Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier: 2lPoG5ttcg1hJzLMdVhRqvGcdUTiv1f2E05ggiw+si4=
Subject key identifier: 5A:8C:78:2C:4C:4E:0A:DD:2E:FB:50:01:72:25:DC:11:9B:2F:00:08
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial: 0198D4742F18E25C0E08AD8F0005DC1D2BE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 01:04:00 +0000
Manifest this update: Sat 23 Aug 2025 01:04:00 +0000
Manifest next update: Sun 24 Aug 2025 01:04:00 +0000
Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: LFif2aG8bjpERIg6wi87qiUQua3bPcxA3xWWGQRBeL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:2f:18:e2:5c:0e:08:ad:8f:00:05:dc:1d:2b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Validity
Not Before: Aug 23 01:04:00 2025 GMT
Not After : Aug 24 01:04:00 2025 GMT
Subject: CN=5a8c782c4c4e0add2efb50017225dc119b2f0008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:40:34:d0:7c:7a:1b:87:ec:78:83:e6:2a:33:
f1:c6:6b:fb:8f:cd:00:bc:14:b0:ec:a4:40:f7:74:
c7:e5:05:4d:7a:bc:41:6b:39:7a:12:e4:00:d9:7a:
82:99:c6:11:ec:66:15:93:0f:5d:9e:ec:84:b9:43:
78:fd:28:9c:8a:e7:8f:3e:60:52:8c:94:7f:16:36:
f7:50:43:ec:1a:64:df:b8:57:b0:3c:24:55:a7:fb:
97:29:b1:cd:de:3b:20:b2:d3:54:be:d9:a9:fe:7e:
73:48:82:d0:21:a2:89:73:9f:be:5c:0e:72:48:e6:
c9:70:c2:63:99:49:6d:75:b6:28:f4:72:81:fe:7f:
c9:21:0d:ce:66:6a:c9:79:2c:64:83:ad:0a:07:c4:
ab:e2:bc:15:32:53:b9:1c:ac:ac:0c:95:68:ad:04:
8c:c0:9a:7b:f9:6c:8d:b8:88:1e:7e:11:a1:36:d4:
9e:56:52:d5:be:de:ff:a3:24:ba:95:16:21:99:05:
bd:c2:2a:58:0a:d5:c3:40:27:5d:55:84:99:c8:00:
05:5b:ab:d0:74:af:9c:07:3a:46:4a:d5:02:69:08:
f3:e9:02:59:b8:94:5c:d9:14:de:7b:f1:fd:fc:76:
50:f9:91:86:0d:6a:8e:7d:b3:81:7a:dc:e8:73:63:
6f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8C:78:2C:4C:4E:0A:DD:2E:FB:50:01:72:25:DC:11:9B:2F:00:08
X509v3 Authority Key Identifier:
keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ae:6d:8b:84:f6:4f:de:ce:dc:63:08:b3:ef:58:93:03:f4:
19:a5:6d:ac:98:26:6d:0c:99:98:70:87:8a:08:66:fa:75:49:
5f:94:71:13:4b:e1:eb:0e:c7:3c:9a:ea:41:17:a4:19:df:2c:
5e:96:d2:83:14:bd:5e:da:37:ae:25:ec:54:6f:a7:a5:75:50:
de:a5:1a:ee:26:a2:99:09:71:b4:22:63:f6:aa:44:02:9a:0a:
f8:16:dc:f0:0a:46:62:0e:45:ad:b4:e3:cf:21:d2:83:62:f3:
8f:4a:d8:c6:72:de:de:52:3f:cb:a0:b7:72:e1:0d:ec:c0:30:
e4:af:7d:ff:d8:a2:ed:d5:83:2c:04:fb:a3:5a:cc:b0:b0:d9:
53:20:80:65:68:d3:4a:61:67:fe:45:8e:d5:ce:cd:d7:c4:2a:
6d:f0:cf:bf:f5:70:1f:47:c7:0f:b9:04:32:82:75:8e:2e:ba:
e2:ab:b0:57:86:fa:e3:f4:3a:37:3f:8b:00:e5:b6:fa:52:33:
f7:e8:45:fa:a8:6d:c6:2d:38:06:85:11:22:7d:dd:be:32:dd:
fc:68:e3:90:75:4e:48:cf:e9:ce:fb:8b:5f:9c:35:09:95:04:
5c:3c:37:8a:7a:7f:b9:83:a9:a6:d5:ee:13:78:3c:d1:60:7f:
39:5e:1e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:08:54 2025 by rpki-client