Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: 5vnkngSgWTewfEkMxl0t2rTRasncRfcet4Bh7YnkWZI=
Subject key identifier: 42:CB:5F:96:94:5F:BA:A6:66:8F:BC:78:DD:F5:F2:81:D5:72:CE:81
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 01976EF5380876B6F838C0D979BBE69DB66F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 013D
Signing time: Sat 14 Jun 2025 15:00:53 +0000
Manifest this update: Sat 14 Jun 2025 15:00:53 +0000
Manifest next update: Sun 15 Jun 2025 15:00:53 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: SNkT3mSc44mKEvFZX/4XjdAfwUBK0IUeFzCFnj8wKEc=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:38:08:76:b6:f8:38:c0:d9:79:bb:e6:9d:b6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Jun 14 15:00:53 2025 GMT
Not After : Jun 15 15:00:53 2025 GMT
Subject: CN=42cb5f96945fbaa6668fbc78ddf5f281d572ce81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:86:73:3a:a1:15:d7:bc:bd:52:d9:a1:16:5f:
68:87:df:0e:49:95:c1:1d:27:25:6d:08:b2:ca:35:
dc:0d:1a:ec:b0:8a:85:96:c4:03:cd:fc:31:e6:d6:
7c:28:71:f3:03:0c:8c:51:9b:e4:2e:c0:18:48:89:
4b:1e:4b:99:fe:be:3d:ad:fd:9d:08:d4:51:54:1e:
84:ce:32:be:75:93:f1:3a:08:7d:8b:fe:63:f1:1a:
74:10:62:19:1c:90:67:a7:a6:b5:7a:14:08:af:61:
43:5a:3f:68:ee:f5:bc:74:f9:19:02:0d:92:43:4f:
34:89:f6:83:87:1f:1d:fc:75:7f:a3:df:73:50:f7:
d3:c9:66:ac:ce:00:02:b9:12:5b:48:0c:c9:af:c2:
33:55:7e:1e:e9:b1:69:9c:87:6d:e0:e2:c2:42:83:
0b:07:b7:6c:e8:77:92:a4:cd:29:23:b4:2a:47:23:
33:1f:c0:77:4f:c5:c5:c6:b0:a7:2a:0a:49:42:5f:
ca:b5:9d:e2:5a:29:78:43:18:10:0e:49:95:97:13:
d4:d5:28:9f:8f:92:1e:c8:df:0b:10:2b:32:11:6f:
77:5e:61:1e:15:76:e0:58:1d:5b:1d:4f:23:3b:48:
89:fa:9e:73:49:fa:d4:49:bf:90:aa:b4:6f:8c:66:
9a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CB:5F:96:94:5F:BA:A6:66:8F:BC:78:DD:F5:F2:81:D5:72:CE:81
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:51:67:b1:c5:30:36:88:de:c2:ec:90:d6:77:7b:0a:8a:9f:
53:c1:76:f7:c4:e8:b0:26:ee:22:0e:8e:d9:d6:d6:2f:90:b1:
97:30:50:67:de:b6:e6:4b:1a:7a:fd:fa:91:72:9e:cd:92:df:
5e:95:81:86:e3:17:b4:7e:9d:66:f6:89:50:e3:e9:0e:b2:fb:
db:9e:e0:34:8f:8f:51:3e:46:1b:92:68:2f:a1:c3:87:19:98:
a9:35:95:50:7c:56:02:42:50:99:bb:b6:6b:15:9e:90:6e:0d:
5d:3a:76:92:f5:40:1a:13:54:f0:e0:f2:64:64:3a:92:81:2c:
88:7e:1a:4f:26:74:f8:5f:15:25:00:37:07:91:bf:87:7c:29:
fd:df:f8:d2:52:02:6f:6f:1e:40:f6:74:44:f8:4c:ef:24:ce:
47:99:2a:c9:8b:3f:bb:fb:24:60:54:cf:5f:0c:9a:d7:21:01:
be:72:54:68:7c:da:d8:4d:dc:7c:4c:57:35:52:57:11:08:02:
24:b4:55:ba:e6:64:4a:1e:ef:a7:14:53:70:bd:9b:f0:75:e3:
ee:a3:45:d2:e7:38:a8:5a:11:aa:97:a6:be:8c:9c:e2:1e:25:
9d:73:86:bc:21:57:51:ec:58:28:94:50:42:cd:93:a2:ad:fb:
55:4f:f3:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:17:18 2025 by rpki-client