Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
File: cRc4aXP7-IqGfIKohnsFD8pgsBE.mft (raw, json)
Hash identifier: k/mw3YoHWz67pWibvx/cMA8Xdni+oiYNlZ1mssxV4DY=
Subject key identifier: C8:EB:7F:B2:C9:9D:85:FA:A3:E8:24:50:2E:85:C3:60:BB:1F:63:6C
Authority key identifier: 71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
Certificate issuer: /CN=7117386973fbf88a867c82a8867b050fca60b011
Certificate serial: 0197B88E9F441A89747D70CA3457A98FF6A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 22:00:43 +0000
Manifest this update: Sat 28 Jun 2025 22:00:43 +0000
Manifest next update: Sun 29 Jun 2025 22:00:43 +0000
Files and hashes: 1: __J8knmzK0D7LeHPBcfH9mDXmDA.roa (hash: KGCws32qTez6CiaSk45QNDqYkcqePM9SEByg+MzKHwo=)
2: cRc4aXP7-IqGfIKohnsFD8pgsBE.crl (hash: Q6BxgLTmXCPBWZtvr5546QUCcVJA/KjnVCM67+zEUMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:9f:44:1a:89:74:7d:70:ca:34:57:a9:8f:f6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7117386973fbf88a867c82a8867b050fca60b011
Validity
Not Before: Jun 28 22:00:43 2025 GMT
Not After : Jun 29 22:00:43 2025 GMT
Subject: CN=c8eb7fb2c99d85faa3e824502e85c360bb1f636c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:0a:ff:89:4b:95:c7:2e:95:df:b7:d1:a1:
7e:9b:68:52:a8:ae:eb:4e:ed:8d:f6:9b:95:ca:8f:
65:91:6f:d3:fa:25:48:a7:df:d7:a1:bb:c7:e2:d4:
1e:ab:71:95:cd:cd:63:4c:bd:a6:fd:23:02:80:03:
61:05:64:04:3d:0f:75:72:88:d8:75:ab:42:51:b4:
e5:ad:0d:06:43:62:1e:dc:7e:ce:c5:6d:ac:0c:25:
59:26:e3:91:96:3e:bb:6c:22:a4:9e:e6:ba:34:fc:
13:0c:86:91:ba:52:5c:58:73:41:ef:14:f9:17:5e:
a3:aa:d3:ee:fe:7f:7a:a8:e9:3c:d7:89:62:a4:01:
d2:a5:04:50:7e:f8:fb:fb:47:84:84:99:79:6e:28:
38:8f:e3:2e:21:7e:c4:46:27:7a:0a:2a:69:91:b7:
06:19:81:5d:08:77:91:d9:6a:a9:ad:e5:3b:d7:81:
9c:27:5f:7d:e9:89:78:0b:bc:87:cf:e0:e1:f8:e4:
ec:6c:f5:a8:e5:73:5a:85:dc:11:3c:3d:a7:81:9d:
23:8e:15:a1:46:9d:1f:fe:10:ce:aa:20:cd:66:43:
02:0f:26:1f:ad:09:35:d0:79:e9:15:6d:ae:fe:7b:
5a:0c:72:71:d5:00:df:d7:7b:a1:86:c7:5d:96:2c:
e4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:EB:7F:B2:C9:9D:85:FA:A3:E8:24:50:2E:85:C3:60:BB:1F:63:6C
X509v3 Authority Key Identifier:
keyid:71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:29:6d:38:eb:99:c1:44:ce:07:42:70:0d:df:7a:e0:57:d3:
f3:2f:ac:e6:ee:45:14:6b:14:07:f7:15:90:5a:64:18:97:25:
03:e7:e2:7a:f4:32:d1:79:5d:d2:6e:ec:d1:56:f5:92:2c:95:
fa:e9:2f:d5:4d:9f:b2:1d:4b:46:a1:20:94:4e:9c:1b:20:84:
9f:a3:12:aa:5f:ea:8d:51:64:8b:4e:30:ab:7d:07:49:da:1b:
b0:b5:ae:cf:86:53:4d:34:ee:64:73:03:83:97:f9:05:23:85:
9d:16:94:9a:64:49:69:55:af:b4:6d:84:9a:48:54:cd:64:7a:
1f:87:b2:88:58:bd:f8:3e:44:79:05:2a:ad:e6:f3:76:9d:ae:
5e:4f:45:7f:17:b2:ea:ed:74:31:1e:1a:8f:34:34:12:c6:bd:
d0:7b:16:83:11:2c:9e:9a:7e:95:f1:e9:3d:13:5c:73:ce:ad:
93:22:3b:34:62:e8:71:55:67:c5:8e:5e:8a:a1:70:14:65:3d:
75:93:a7:3e:75:fb:5a:23:3b:3f:a5:43:7a:68:ad:00:cf:47:
e2:ca:39:29:7a:2c:03:f1:00:d8:20:9c:59:37:c4:51:13:48:
67:6e:dc:e0:88:fc:b8:00:3a:33:da:85:d3:17:44:82:f2:4b:
7d:a2:9d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:10 2025 by rpki-client