Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: g/OCBXRNWp/lLrd8bLrdqVD04ssm6jG6dE+RbA92vxU=
Subject key identifier: 3C:AE:E0:C7:C8:65:01:B8:2C:08:80:E1:4A:8D:FA:44:B5:93:FC:E4
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 0197B6D759E2E5E200F34C10BFE1C1E47142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 15C9
Signing time: Sat 28 Jun 2025 14:00:55 +0000
Manifest this update: Sat 28 Jun 2025 14:00:55 +0000
Manifest next update: Sun 29 Jun 2025 14:00:55 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: nY6I8leXyxDLptqFi5EhZxFeiCzEKGLUzsUGgMHGiOU=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:59:e2:e5:e2:00:f3:4c:10:bf:e1:c1:e4:71:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Jun 28 14:00:55 2025 GMT
Not After : Jun 29 14:00:55 2025 GMT
Subject: CN=3caee0c7c86501b82c0880e14a8dfa44b593fce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:46:9e:b4:c2:d4:9a:a6:aa:7e:6a:5f:00:
10:e7:29:69:fc:f6:09:65:78:98:e6:f2:51:29:83:
b8:ef:ce:21:49:72:94:4d:f4:93:c2:e2:ee:30:f9:
75:51:c4:a0:72:44:23:1e:c1:bb:70:9c:48:f7:ec:
eb:26:2a:ed:b3:7a:4a:d9:e4:66:54:92:e9:71:eb:
5b:68:3b:8d:4a:4b:21:99:f4:32:56:01:6c:4f:b1:
a9:82:d7:f6:4f:86:76:eb:38:41:ce:02:56:d8:d0:
d4:d3:e6:f5:ec:c0:d5:a3:2d:3d:91:58:98:ac:00:
68:8d:60:1d:10:33:6a:4d:e7:4d:b9:e5:b5:12:5f:
6c:4c:7b:e2:6f:09:e2:d6:61:fd:d2:95:30:5b:e6:
a4:ef:4a:70:31:68:b2:07:ae:b8:dc:9c:3e:11:26:
4f:25:13:fc:f8:36:ee:1d:90:7d:79:29:16:ef:76:
a3:44:e5:87:89:0d:2d:c0:91:2d:c4:62:e4:06:89:
62:7f:16:32:36:ce:eb:7f:3c:af:1b:11:86:ea:e2:
7a:58:df:bd:07:8f:fb:85:a3:54:39:71:5d:4b:d6:
e6:d3:0a:71:55:df:89:63:17:b9:5c:36:7b:3f:96:
b6:d7:7d:03:32:c0:cc:78:a9:84:fe:93:1a:a5:e8:
df:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:AE:E0:C7:C8:65:01:B8:2C:08:80:E1:4A:8D:FA:44:B5:93:FC:E4
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ad:4f:a5:3c:34:f7:9b:c4:8a:33:1a:1b:07:f5:76:f1:b0:
6f:22:85:19:12:0a:88:a3:06:99:ba:a6:37:00:0e:fe:7e:98:
76:11:31:dc:05:92:d7:9b:ab:68:01:63:3b:47:0c:4b:8d:8c:
d6:e4:2f:ff:9c:5e:73:df:52:f3:de:29:1d:8d:b8:b5:27:0e:
1b:7c:da:b0:d8:d0:91:d4:62:f8:71:4a:c0:e5:87:40:95:90:
4c:8f:c9:e2:78:80:97:9e:30:0d:6f:12:6f:c7:17:e1:00:bb:
cb:bb:f4:09:fe:9b:12:59:17:06:5b:e7:bd:fd:24:e3:42:46:
f9:c2:33:de:41:16:9f:9c:f9:5e:d9:0e:08:1b:d4:2d:5c:5e:
fb:db:2a:75:11:a6:a7:88:94:d5:8c:12:07:44:ee:48:91:e0:
88:fd:02:cf:0e:3d:b1:55:5c:21:5d:31:7e:d9:ba:da:48:4e:
d8:95:cc:e2:c2:4b:f3:21:37:9a:28:70:95:77:3e:a7:46:7e:
01:7e:bc:38:50:43:d1:26:79:15:51:85:8e:05:a3:dd:65:17:
ba:36:e9:df:2c:92:f2:9a:e6:51:f6:f7:f3:47:a7:24:ce:1e:
b2:46:94:21:b9:1c:8e:6b:4b:f0:af:4c:a6:e1:d2:e2:14:d3:
61:ed:25:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:58 2025 by rpki-client