:dc:
49:d7:88:fc:bb:4f:fb:18:c0:64:cf:dd:92:31:97:4e:61:b1:
56:ab:d4:6d:8b:ae:b8:6e:4b:7c:b0:a1:56:e0:f0:38:e4:83:
10:52:35:ba:7a:e6:38:e7:a4:8b:20:e2:88:75:25:03:50:3e:
d9:95:a0:e4:90:21:68:5b:d1:67:a0:76:8b:b9:94:94:84:1d:
dc:19:e5:73:fb:00:6e:85:1c:4a:3f:09:40:13:c9:31:d9:5b:
e8:ed:ac:da:f7:32:f3:c6:de:65:cf:4e:3c:83:b2:a1:4e:24:
e4:b8:c7:2f:82:57:d0:b2:43:3b:3e:37:3e:49:13:45:a8:9b:
57:8c:20:74:26:fb:f6:07:f2:b6:06:b7:e6:54:e2:09:3f:2d:
23:2c:f3:ff:b3:9d:25:ca:57:b3:ee:62:13:78:e6:7b:02:21:
2c:01:60:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiFsftQD8shvINmBKn4bguXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4OWM4YzdmMzM0MDUzYzhhOTBhMzQwODAwOWVmM2QzYjdh
ODJlM2QwHhcNMjUwODA3MTgwMTMwWhcNMjUwODA4MTgwMTMwWjAzMTEwLwYDVQQD
EygxYTBlZjQxOGI2OWRhZDlhN2VlMjNlZTM4OTA2NWM0ODRlZWVhMjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ZPJHf53jFO7n0cT6w5Psj/MGMLK
IdmjuIqWSzdERKKXufAvXseNrWHstZ9mxxT+0X9slIccT+kIOHfgDzs8QvfyNp4J
m1ms9FkbNkQqLJLjsCTTGE+FotTAHAjGpa3PAeVM9gIoNxyHoNR8vcgRr5XEOODs
4TuRiWYiRHoqsLPWEYP+4yOS4ujH/CDbulsspJsJwVN5p6nF1/L+UJ02nOo/ZSy+
VwPZtqrcgtysbKvXzVQrZqSChk0smvmN3dIZn+IQHee5SnZUo45Wt8FsLUqIN5Zj
8xK2X9G1V/EyvCRgoGj9ndd6hGumTSamcZTu2bAbJdoqcwvs5M1p3XLrGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBoO9Bi2na2afuI+44kGXEhO7qKBMB8GA1UdIwQY
MBaAFAicjH8zQFPIqQo0CACe89O3qC49MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYt
NmY3MDA5YmVlOTE1LzEvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYtNmY3MDA5YmVlOTE1
LzEvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXSaVrOph
BSikmEcz8Ih168dvCKCPPQDWV1cgfxB79qh78B215Z0My5IEUGlG+mQMbUQIV4LU
V1Mi/4zUJ9H7tS0XD3UuVkn3QZMzGmKwSm6vADo1oXEUL5rcSdeI/LtP+xjAZM/d
kjGXTmGxVqvUbYuuuG5LfLChVuDwOOSDEFI1unrmOOekiyDiiHUlA1A+2ZWg5JAh
aFvRZ6B2i7mUlIQd3Bnlc/sAboUcSj8JQBPJMdlb6O2s2vcy88beZc9OPIOyoU4k
5LjHL4JX0LJDOz43PkkTRaibV4wgdCb79gfytga35lTiCT8tIyzz/7OdJcpXs+5i
E3jmewIhLAFgJg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 20:13:24 2025 by rpki-client