Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: ser73+ZbiO9Vsay2wg6t2sAP4t9IbynF/6S5wFwEtlo=
Subject key identifier: E6:10:38:C7:FA:43:AB:FB:0E:82:C2:07:FE:9B:1A:17:71:52:DF:E6
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 019770AC8AFE8327692D88855FC9EDF8FBC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 03B4
Signing time: Sat 14 Jun 2025 23:00:45 +0000
Manifest this update: Sat 14 Jun 2025 23:00:45 +0000
Manifest next update: Sun 15 Jun 2025 23:00:45 +0000
Files and hashes: 1: 1-t2gcnq_wGKj6Cw9yBTlPkMhqpA.roa (hash: biNGhGH5AKAvuvZqlWI6oNS4u1EhxLRFN8pAccYPS0U=)
2: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: IrWzJN5aAAjwulodB7iYXCPKW2Jv6n8flj9lMcRVqdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:8a:fe:83:27:69:2d:88:85:5f:c9:ed:f8:fb:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Jun 14 23:00:45 2025 GMT
Not After : Jun 15 23:00:45 2025 GMT
Subject: CN=e61038c7fa43abfb0e82c207fe9b1a177152dfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d7:30:f4:72:2f:1c:09:cb:ff:58:a2:2f:60:
9d:0b:c3:cf:86:3c:98:9a:93:2d:6a:55:25:ef:03:
df:e0:54:8e:ae:df:04:0d:99:29:39:52:59:c0:e9:
65:96:a8:9e:52:62:88:20:22:64:4e:d9:43:81:ee:
2c:d8:55:c4:d7:9e:97:40:3c:57:e6:d4:f8:3b:0c:
79:f8:bb:72:99:92:2d:2e:84:b5:d8:7f:84:f9:88:
7d:7e:87:49:00:c1:16:f4:49:69:2e:5d:36:29:12:
4e:4c:0e:0d:99:05:56:b9:55:67:46:34:3f:d4:a9:
8a:f2:2b:b7:8f:87:13:ab:69:67:b2:65:65:ed:25:
c6:32:81:dd:95:a6:d4:5b:0b:50:3c:7e:8b:29:c7:
16:aa:5f:66:41:30:48:40:ac:2c:d0:cf:d8:06:61:
98:67:5f:92:38:a6:62:1d:bd:28:b6:ee:e1:c6:c0:
1f:7f:53:a3:7a:16:12:43:57:9c:09:9e:99:aa:2a:
1b:58:f6:69:81:64:c1:fe:3f:ec:04:6e:16:68:20:
b0:38:87:3f:2e:bd:3d:56:4d:22:c3:00:b9:25:69:
bd:3e:fb:73:d7:bf:c6:6e:25:28:da:29:38:f4:57:
2b:b2:50:0a:7a:fb:b9:91:56:67:a2:aa:69:92:fc:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:10:38:C7:FA:43:AB:FB:0E:82:C2:07:FE:9B:1A:17:71:52:DF:E6
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:be:d8:ee:ee:e0:51:9e:4f:c6:b2:72:af:0c:92:15:99:34:
51:ed:d6:6d:a9:7a:7e:82:18:73:49:86:76:60:99:58:93:54:
ec:80:04:c9:9f:82:d7:fa:0f:ac:cb:ff:2b:95:05:0c:82:8f:
ba:41:bb:fc:2b:8b:e0:63:63:76:84:49:7e:96:34:3b:e8:ab:
b3:d2:d3:54:a4:15:89:d1:3e:54:7e:10:3e:e9:f8:5f:07:b1:
80:71:cc:1b:47:30:ce:e7:fe:d4:df:d4:f0:b4:bb:cc:3f:25:
43:0a:c5:a6:ed:0f:4f:df:47:38:c9:8f:31:4d:ca:7c:e5:9f:
d3:a4:2a:53:c9:0a:70:e0:70:65:90:31:62:52:98:c0:e7:08:
4a:50:99:76:9c:fc:ec:a4:f0:bb:08:a4:b0:16:78:39:ab:4e:
37:25:7d:d8:76:3d:dd:64:ad:32:91:80:03:df:65:4a:f7:12:
a6:8b:bf:ad:05:5f:ee:ef:7a:21:2f:d1:b2:50:d5:65:3f:83:
c0:e1:de:9f:ec:01:90:17:1e:6a:a3:bb:11:2b:32:ba:bc:13:
f3:1c:00:91:73:83:c3:a8:24:ca:14:9c:d4:a4:ae:2a:50:79:
1a:51:61:d4:73:85:c5:f7:81:70:49:ac:77:08:3d:c6:8f:8b:
ce:1a:f9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:41:57 2025 by rpki-client