Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: FXDUr3X6OIsekMmJvvTcczwqbiagCkuEpSQGCL9kK6s=
Subject key identifier: 1F:B3:E1:23:C3:DA:68:DF:52:5D:33:B2:7E:C1:60:41:F3:E8:7E:C9
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 019875625CEB28E28C903A6C58DE9A40E0AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 043B
Signing time: Mon 04 Aug 2025 14:00:37 +0000
Manifest this update: Mon 04 Aug 2025 14:00:37 +0000
Manifest next update: Tue 05 Aug 2025 14:00:37 +0000
Files and hashes: 1: 1-t2gcnq_wGKj6Cw9yBTlPkMhqpA.roa (hash: biNGhGH5AKAvuvZqlWI6oNS4u1EhxLRFN8pAccYPS0U=)
2: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: lMXnUHSE5YhGrWHNYshaiybzmTa/90hjEDx9r1HPGkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:62:5c:eb:28:e2:8c:90:3a:6c:58:de:9a:40:e0:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Aug 4 14:00:37 2025 GMT
Not After : Aug 5 14:00:37 2025 GMT
Subject: CN=1fb3e123c3da68df525d33b27ec16041f3e87ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:8c:2d:d7:90:ce:12:de:cd:a7:a6:92:eb:
de:34:66:df:b0:a3:b2:58:98:b7:46:70:25:d2:86:
4b:43:8f:e7:7c:62:50:1f:d6:5b:01:99:ae:7b:1b:
63:96:c9:dc:d7:db:6a:b1:b2:b0:d9:e4:db:1f:00:
ff:c6:c1:2c:86:5c:12:bb:68:8b:b9:6c:6a:58:66:
a8:c3:82:34:60:01:bd:46:fe:6e:2f:5c:1e:fe:5b:
eb:1b:db:07:ae:a5:a9:e8:d9:28:c0:0e:53:1a:89:
5d:ce:90:fa:db:92:57:5b:61:21:c3:68:7e:3b:c1:
4b:51:f5:ab:9d:38:de:33:47:bf:f1:da:f4:fe:e9:
20:40:0a:61:a5:da:5c:31:70:e2:bc:de:8c:06:48:
7e:77:14:3a:65:19:2f:c2:22:70:e5:3a:a9:eb:01:
61:d1:12:75:19:20:30:b7:94:30:9d:41:73:f2:d2:
b3:4f:d9:70:b8:79:4c:98:b4:fb:18:bc:fc:15:ab:
be:7d:50:fe:79:98:3c:6e:d4:97:f2:d0:24:f4:29:
0b:90:bd:d0:d9:45:f1:99:67:1e:c2:e0:46:d5:64:
a8:71:b7:39:a3:b4:9b:06:c7:8d:37:c4:23:d5:51:
3b:2a:db:e0:7b:e0:e8:5d:e0:fc:07:6b:e5:5f:e0:
4a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B3:E1:23:C3:DA:68:DF:52:5D:33:B2:7E:C1:60:41:F3:E8:7E:C9
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:da:60:38:c3:0e:eb:00:8c:bb:92:e5:41:80:36:31:a8:13:
a7:eb:e4:88:18:38:e2:cd:ad:f6:86:a2:eb:2c:50:90:d5:fd:
60:fb:97:60:76:a6:d0:4a:54:f6:6c:e0:23:fa:7e:d8:a8:44:
3a:bd:95:fe:3e:4c:b1:34:fc:cc:b2:0c:6a:10:4f:12:85:ce:
77:72:1b:99:96:de:3c:c6:60:a8:27:f6:02:03:41:f4:e2:8a:
70:87:27:62:fc:d1:13:11:80:4a:4d:28:b8:cd:53:8d:4f:4f:
26:ec:45:b3:43:a9:fe:77:bc:0e:74:4d:20:7b:25:af:0a:d2:
7b:45:5c:e1:64:18:ff:6f:84:01:d0:df:c2:9c:d8:24:d6:7f:
2c:04:69:55:2c:80:64:10:b8:1d:b4:7a:f4:c5:c2:f8:72:12:
a2:2a:9f:e4:9e:28:c6:98:ef:75:88:29:4e:6c:fc:20:08:2f:
85:a0:31:54:4a:b4:1a:80:35:dd:31:8e:05:f3:14:80:48:80:
1c:b1:91:00:73:91:c6:18:a7:42:fa:f1:95:e2:67:79:64:ca:
a0:fb:17:d6:21:ad:27:0a:0f:88:c1:5b:6e:14:5d:f2:af:6e:
73:e6:96:58:6e:61:5d:47:2b:31:bc:df:35:c2:01:ae:cf:ea:
a5:f2:a8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:07:30 2025 by rpki-client