Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: SCqNZljOnpc3SMk295d1oBp2mL00mF1pCLpsHCL1tRY=
Subject key identifier: E8:83:E5:65:69:7F:2C:8C:19:94:EC:46:EB:6B:A0:93:BC:8F:AB:37
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 0196C3B9E11C42EB7B496C8D16249CBC6FE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 1230
Signing time: Mon 12 May 2025 09:01:00 +0000
Manifest this update: Mon 12 May 2025 09:01:00 +0000
Manifest next update: Tue 13 May 2025 09:01:00 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: RwOtMJsFgB7GS83OtjjwGouCJF9xema+aFlwnBuupnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:e1:1c:42:eb:7b:49:6c:8d:16:24:9c:bc:6f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: May 12 09:01:00 2025 GMT
Not After : May 13 09:01:00 2025 GMT
Subject: CN=e883e565697f2c8c1994ec46eb6ba093bc8fab37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:af:4f:a9:22:ff:bf:82:3f:c3:52:e9:40:
29:c9:38:4d:27:5c:6c:35:90:98:50:2a:33:84:af:
19:94:c2:48:bc:9f:75:2d:a9:6a:2c:0b:fa:80:c9:
c3:c7:ea:34:d9:4f:1a:1a:af:68:b1:73:99:a8:a6:
4c:9f:ec:3b:44:be:78:6b:fb:6e:ec:a3:6c:65:ea:
e5:a8:d1:1a:eb:8e:47:1d:ab:fa:4c:39:2f:93:ef:
e6:14:4b:07:c1:ec:6a:d5:ad:52:64:3c:85:40:be:
b3:02:bd:6a:39:45:f0:f8:1f:db:ae:84:06:25:c8:
87:7c:6c:a2:81:0d:d4:0b:21:c2:33:33:8f:0c:34:
58:2a:51:bf:6e:4c:1f:91:91:46:b4:a6:05:bf:c5:
8b:5c:04:90:a6:0a:7f:ff:39:8f:7a:14:91:95:e4:
9d:71:22:3d:a0:0a:a9:a8:3b:98:a6:b6:53:75:26:
df:0f:82:e4:b5:f5:57:38:a0:18:0e:91:9e:3c:fd:
f9:2d:60:7e:15:9e:86:ae:58:42:ff:5b:7d:e9:c0:
2e:89:1e:a3:39:16:79:fe:7b:0a:52:e3:30:3a:2f:
7c:e0:ae:18:67:e2:d7:19:14:dd:9c:e9:46:57:d4:
19:44:f7:f8:1c:32:e0:38:a3:a9:b4:ea:0f:2a:dc:
51:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:83:E5:65:69:7F:2C:8C:19:94:EC:46:EB:6B:A0:93:BC:8F:AB:37
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:f8:21:6d:e4:be:28:e5:bd:2d:df:7f:df:53:9e:6d:b3:18:
2e:ce:82:03:04:a3:99:24:aa:64:f4:09:20:14:45:04:19:7c:
2c:8c:9d:8f:80:7a:11:f5:63:ce:b6:86:d3:d4:a3:43:f9:d7:
db:c4:aa:a3:f8:d0:7c:d9:1e:4d:e8:f0:37:84:2e:d3:23:20:
03:e8:b6:a5:ab:4e:15:bc:5c:78:96:6b:8f:c3:2d:aa:d8:71:
4c:18:69:8f:41:0a:23:2f:ac:c8:ec:62:71:21:cc:b0:f6:fb:
03:1c:64:a5:c4:1b:9b:22:f0:5a:7a:30:dd:95:19:69:08:1a:
3f:81:35:bd:30:a8:6c:98:d0:b3:ec:bf:33:52:40:98:7e:d2:
33:1f:d0:3d:cf:28:2b:15:51:0b:d5:45:e2:17:54:1a:f7:a0:
24:71:f5:50:a2:62:cd:2d:ce:5b:84:5b:ba:f4:f1:95:3d:58:
05:dd:cd:23:08:10:ae:d0:b6:87:e5:4f:1a:04:8b:4d:a4:b0:
fb:01:d7:c7:75:1d:34:b3:f8:45:c2:a5:c6:f2:9f:c6:bd:1c:
34:d1:3c:c4:42:a8:2e:e0:8a:d9:be:68:fc:42:fc:68:cf:ec:
79:96:9b:fc:90:5d:7f:ad:d1:34:50:32:69:c3:85:6f:b6:db:
07:9e:4f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:11:38 2025 by rpki-client