Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: snIQtgUTDqXiQ1ZQv2DI5HJfw6Wg/u0QDgZeVCf8a/o=
Subject key identifier: 15:6F:6A:55:92:FE:E7:AC:BC:30:D4:2A:83:8B:7B:07:19:7E:12:1C
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 0197B77C9CA5E11A657253208AEA61B2077C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 042E
Signing time: Sat 28 Jun 2025 17:01:26 +0000
Manifest this update: Sat 28 Jun 2025 17:01:26 +0000
Manifest next update: Sun 29 Jun 2025 17:01:26 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: JRRnaqXtw+4mP5voEaC/PwOvxYkkME6+WGfsUo92yP8=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:9c:a5:e1:1a:65:72:53:20:8a:ea:61:b2:07:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Jun 28 17:01:26 2025 GMT
Not After : Jun 29 17:01:26 2025 GMT
Subject: CN=156f6a5592fee7acbc30d42a838b7b07197e121c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:02:4e:f3:01:fe:22:c1:6d:8d:6a:b0:0e:
ff:c4:bb:2a:b6:31:58:5a:eb:b9:eb:f4:de:61:b2:
04:cc:cd:a9:44:ea:0c:89:27:81:e3:9e:96:ea:d5:
a7:2b:6b:09:52:17:ff:af:5d:15:16:36:b8:8e:bf:
fc:fd:6b:3a:4a:08:35:1d:56:ec:cc:d1:72:36:ef:
de:5b:17:ac:b3:cc:e7:9c:bd:76:f6:ba:3d:14:da:
ff:9c:8a:9e:1e:eb:98:50:63:36:83:81:4d:21:3e:
68:50:e6:00:98:4e:30:c9:41:1f:6a:a2:d4:9d:20:
26:55:58:0a:23:7c:22:a5:4b:61:65:0c:c9:de:db:
ae:3a:4b:d4:93:d4:b7:e8:d4:09:14:74:ff:a5:38:
e7:65:b2:af:63:dd:71:e4:a9:b0:04:cb:6b:ec:63:
02:be:38:5f:b1:ce:8d:aa:a6:f5:67:25:7e:38:d2:
aa:bb:1a:a8:96:9d:94:8c:9f:48:97:61:67:7e:d2:
6c:b0:96:20:fe:e7:38:49:c7:ee:44:7c:ee:37:ca:
9d:6e:ac:45:0f:e3:d1:91:ae:92:7d:49:b7:27:df:
53:4e:17:e1:02:f1:72:0c:64:d4:32:ae:c0:47:e2:
66:4e:ac:d4:f2:1b:79:99:1f:ee:ae:7e:52:d7:de:
6d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6F:6A:55:92:FE:E7:AC:BC:30:D4:2A:83:8B:7B:07:19:7E:12:1C
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:d8:39:92:fd:b5:87:75:02:57:fb:de:e1:86:f9:ca:1d:dd:
ed:dc:d2:75:a1:37:d4:f1:b8:db:fb:8e:1e:38:dd:c6:3a:f4:
9c:61:dd:0b:22:f2:2f:45:a2:05:b7:1f:a5:6a:cb:9d:48:73:
28:58:65:50:14:a5:ff:07:8c:76:d1:1c:e9:58:cf:31:d2:87:
94:48:b7:d6:f5:53:d5:d7:2d:12:87:65:99:ee:49:55:c6:76:
c5:79:5d:5f:a3:a2:83:87:df:77:86:94:d5:2d:de:98:b9:41:
31:4f:7f:42:47:d1:b7:8d:6e:26:f2:d9:58:33:ec:1d:09:9e:
9f:40:c2:f2:8b:4f:c4:df:ea:e9:a1:41:a1:a9:e1:c3:0f:29:
14:29:ee:6b:9c:1d:85:90:1d:8b:d8:4d:b5:4b:1f:ba:e3:98:
23:df:af:37:28:73:21:ce:66:43:43:3b:65:c0:7d:47:cf:50:
d8:3b:d9:c3:38:0f:14:e8:bf:15:bc:d0:7c:20:3b:29:26:67:
d1:10:fd:bf:38:d3:7c:d9:03:bf:a1:d7:99:05:41:21:78:1c:
ae:62:5a:f2:5a:08:6b:b1:e4:52:64:06:2c:d8:1a:19:a0:79:
f7:24:ee:fd:38:d3:48:e3:2c:b6:67:5a:ff:d4:08:e0:10:67:
6f:23:57:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:00:14 2025 by rpki-client