Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
File: cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft (raw, json)
Hash identifier: CUKmEtlJqdoBtlsb0onKmh4na4WWc1UVNzu2yheAM3s=
Subject key identifier: 23:BA:4F:78:CA:34:2C:E2:2C:48:8A:E0:36:06:52:27:C7:B3:1E:F0
Authority key identifier: 71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
Certificate issuer: /CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Certificate serial: 01976C2AD24DD55522707F77B69073A7104C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
Manifest number: 06D2
Signing time: Sat 14 Jun 2025 02:00:35 +0000
Manifest this update: Sat 14 Jun 2025 02:00:35 +0000
Manifest next update: Sun 15 Jun 2025 02:00:35 +0000
Files and hashes: 1: cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl (hash: Wb/g6PCANOr1uWHJu12gz/k1SkyMC/pXOxGEQO8dAlM=)
2: nA6xks4oQE9N25Xp7uQGkNyo-7Y.roa (hash: F+E2ylwyKz3DO5lKloF7/MKQO4W4GhOJOnJmcBpu/7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:d2:4d:d5:55:22:70:7f:77:b6:90:73:a7:10:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Validity
Not Before: Jun 14 02:00:35 2025 GMT
Not After : Jun 15 02:00:35 2025 GMT
Subject: CN=23ba4f78ca342ce22c488ae036065227c7b31ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b4:dc:fb:fa:38:45:1a:ff:e7:3a:01:73:2a:
0f:b1:77:8f:78:f2:73:22:0f:c7:01:bd:9b:90:42:
63:9c:45:44:2d:08:fb:c1:8f:e1:c3:d7:67:29:ce:
03:69:c9:ce:9c:6e:01:48:85:be:bd:2a:0f:19:4a:
bb:8f:a0:ee:39:84:0b:b6:9d:64:d8:ca:68:93:c9:
ce:05:0a:73:2d:7d:90:39:4b:70:18:97:3f:d0:d5:
15:c4:5f:e6:1b:aa:91:77:37:55:95:16:40:db:5c:
dd:4e:5e:c1:83:6e:96:ea:42:c8:e4:23:ba:b9:26:
07:8c:f8:39:70:d5:f3:2a:6a:a3:98:49:1a:ff:cc:
6b:1d:bf:58:bf:19:45:5e:1b:b6:ad:2d:bc:7f:d3:
4d:b5:ac:39:5e:f7:b0:53:5a:10:f7:18:51:2a:33:
31:72:0a:fd:8c:f1:f7:be:13:15:e4:97:2c:f1:7f:
41:cd:d8:06:70:09:21:ba:b5:dc:fc:8b:b0:cd:b3:
96:85:c7:d8:ba:98:d3:a9:65:52:15:70:48:42:58:
ea:c4:11:be:ec:c5:cc:7d:de:24:27:5a:d7:c7:a9:
21:b8:e7:f2:c3:34:b4:34:4f:3c:f0:8f:25:95:fc:
f9:4d:6d:fe:d6:23:b5:ee:8c:9a:07:cd:f4:d4:58:
92:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BA:4F:78:CA:34:2C:E2:2C:48:8A:E0:36:06:52:27:C7:B3:1E:F0
X509v3 Authority Key Identifier:
keyid:71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:bb:37:c0:a0:49:6f:98:01:4f:5c:42:1c:33:cd:cb:ed:03:
f5:1d:08:8a:89:12:f0:3a:21:11:4d:6b:b9:7a:fc:3f:89:2d:
95:a7:35:d8:8c:d0:26:43:ef:75:73:30:f2:c9:d3:12:1c:06:
33:e9:d0:75:f8:03:63:4d:8b:5b:21:cc:b3:66:50:fe:74:62:
b9:83:15:c7:bc:75:32:72:f7:dd:9b:60:29:31:b2:d2:dc:f2:
c5:ce:4f:5e:ce:07:05:c8:34:3f:d4:a9:c7:9f:1d:cd:d4:f0:
a6:a5:90:68:94:34:de:26:0c:91:ca:f5:25:66:bb:fd:b3:c2:
40:4a:4a:3d:3f:e7:8d:41:c6:56:45:75:f8:ce:dd:7c:79:58:
11:3d:52:6c:85:a2:b5:53:2d:c8:04:a6:bf:81:43:f1:97:62:
fe:68:60:5c:33:e3:66:e0:19:8f:25:3c:81:e1:c9:5f:69:f3:
3e:e0:2f:3e:57:65:85:b6:0a:5c:06:2e:a1:ad:ce:27:ba:8d:
a7:e5:08:fa:a4:66:07:b5:20:d7:88:d6:d2:5b:3e:13:5f:46:
cc:d2:3f:39:81:59:82:bf:b8:d9:d6:95:f4:15:ee:a5:2e:e2:
73:33:79:04:66:2e:f5:39:16:c9:65:34:dc:e6:00:be:e7:6e:
12:29:bf:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:44:56 2025 by rpki-client