Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: q8nvWJw5ViipgLkPnwKMq/jmgWe6I2GoXknCHdruNxI=
Subject key identifier: D4:08:C3:CB:D8:B2:F3:45:D2:63:9A:F7:DE:3D:5C:1B:DB:55:B8:CE
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 0197B77C114F97C20A1D52C451594A992030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 17:00:50 +0000
Manifest this update: Sat 28 Jun 2025 17:00:50 +0000
Manifest next update: Sun 29 Jun 2025 17:00:50 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: 4rgOpr+4Z3i3XfgwWkohZ84CPJKpLXbVNQ2FnIQPsys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:11:4f:97:c2:0a:1d:52:c4:51:59:4a:99:20:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Jun 28 17:00:50 2025 GMT
Not After : Jun 29 17:00:50 2025 GMT
Subject: CN=d408c3cbd8b2f345d2639af7de3d5c1bdb55b8ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bf:e5:12:fa:b7:81:f3:78:2f:4b:a8:c1:e8:
65:9b:69:3c:ee:62:90:2f:5f:29:69:4c:62:d6:6c:
f3:55:45:01:c8:fa:44:59:56:b2:14:af:39:6b:b3:
27:24:59:00:8b:e5:6b:4f:12:1e:0a:d5:9b:b8:8a:
3e:17:54:b5:60:2b:72:ad:13:ae:44:94:6e:df:21:
d6:12:ae:9e:09:6a:15:bc:a8:8f:4e:d7:91:08:56:
49:de:8c:4f:4b:1f:79:e8:3e:d4:89:16:d9:42:f3:
9b:43:88:de:8d:4f:45:9d:c6:f4:37:c6:9f:fb:63:
2d:7d:14:77:f7:2c:3c:2c:87:4e:c0:64:46:3f:6c:
35:a4:8b:80:68:f7:53:59:1e:6f:2b:e1:b9:7d:25:
e1:da:7c:c4:23:75:cc:c7:af:a4:6f:a0:17:c1:80:
8f:63:1d:1a:76:b8:f8:8b:c5:9f:70:60:d7:da:4c:
4f:aa:b0:e6:04:eb:4d:65:c8:43:da:ca:bd:6d:1c:
6c:27:9d:a0:f5:af:44:d9:e5:4a:15:3f:3a:f0:88:
46:09:88:6b:4d:64:d7:49:54:49:30:2f:ae:58:ec:
67:3c:f2:d2:c5:de:81:7d:ce:c2:3b:ca:74:f2:f4:
b4:e0:45:c2:b5:a7:84:71:9f:bb:71:af:00:f8:1a:
93:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:08:C3:CB:D8:B2:F3:45:D2:63:9A:F7:DE:3D:5C:1B:DB:55:B8:CE
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c0:c3:67:76:7c:aa:4a:d3:bc:47:5b:5c:b5:75:5e:c4:68:
62:08:14:64:32:e2:45:b8:e1:74:dd:d9:31:4b:d3:4a:98:dd:
24:23:bc:b9:51:6f:04:bf:9e:31:07:89:97:7b:20:00:55:5b:
92:fa:68:2e:f9:1e:5b:ac:a8:77:6c:bd:f5:62:5d:93:bd:c6:
d5:e2:03:69:40:2a:af:58:b8:8d:3e:27:fb:7c:aa:ad:79:7a:
63:9e:7b:fc:b0:06:db:37:01:16:99:7b:8f:4d:26:27:9b:95:
8e:66:d0:b5:cd:c2:15:10:60:28:91:d7:31:a1:2b:be:c5:d8:
b9:aa:0a:db:fd:08:ac:75:6c:65:44:a7:1f:cf:49:a6:fa:18:
b1:84:35:1c:25:b0:fd:b9:ba:28:33:d0:31:55:89:ba:ee:74:
8e:a5:23:95:e1:f3:77:ef:9e:b2:36:f3:3a:f2:95:ad:b6:81:
37:45:4a:c7:f5:ec:6e:2d:c6:40:a8:5a:1a:a4:e7:77:9c:a4:
5c:09:ae:e9:18:cc:65:b1:37:5f:5f:e7:6c:ec:47:ee:59:17:
11:21:c7:b0:ae:50:4a:cb:92:6c:e3:33:e4:de:69:f7:a4:6c:
ca:85:ff:d3:5a:27:a9:ef:2e:d1:70:61:df:b1:f6:a4:aa:b2:
07:d8:20:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:29 2025 by rpki-client