Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
File: cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft (raw, json)
Hash identifier: izZa6f4NjuFrD1qHcUjIBbWK0IN4w5YzKcmHYCe/sAc=
Subject key identifier: B1:C5:69:36:61:D1:3D:96:22:BF:C1:BE:0D:17:DA:3B:DF:55:81:FB
Authority key identifier: 71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
Certificate issuer: /CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Certificate serial: 019891B5BDF20CBA6393178A1947B18D2A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
Manifest number: 076A
Signing time: Sun 10 Aug 2025 02:01:03 +0000
Manifest this update: Sun 10 Aug 2025 02:01:03 +0000
Manifest next update: Mon 11 Aug 2025 02:01:03 +0000
Files and hashes: 1: cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl (hash: RfgsJZ+7UbuVDH3ouiEvvGnZU8QWRgmyzmWg0Yoo9tg=)
2: nA6xks4oQE9N25Xp7uQGkNyo-7Y.roa (hash: F+E2ylwyKz3DO5lKloF7/MKQO4W4GhOJOnJmcBpu/7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:b5:bd:f2:0c:ba:63:93:17:8a:19:47:b1:8d:2a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Validity
Not Before: Aug 10 02:01:03 2025 GMT
Not After : Aug 11 02:01:03 2025 GMT
Subject: CN=b1c5693661d13d9622bfc1be0d17da3bdf5581fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:13:52:18:e0:dc:8c:fe:02:cc:ff:dd:3e:
64:86:a1:22:0a:f3:27:fc:dc:6b:94:53:87:a6:75:
31:d6:c3:da:39:cd:79:2b:0f:f2:45:39:70:a0:17:
ff:1a:0d:32:46:08:57:10:9e:e6:cf:1e:e2:24:55:
f8:a5:5d:9c:c2:c1:bb:d0:7c:ee:37:88:74:a9:30:
b2:5d:66:41:81:f5:d0:42:c3:f2:93:62:1e:0d:ea:
40:0c:40:4e:20:05:6b:40:7b:4d:51:e1:25:24:27:
23:21:90:4a:1d:00:b1:5a:e6:ce:a9:e6:37:5b:ff:
bb:2a:6a:71:2f:79:09:3a:96:3d:e1:82:04:a8:d4:
73:0f:df:cb:5a:3c:d3:42:55:50:20:ca:08:58:b4:
8a:03:b3:2d:a6:b0:7f:a0:ab:e4:ae:ec:28:b2:5e:
4f:a5:71:ac:95:89:75:67:51:cf:9c:17:49:f3:f7:
4a:bf:c5:d7:6d:99:57:4d:f5:db:e3:18:ad:25:c1:
25:33:6b:fb:9d:4f:75:c9:3c:ce:b0:a1:85:e6:c6:
63:4b:f3:8d:d0:0e:61:4d:04:a9:97:b6:6a:02:4e:
3f:b2:ac:4f:39:88:1c:00:3f:6b:3c:17:98:1a:f6:
5c:95:eb:6e:ad:b7:00:a2:67:ed:b2:00:60:48:f7:
91:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C5:69:36:61:D1:3D:96:22:BF:C1:BE:0D:17:DA:3B:DF:55:81:FB
X509v3 Authority Key Identifier:
keyid:71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6e:e5:11:6e:8c:ff:29:86:d8:dc:4c:97:62:ff:b1:f7:d1:
c8:a5:e4:e6:45:91:76:8f:a4:bc:35:a8:92:b5:01:33:c5:8d:
4d:0d:6d:51:70:9d:ba:b8:92:18:0f:0f:96:b4:70:c2:36:5c:
11:f7:4c:cc:05:40:13:c3:e1:9b:ae:0d:4a:5d:5d:08:3c:6c:
2d:12:3c:a2:82:bc:84:f6:15:83:da:85:ac:8d:bf:ff:47:5b:
00:c1:8d:f2:74:ca:33:4a:7a:b2:ce:ed:b6:27:ed:3c:d3:68:
9d:1b:94:e8:82:27:9d:37:78:93:84:ed:2d:be:87:b7:3d:5f:
d8:59:e7:5f:c2:00:6e:05:04:00:a6:05:d8:dd:b3:72:69:27:
a9:ee:cf:34:df:e4:b8:8f:60:ad:76:25:49:04:b8:d8:d3:62:
f5:ea:4f:e3:63:a7:20:d3:68:dc:91:91:54:e6:f5:c2:ab:34:
f7:79:f0:d4:22:b4:28:da:27:9e:cc:05:93:ff:5b:5e:23:39:
3e:0d:90:88:23:4b:6a:8e:24:08:1d:24:dd:30:1a:18:58:84:
17:ab:05:cb:d2:b7:f2:f7:6c:24:5e:77:92:5a:ca:3b:4a:be:
26:4a:d6:67:ec:8b:dd:65:46:ce:b5:bc:3b:c8:79:fd:1d:50:
70:4b:76:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:39:09 2025 by rpki-client