Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: 47+8iiyVrr8JHKk0SXl59QweDklSp+glyzpwFaCnZ8s=
Subject key identifier: 7B:77:00:C4:54:EE:19:D0:66:5D:E8:F8:A7:8F:76:C9:F6:7D:B0:24
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 0197B70F205460A10EB69B7602753B29CE4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0F16
Signing time: Sat 28 Jun 2025 15:01:51 +0000
Manifest this update: Sat 28 Jun 2025 15:01:51 +0000
Manifest next update: Sun 29 Jun 2025 15:01:51 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: P7HqnEtxOXsyE7IElggmSZqvdCJ2sNewcWQufx0+PFU=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:20:54:60:a1:0e:b6:9b:76:02:75:3b:29:ce:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Jun 28 15:01:51 2025 GMT
Not After : Jun 29 15:01:51 2025 GMT
Subject: CN=7b7700c454ee19d0665de8f8a78f76c9f67db024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1b:6d:69:cf:2f:8f:88:ed:c6:96:ee:f3:c2:
5f:2c:5d:1f:54:32:22:4b:ef:f7:98:09:54:eb:d4:
29:63:c2:8c:84:a0:59:0d:f0:f3:ac:6c:69:c3:a6:
4c:e9:b8:bc:4e:0b:3f:58:eb:e5:0e:2a:9a:c2:17:
78:ae:27:3b:8b:6e:57:7a:f7:59:b5:3e:71:60:32:
8a:a5:68:d3:8e:08:44:ab:4f:2a:68:a5:66:4e:45:
2e:e9:4b:cc:2e:9f:83:7d:5a:5f:06:62:78:c2:6b:
03:ef:f3:58:1e:31:1a:46:e8:80:1a:22:6c:75:44:
91:d8:70:0e:a8:05:1d:51:03:b6:b9:79:0b:d2:06:
33:e3:b1:ae:6c:43:64:9f:4e:06:a3:53:6e:2c:0a:
57:c7:4d:df:4b:b2:77:83:5d:3e:6c:92:05:e3:0f:
4b:ca:0b:5c:75:b2:9c:6b:84:38:3c:fd:bd:e5:5c:
f6:06:ce:f3:ba:f1:84:bc:bb:48:b4:7f:6f:93:5c:
29:90:df:02:3f:86:0b:f7:c7:92:3b:b9:ed:c1:4f:
d1:5e:9f:e7:6d:bd:9a:ae:6c:2b:0e:58:09:18:47:
f7:a9:ba:43:5f:ef:2a:51:ad:0d:ce:b4:81:4c:ce:
1b:33:26:80:3c:8e:5b:78:f9:b8:a0:b1:12:0a:3c:
b2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:77:00:C4:54:EE:19:D0:66:5D:E8:F8:A7:8F:76:C9:F6:7D:B0:24
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:6f:0e:8d:f1:ea:3e:5d:e3:54:88:fa:6c:2f:80:e6:a1:1b:
5a:ad:58:49:ea:2e:95:96:5a:49:78:f3:27:6a:dd:0c:d0:d7:
3b:69:f4:d6:e7:7c:ee:3c:a8:0d:72:a6:49:63:bc:b9:b3:2d:
b4:22:5e:ed:0b:3f:bd:6b:ec:11:45:0c:a7:7f:ef:b9:8f:b7:
2d:54:20:8f:33:d1:97:a0:be:a2:c2:d8:3d:84:ce:da:e3:70:
29:80:31:9e:bc:2c:a6:07:78:29:69:a9:80:1e:6c:c0:bd:78:
f3:20:f2:ce:9d:87:e1:00:90:90:ff:e6:fe:ec:ce:9c:ff:6a:
b5:ef:1b:46:c5:e7:14:83:58:c7:f8:ab:6c:60:69:6f:a6:d8:
b6:c0:46:ae:8d:f3:21:e8:8e:6c:42:d1:87:11:5b:cb:09:06:
8d:70:07:76:08:8e:e9:98:91:a1:21:a0:1e:ec:69:1f:c4:24:
1c:6d:8c:eb:4e:03:8d:02:5e:33:0d:f2:b4:a0:02:71:1a:c4:
a1:86:88:a2:26:89:e4:55:1b:21:70:b2:20:18:f8:e9:5a:fa:
1c:38:78:49:c8:92:79:43:cd:93:7c:70:6e:df:bc:80:c5:dd:
35:32:1b:54:54:88:4a:47:0d:f8:78:f8:27:69:3c:dc:0c:71:
6e:a2:63:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:03 2025 by rpki-client