Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: mrXBDd1ewQDzDlbDWwnR9X2n1Lv6YlLaclpv0NwCVpA=
Subject key identifier: EE:5F:60:E8:46:34:77:7F:D3:04:8B:D8:EA:5D:6D:D7:4C:2B:34:CE
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 0197B7B2F38962378E147C8D66ECADB9071F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 1584
Signing time: Sat 28 Jun 2025 18:00:47 +0000
Manifest this update: Sat 28 Jun 2025 18:00:47 +0000
Manifest next update: Sun 29 Jun 2025 18:00:47 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: QXmcsOh4zec/1hMBHWEG8qHlN2pUBiMGn7/dtMIF1Nk=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:f3:89:62:37:8e:14:7c:8d:66:ec:ad:b9:07:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Jun 28 18:00:47 2025 GMT
Not After : Jun 29 18:00:47 2025 GMT
Subject: CN=ee5f60e84634777fd3048bd8ea5d6dd74c2b34ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:8a:df:50:78:10:76:3d:91:d3:36:e6:57:
ef:16:f0:3f:db:94:43:8d:dd:dc:a9:5e:6a:05:ff:
76:a5:c3:91:cb:43:ff:c9:ee:18:3c:05:d0:6f:7c:
fc:84:40:5c:d8:fe:76:2d:d0:44:e1:b5:7a:1c:2b:
8d:96:46:98:12:52:d4:a2:29:49:0b:bc:57:c0:fe:
e3:ac:e9:62:1c:67:75:84:ee:3b:e4:52:a8:08:4c:
bb:0c:d4:e2:12:8b:2b:c5:12:8e:34:5f:80:84:5a:
93:26:c4:1f:e0:43:ea:d4:2a:bb:58:21:4e:d8:1a:
57:5c:85:6b:58:9a:8d:3b:a9:52:8d:93:cb:b6:47:
a0:fd:fc:82:42:7d:4d:66:61:e8:b1:ea:64:b7:1b:
a8:da:d9:1e:13:d0:96:f2:93:44:d6:c1:8a:5d:02:
94:bc:17:33:da:99:37:0e:2b:5b:f1:21:91:d4:fb:
2c:a9:12:9d:e8:95:34:06:b5:38:d0:9f:df:f5:59:
8d:99:1e:f8:7d:0f:95:7a:e1:a5:8e:40:1b:c8:d6:
82:0c:ce:2c:29:90:ba:1f:d2:b5:4b:92:86:f8:99:
91:92:96:35:79:18:7c:0c:1c:f3:64:dc:10:80:f4:
34:a9:7b:9e:3c:12:93:88:f6:1b:aa:bf:cf:d0:55:
f0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5F:60:E8:46:34:77:7F:D3:04:8B:D8:EA:5D:6D:D7:4C:2B:34:CE
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:15:15:82:18:ac:5b:9f:39:03:e2:2c:b3:68:b0:76:45:8b:
b1:c8:1d:6f:39:da:83:b4:d8:7e:38:9a:42:3a:c8:39:ed:6e:
1e:28:64:08:e5:7f:67:b5:3a:9e:b5:46:a5:22:43:ed:cf:d6:
a5:54:2c:25:23:9d:08:57:5d:b9:f0:73:46:65:db:00:e4:3b:
15:fe:c9:f7:6b:ba:4d:ef:94:48:14:6d:2d:de:db:64:3d:fd:
4e:3a:18:6b:b9:1e:93:7c:c3:3f:26:89:b4:61:0f:13:12:e8:
bc:b3:76:1b:11:d7:8f:68:8f:39:30:6d:55:56:8b:92:eb:b3:
9e:d5:ae:4d:de:68:dd:69:7a:91:a6:2a:5e:ee:f7:19:fc:d8:
82:8e:50:b4:34:0e:d7:dd:81:d5:c1:69:8a:ce:4d:1a:ee:86:
77:a3:fc:58:ab:7e:30:3e:2b:a7:83:12:2e:91:10:de:51:c2:
3d:ce:c8:1b:67:7b:25:33:46:d0:08:af:68:9e:d5:de:90:d7:
cc:d1:3c:35:b9:41:0b:c6:d8:9c:a9:ca:7e:e6:ac:f8:43:ca:
40:ce:3a:f3:02:90:93:7c:4f:ad:3c:89:5d:36:d4:ea:ab:f2:
b0:e8:c4:2d:fb:9f:3f:a1:f8:fd:a5:cc:48:c1:01:1b:08:4a:
58:cd:96:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:49 2025 by rpki-client