Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
File: CbtjJ836FlJNx9AzcTivMl-14tk.mft (raw, json)
Hash identifier: L22iuorcHjrrkHlu65x0x0huy0YkLuWcTGdH10qtvlw=
Subject key identifier: 18:E5:1D:7E:53:F3:F2:AB:03:84:FE:EB:B8:E4:6E:7E:1E:84:EF:09
Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Certificate serial: 019873E340EE5D8EE5A8534AA02749C40DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
Manifest number: 13DB
Signing time: Mon 04 Aug 2025 07:02:09 +0000
Manifest this update: Mon 04 Aug 2025 07:02:09 +0000
Manifest next update: Tue 05 Aug 2025 07:02:09 +0000
Files and hashes: 1: CbtjJ836FlJNx9AzcTivMl-14tk.crl (hash: eNkTyYGZ1PL/0jC+LVsALJyEO/E4m/X500WjEPRczRM=)
2: o4Fd53Yi8gf1Z2E5SaQrj9OqD_Y.roa (hash: ju/o7BILnihNNjEqI90onU7QdzoVAl2fjP/NUv+3xWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:40:ee:5d:8e:e5:a8:53:4a:a0:27:49:c4:0d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Validity
Not Before: Aug 4 07:02:09 2025 GMT
Not After : Aug 5 07:02:09 2025 GMT
Subject: CN=18e51d7e53f3f2ab0384feebb8e46e7e1e84ef09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:b2:11:4c:36:2b:50:b5:de:bd:e9:44:fe:
44:8f:0d:70:c5:81:5d:99:cc:7a:9f:a5:1d:ea:9f:
63:0d:3b:05:90:f1:7b:58:99:76:32:2b:24:ca:9c:
ee:7c:01:d7:54:19:56:51:74:36:10:83:74:44:14:
8b:a5:f2:67:de:b5:c2:ce:9b:69:5d:70:46:73:86:
c9:5b:aa:9a:ad:56:d0:d4:e2:89:c4:4a:99:72:a7:
df:f4:fe:f3:b5:84:af:9c:46:e9:14:da:a8:b4:1d:
61:bd:bf:8d:90:d4:54:f2:81:6d:a1:a6:40:bb:5f:
83:d3:5e:66:d1:c2:40:ed:48:9a:f5:10:06:4b:51:
d0:ec:b5:52:f6:a3:87:cd:ea:82:ae:62:b7:9a:c4:
9c:81:5f:00:9a:e9:cb:7c:54:24:ad:87:18:be:91:
88:e6:54:e7:66:e8:c2:08:40:78:42:21:e9:4a:2a:
cd:6e:f2:0c:9b:48:97:5f:20:38:5c:fd:ff:12:43:
71:f9:fa:01:cd:d6:fb:17:0a:bb:19:d0:41:8e:a7:
31:df:05:7d:b0:ce:28:e4:48:24:41:72:25:ef:15:
20:60:3f:a5:45:71:4b:65:7d:dc:a7:64:c4:33:8b:
5f:a5:df:b1:41:3c:4c:6e:99:63:62:95:08:1f:84:
c5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E5:1D:7E:53:F3:F2:AB:03:84:FE:EB:B8:E4:6E:7E:1E:84:EF:09
X509v3 Authority Key Identifier:
keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:31:fb:60:f8:fc:2b:d9:33:24:f3:dc:64:83:d6:0e:5b:d6:
5f:e0:9c:57:0d:4f:d1:ae:43:e3:07:97:b0:36:10:77:74:c0:
96:61:5e:8d:49:cb:89:a1:3a:52:0b:80:ec:de:33:aa:c5:95:
d4:d9:53:95:8c:c3:f9:44:6f:8f:42:c3:6c:d8:5d:d8:14:9d:
24:fe:58:08:84:70:04:d6:fa:12:f2:35:00:75:51:51:bf:55:
6e:da:1c:84:8e:20:d0:13:6d:73:69:7c:00:1e:c5:8b:cd:be:
bb:2c:92:0b:db:fb:b4:36:ea:b9:24:c3:11:6e:20:49:3c:7e:
66:bf:5f:8d:59:a2:1e:25:3d:83:e3:eb:07:dd:35:a7:17:7a:
ba:29:e4:0e:4b:69:bb:bd:4b:c4:41:9a:00:ed:ae:37:b5:30:
a1:0c:22:3c:fa:9e:5b:da:d8:42:fc:e1:84:aa:77:64:d7:6b:
fc:e8:40:d3:31:1a:5b:c6:aa:6c:7f:cf:73:98:6e:c3:f4:88:
c6:74:fc:78:1d:dd:6a:6a:70:e4:73:87:e6:ac:41:b9:79:87:
9b:dc:04:7e:c7:5a:77:11:00:a3:4a:fb:7f:c7:5e:16:d3:8e:
f0:d4:08:1d:e8:53:bc:3a:fa:33:dd:a0:29:d6:8f:d0:33:6a:
ab:e4:da:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz40DuXY7lqFNKoCdJxA3aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5YmI2MzI3Y2RmYTE2NTI0ZGM3ZDAzMzcxMzhhZjMyNWZi
NWUyZDkwHhcNMjUwODA0MDcwMjA5WhcNMjUwODA1MDcwMjA5WjAzMTEwLwYDVQQD
EygxOGU1MWQ3ZTUzZjNmMmFiMDM4NGZlZWJiOGU0NmU3ZTFlODRlZjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAyyEUw2K1C13r3pRP5Ejw1wxYFd
mcx6n6Ud6p9jDTsFkPF7WJl2MiskypzufAHXVBlWUXQ2EIN0RBSLpfJn3rXCzptp
XXBGc4bJW6qarVbQ1OKJxEqZcqff9P7ztYSvnEbpFNqotB1hvb+NkNRU8oFtoaZA
u1+D015m0cJA7Uia9RAGS1HQ7LVS9qOHzeqCrmK3msScgV8AmunLfFQkrYcYvpGI
5lTnZujCCEB4QiHpSirNbvIMm0iXXyA4XP3/EkNx+foBzdb7Fwq7GdBBjqcx3wV9
sM4o5EgkQXIl7xUgYD+lRXFLZX3cp2TEM4tfpd+xQTxMbpljYpUIH4TFZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBjlHX5T8/KrA4T+67jkbn4ehO8JMB8GA1UdIwQY
MBaAFAm7YyfN+hZSTcfQM3E4rzJfteLZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9mZmZkZTEtOWQ4Ny00NDA4LWFjYzIt
ZTczNjAzMjMzMDNjLzEvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9mZmZkZTEtOWQ4Ny00NDA4LWFjYzItZTczNjAzMjMzMDNj
LzEvQ2J0ako4MzZGbEpOeDlBemNUaXZNbC0xNHRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALDH7YPj8
K9kzJPPcZIPWDlvWX+CcVw1P0a5D4weXsDYQd3TAlmFejUnLiaE6UguA7N4zqsWV
1NlTlYzD+URvj0LDbNhd2BSdJP5YCIRwBNb6EvI1AHVRUb9VbtochI4g0BNtc2l8
AB7Fi82+uyySC9v7tDbquSTDEW4gSTx+Zr9fjVmiHiU9g+PrB901pxd6uinkDktp
u71LxEGaAO2uN7UwoQwiPPqeW9rYQvzhhKp3ZNdr/OhA0zEaW8aqbH/Pc5huw/SI
xnT8eB3dampw5HOH5qxBuXmHm9wEfsdadxEAo0r7f8deFtOO8NQIHehTvDr6M92g
KdaP0DNqq+Tayg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:13:00 2025 by rpki-client