Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: qRJsaR2hOjfXSx4eC7D52B+7JtOIzGkM8/Owh/Ms6Z8=
Subject key identifier: 11:D7:82:DD:1D:1F:36:AC:72:CA:A8:EB:A2:F9:61:4E:0F:FC:2A:4C
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 0197B70E9BE8D0A6448BB2CAD3384F573DFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 12AE
Signing time: Sat 28 Jun 2025 15:01:17 +0000
Manifest this update: Sat 28 Jun 2025 15:01:17 +0000
Manifest next update: Sun 29 Jun 2025 15:01:17 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: VK6ztAWW3WaugWoNsN1nOzDK9+vznSUoNvEYBhbihYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:9b:e8:d0:a6:44:8b:b2:ca:d3:38:4f:57:3d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Jun 28 15:01:17 2025 GMT
Not After : Jun 29 15:01:17 2025 GMT
Subject: CN=11d782dd1d1f36ac72caa8eba2f9614e0ffc2a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:f6:f1:9d:79:d7:90:ad:72:4c:d0:c2:1f:
66:32:22:66:d9:02:05:d0:15:fe:05:8c:d9:98:37:
1f:7b:68:c3:e5:09:dd:54:61:aa:62:4a:b0:49:54:
35:09:b0:40:48:be:58:ca:96:7e:1b:d5:52:1e:ce:
04:36:05:69:af:c0:02:05:25:1e:39:00:2c:90:33:
3c:5a:ff:ba:c2:8e:0c:b0:15:34:3c:e2:fc:dc:20:
a4:96:ad:2c:02:51:2c:7c:e6:e2:c2:7f:4a:b7:34:
f7:63:bd:7e:cc:b7:d8:02:2a:26:36:7e:bb:78:b3:
56:0a:a4:ea:8e:a4:e7:42:4b:79:6a:4e:b3:4d:5f:
08:64:ee:dc:eb:45:ea:55:a9:4e:42:be:84:96:36:
3b:39:1a:75:66:bb:2e:23:a4:2a:33:4f:97:ae:39:
c0:0e:f7:80:36:27:ff:9c:83:6a:80:12:36:b4:c5:
a1:d9:6e:73:f4:97:99:16:75:5c:40:3b:56:ed:8e:
50:0a:18:4a:0b:87:26:6c:d6:37:17:6e:56:65:aa:
57:92:26:05:9b:b0:4e:c4:1c:c0:c3:dc:fb:fb:c1:
10:80:d2:da:e5:ed:94:e2:6c:83:f2:07:ca:53:26:
39:a2:38:c3:2b:fd:2b:0b:32:32:6a:f8:52:ac:8c:
4b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D7:82:DD:1D:1F:36:AC:72:CA:A8:EB:A2:F9:61:4E:0F:FC:2A:4C
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:40:60:67:a9:f3:d2:64:94:f7:5b:cf:54:b9:68:9c:43:3f:
3e:5d:29:35:61:49:95:2d:f4:8a:8a:6b:c0:ce:bd:f9:18:05:
c4:b7:29:85:30:b9:1b:87:22:b8:bc:40:98:2a:bb:96:fb:75:
75:63:66:b3:b5:1f:22:8a:63:72:0c:47:2d:4b:5b:fc:6b:01:
02:73:10:66:6b:f5:19:53:5d:cc:79:ad:fe:2e:10:73:e2:72:
db:ff:dc:cc:40:89:91:76:55:29:67:b3:2b:2d:02:e1:ac:08:
be:90:7e:ff:eb:63:4f:c6:8a:3a:37:a0:21:51:8b:30:ca:13:
7f:ed:2c:e3:1e:ab:ae:60:af:3f:cf:be:5e:e4:b3:22:66:9c:
10:37:74:94:a7:8b:f8:58:44:db:69:d4:bd:c0:aa:cc:ce:1b:
23:f7:89:b1:66:94:ba:cd:47:1e:88:b3:97:85:34:25:3e:12:
d4:8b:50:67:82:77:9d:b4:80:63:9f:82:18:10:c6:6b:f9:57:
72:8e:7b:5c:7f:b9:79:3f:45:b8:bc:e0:94:de:6d:6e:63:5f:
ad:8c:0f:54:ab:af:9c:b6:67:90:39:58:83:a3:76:90:8f:24:
5e:e4:27:62:01:c8:56:49:63:33:db:19:38:95:26:9d:05:e7:
ee:c2:e2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:08 2025 by rpki-client