Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: csUA7VAU+Ayr3peMcbUMBw1lYVL6MoO6D9cnIp2DzC8=
Subject key identifier: 71:87:B1:66:C1:49:26:DC:01:AD:A6:46:5E:F4:3B:22:38:DE:B9:31
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 0197B6D750496B24AF5D92F0760D70FE7B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 14:00:53 +0000
Manifest this update: Sat 28 Jun 2025 14:00:53 +0000
Manifest next update: Sun 29 Jun 2025 14:00:53 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: PqZtXSPI2Gk4fD9oM02GhOtBrTOa9v5wQbhCLLlZWO8=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:50:49:6b:24:af:5d:92:f0:76:0d:70:fe:7b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jun 28 14:00:53 2025 GMT
Not After : Jun 29 14:00:53 2025 GMT
Subject: CN=7187b166c14926dc01ada6465ef43b2238deb931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:58:8a:7e:1a:5d:e1:9b:7e:bd:7e:06:60:d4:
b0:a9:65:74:ae:3f:95:bb:35:60:cd:f7:f8:1c:43:
df:4c:1e:b1:37:ed:ce:86:13:ec:75:75:e7:5f:b5:
f6:9b:b5:e0:cf:d4:90:72:37:95:28:56:25:39:50:
22:90:f0:b3:72:0c:25:c8:1c:ee:17:17:29:87:51:
e3:87:21:64:74:ae:ee:b1:c0:c3:e1:2c:a6:8b:c3:
9a:5e:36:e2:6f:9a:32:d8:c8:31:a9:d0:44:bf:5f:
fe:6a:9d:aa:c9:5e:e5:e3:61:4b:67:1d:3d:9c:6d:
76:b0:64:f6:15:1b:3c:6f:75:a3:14:be:82:b9:ad:
d7:66:cc:23:1c:0b:a6:7a:a6:0c:c9:b1:84:6c:56:
6a:bb:46:0e:0b:bb:e8:8a:7d:5d:a8:49:c3:5f:3e:
32:49:a2:45:a8:7f:3e:59:33:2c:27:f8:77:b1:20:
8b:4d:5b:88:ff:9d:2c:bb:3e:34:e5:5c:91:bb:54:
ba:82:7c:51:64:04:63:da:a7:74:be:cf:c7:38:56:
86:a1:6b:74:49:c5:5c:97:79:3f:8f:78:93:cd:fc:
b6:0b:f1:c6:5b:16:09:3e:55:60:ab:a7:b8:13:40:
04:a1:95:36:83:f3:8e:ab:96:80:f8:01:26:33:88:
24:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:87:B1:66:C1:49:26:DC:01:AD:A6:46:5E:F4:3B:22:38:DE:B9:31
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d9:9b:ee:4d:1a:67:ae:df:c8:62:29:40:a0:df:04:f0:3f:
af:8c:1c:ae:ac:22:f9:17:56:2a:14:6e:d1:0b:3d:bf:48:d5:
9f:fd:35:60:aa:56:e0:d9:fb:d8:12:1e:74:9c:78:69:f6:a0:
e3:73:a0:a6:e0:56:d3:2c:79:76:a8:db:c1:fb:b3:83:d9:15:
08:50:61:86:a3:6c:a6:88:d6:ae:f6:ac:00:69:77:80:41:26:
d1:e5:21:61:79:8c:4d:88:d4:8b:7b:4d:ce:e7:f2:23:60:4d:
68:c1:b6:11:be:4a:1f:8f:53:01:68:9b:7f:9f:62:db:5f:bf:
d2:b2:36:23:d0:de:20:7f:d3:6a:a5:c2:83:da:25:d7:f1:42:
6b:94:e6:b4:c3:ff:73:86:3d:44:11:9b:72:b3:8e:94:ef:7c:
4f:14:9e:6c:43:2d:b4:2b:a6:a4:5a:0c:82:e6:0b:c1:ce:7d:
a1:c8:d1:e6:bb:57:64:4f:d3:ca:6f:18:c5:44:bc:22:20:ed:
85:71:03:cc:28:03:9a:2b:68:84:76:c4:66:5e:ea:49:e0:01:
e0:a5:b4:1e:b6:9a:5c:b0:02:28:51:45:26:41:2c:78:d6:80:
62:83:01:01:2a:65:59:4d:75:5c:5f:94:71:17:9c:8e:2c:34:
a3:e7:70:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:27:53 2025 by rpki-client