Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.mft
File: cNbQfLZOoOgZ46Cyngk_5Bljspo.mft (raw, json)
Hash identifier: oR7OlvXXXJKO9wdpb6tghg2yX44auMxbvZaRGxzBHC4=
Subject key identifier: AE:8D:32:17:2D:61:2D:CC:C7:DE:65:A1:DC:46:91:D9:87:D6:78:94
Authority key identifier: 70:D6:D0:7C:B6:4E:A0:E8:19:E3:A0:B2:9E:09:3F:E4:19:63:B2:9A
Certificate issuer: /CN=70d6d07cb64ea0e819e3a0b29e093fe41963b29a
Certificate serial: 019872988FB3798B6986E313B521FAC7BB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNbQfLZOoOgZ46Cyngk_5Bljspo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 01:00:57 +0000
Manifest this update: Mon 04 Aug 2025 01:00:57 +0000
Manifest next update: Tue 05 Aug 2025 01:00:57 +0000
Files and hashes: 1: cNbQfLZOoOgZ46Cyngk_5Bljspo.crl (hash: jebZl+XTUvEhpUrODKfyW23ba4Ol5Hhu1Zf1CB7Hpbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNbQfLZOoOgZ46Cyngk_5Bljspo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:8f:b3:79:8b:69:86:e3:13:b5:21:fa:c7:bb:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70d6d07cb64ea0e819e3a0b29e093fe41963b29a
Validity
Not Before: Aug 4 01:00:57 2025 GMT
Not After : Aug 5 01:00:57 2025 GMT
Subject: CN=ae8d32172d612dccc7de65a1dc4691d987d67894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:fc:c6:b5:f6:ad:b2:43:ee:53:f8:c5:8d:
23:6b:9c:bf:3e:85:ad:2f:54:b7:69:a9:83:e7:b1:
42:b1:7b:29:b5:72:38:9b:2a:86:a0:68:3f:da:3b:
d7:6a:89:28:fc:d7:ed:df:7a:f7:6e:e7:53:3d:3a:
ad:b3:9f:9b:7d:64:2a:76:b5:28:4c:60:71:38:bc:
8e:6e:fb:ce:c1:54:39:75:62:19:ed:aa:33:1a:bb:
40:fd:9c:e5:5c:e8:64:09:9e:5c:ec:a7:84:5e:9c:
3b:fb:27:45:f3:23:a4:e3:43:7a:4c:d4:c7:1d:54:
08:76:a1:b1:22:87:46:7e:99:43:de:91:fc:36:79:
65:55:10:7f:84:ac:45:f3:e7:b0:f5:c8:14:d0:38:
ad:23:7d:3b:07:25:61:4b:da:d1:aa:ab:2c:2e:b0:
a7:89:86:2d:79:44:b4:6f:49:fb:f7:3a:d6:3c:54:
85:66:7e:6d:12:44:77:af:65:41:49:84:7c:ed:66:
89:a9:3e:bf:5e:98:9e:79:a1:a8:2b:88:eb:23:7b:
d6:e6:d7:78:29:14:e3:e9:55:a5:d9:9d:a9:9b:a8:
e1:f1:87:67:35:50:82:31:8f:cd:32:26:44:f4:8a:
00:60:9b:d4:b5:55:5a:17:59:64:69:5f:dc:cf:b2:
a1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8D:32:17:2D:61:2D:CC:C7:DE:65:A1:DC:46:91:D9:87:D6:78:94
X509v3 Authority Key Identifier:
keyid:70:D6:D0:7C:B6:4E:A0:E8:19:E3:A0:B2:9E:09:3F:E4:19:63:B2:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNbQfLZOoOgZ46Cyngk_5Bljspo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/05910b-25d8-413d-ac58-824c77f891c9/1/cNbQfLZOoOgZ46Cyngk_5Bljspo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:6a:33:3d:a6:2f:4a:a0:5c:50:c3:53:87:25:41:c5:d9:05:
d4:34:c8:f8:cd:3b:0c:81:4c:a0:09:e9:7c:88:ad:37:11:60:
c9:24:01:7c:1d:98:d1:11:b0:34:62:5d:2c:eb:1e:0b:d3:e0:
29:31:ab:42:cd:05:0a:b7:98:28:0b:3b:3f:6a:3b:4e:f7:e7:
b7:e5:93:fa:60:1a:ab:38:00:61:94:bf:ae:a6:9d:34:fb:4e:
e7:70:03:8e:36:5c:68:a3:66:c6:36:7e:a8:34:d9:c9:68:de:
bd:d1:ac:33:f0:ae:1f:b3:ab:73:82:ce:35:f8:49:69:48:9b:
4f:f8:f8:2f:16:ab:4b:18:78:13:e9:7c:c6:43:3b:23:0b:a5:
9c:db:21:33:4b:d9:2f:f4:17:48:ff:20:6b:e2:69:a5:69:1e:
08:81:98:41:ee:d3:87:6c:d6:4e:ed:69:8a:b6:d1:29:ba:69:
35:d2:aa:89:c0:a4:e7:d1:f0:9e:26:00:21:d9:4a:9a:e0:2c:
28:72:6b:74:72:45:2e:44:e1:8a:fa:65:d5:90:59:eb:5c:11:
01:7d:40:7a:0f:5d:a0:68:40:b3:a8:62:e8:4e:a4:1f:3c:8e:
2c:7a:f2:19:46:d4:f9:be:d6:9b:5f:49:36:0a:72:68:ad:3a:
56:22:35:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:25 2025 by rpki-client