Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
File: 8QMX8k1xpRbXUEO-kPWr4_ocklk.mft (raw, json)
Hash identifier: 7h931m+2fs5KjXoFsnlG8pKhif6iabhXWB9OfPW3GRY=
Subject key identifier: B6:E2:E4:39:FB:CC:50:E5:58:E8:7E:93:BB:DF:FD:91:0C:DD:AF:23
Authority key identifier: F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
Certificate issuer: /CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Certificate serial: 0197B70E58F1EC7EA892C49F870DD6D25FB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
Manifest number: 1169
Signing time: Sat 28 Jun 2025 15:01:00 +0000
Manifest this update: Sat 28 Jun 2025 15:01:00 +0000
Manifest next update: Sun 29 Jun 2025 15:01:00 +0000
Files and hashes: 1: 8QMX8k1xpRbXUEO-kPWr4_ocklk.crl (hash: MQN+DW6rfnD6n1gJGJl9tKbqPLatHvA69Pngw2RFlSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:58:f1:ec:7e:a8:92:c4:9f:87:0d:d6:d2:5f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Validity
Not Before: Jun 28 15:01:00 2025 GMT
Not After : Jun 29 15:01:00 2025 GMT
Subject: CN=b6e2e439fbcc50e558e87e93bbdffd910cddaf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:50:b9:f8:98:46:f9:9b:93:bf:93:71:7c:
a8:3d:2f:cd:90:0b:22:5c:1b:f3:07:b0:c4:fd:b4:
de:e0:2d:0e:5c:47:9b:54:ac:b3:33:f1:88:8b:69:
d3:d2:53:45:5a:ee:7e:ab:46:15:7b:6d:46:25:77:
26:f8:2c:d3:f2:c1:0a:9e:43:fc:c6:b8:bc:d7:5c:
db:0c:5d:bb:c1:d0:c4:ea:af:de:fd:79:b6:50:66:
a2:aa:7d:da:5a:90:1a:89:dc:75:38:31:e2:30:ea:
e5:08:4a:d7:7b:d5:20:77:e6:38:68:0f:de:cc:92:
59:1c:8e:67:ff:d6:d8:7c:28:40:41:fc:4a:d1:51:
5a:9e:76:15:ff:dd:4d:bc:87:a2:99:98:5d:60:3a:
8e:e4:cf:2c:a5:27:a6:43:b0:29:60:0e:0e:cc:f3:
a3:3b:7d:bd:31:34:3d:b5:b6:4c:2d:f3:02:d3:31:
dd:0e:b5:72:44:41:c8:28:22:02:75:af:e1:58:29:
26:6d:45:ff:63:d1:58:db:d4:c1:b0:ae:6a:68:6c:
62:1a:4a:f7:9f:3e:ef:38:9f:8d:c3:50:fd:73:a9:
95:29:93:b1:d4:ac:26:71:d5:a4:28:c6:87:9d:b7:
3a:07:aa:9f:5c:11:28:22:51:76:15:66:7d:c0:2b:
9d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E2:E4:39:FB:CC:50:E5:58:E8:7E:93:BB:DF:FD:91:0C:DD:AF:23
X509v3 Authority Key Identifier:
keyid:F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:d1:45:dc:51:19:6a:04:61:99:6a:af:3f:59:79:51:02:16:
1f:dc:fc:d7:c0:cf:fc:15:81:1b:7b:ba:90:0b:65:bb:88:b1:
d7:b4:5b:f4:50:d1:5d:95:b6:61:7f:01:dd:13:77:d8:26:be:
fa:fc:d0:ed:7e:03:21:2a:6f:06:78:6f:ed:05:a6:9c:96:de:
5d:45:53:f8:a4:c6:de:04:aa:37:62:35:2e:5b:c3:42:d7:66:
57:17:59:17:b3:e2:84:2c:5d:2f:61:1b:71:a4:ed:d6:67:ea:
78:d6:35:cd:38:cf:d3:9e:99:14:3b:5e:c6:30:06:7a:64:60:
84:ac:58:8c:60:4c:ca:b3:a6:09:f0:c7:0a:25:fa:f5:88:8d:
54:0f:5f:76:30:4c:81:17:59:5a:b1:c8:17:c0:13:cd:bb:f7:
4a:c9:cc:dd:52:64:cd:ed:cb:e3:e1:f6:05:38:45:05:40:7b:
46:0a:b3:6f:d5:e4:f9:26:14:34:85:d0:db:23:cd:e7:35:a4:
7a:33:65:53:5a:a2:05:59:a8:99:d4:a1:1a:b5:5c:7e:ff:93:
c2:1f:b7:22:fe:d1:94:b7:4f:ad:49:07:36:4a:f4:02:ca:73:
ed:18:71:01:97:d0:46:ae:01:77:6e:c6:bc:36:62:fd:8c:f4:
41:de:35:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:37:31 2025 by rpki-client