Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
File: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft (raw, json)
Hash identifier: k+ZXm6dYAkLvJaHjb+hrllzvqe2xKVHjubSLTxsyGxU=
Subject key identifier: 5D:74:5B:15:75:EA:11:BA:B9:18:2E:17:7C:31:04:CB:C4:8D:98:D5
Authority key identifier: F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
Certificate issuer: /CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Certificate serial: 0197B6A204FC3832C3D1989C23066D5D0F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 13:02:40 +0000
Manifest this update: Sat 28 Jun 2025 13:02:40 +0000
Manifest next update: Sun 29 Jun 2025 13:02:40 +0000
Files and hashes: 1: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl (hash: PdMYEtLSNuqqORY9a3A2ISi/fnPIel3gwjfeGxiMsyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:04:fc:38:32:c3:d1:98:9c:23:06:6d:5d:0f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Validity
Not Before: Jun 28 13:02:40 2025 GMT
Not After : Jun 29 13:02:40 2025 GMT
Subject: CN=5d745b1575ea11bab9182e177c3104cbc48d98d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:60:bc:0f:1a:f0:6f:44:16:8c:9b:91:2c:
f1:cf:db:46:58:06:47:e1:0a:df:8f:74:f5:ed:22:
d9:75:86:8c:e0:31:fd:7d:ef:d3:ea:d4:81:68:19:
ee:68:d7:63:3e:76:eb:e1:28:39:f8:8e:74:9b:5b:
13:0d:9e:72:71:74:7f:b1:e9:73:34:10:02:93:c9:
16:34:ac:0b:8e:c1:da:21:f5:d7:1d:47:b1:0a:b5:
63:36:20:81:d0:92:ac:18:96:3e:86:bc:34:f0:39:
ee:b0:ce:1f:18:65:3b:a1:10:56:30:a8:2c:5a:0d:
3a:c5:30:5c:99:9a:3b:46:88:9f:b2:87:6d:53:c3:
01:18:2d:e9:83:3e:75:8b:ff:53:e8:b8:53:6f:fe:
cb:b9:74:8c:da:91:d8:df:62:5a:0a:f2:9e:a4:fa:
d5:40:96:4f:23:4b:7f:7f:91:90:6c:49:3a:68:14:
1f:77:03:63:d1:e9:69:6e:a0:63:e0:72:8e:7b:b0:
c2:d3:25:ea:13:3d:0a:a9:ad:34:16:9a:f9:f8:95:
46:76:2f:ee:b9:9e:b1:e1:40:36:88:f3:bd:77:96:
c0:35:ab:4b:7f:52:04:c0:97:9b:76:aa:c7:d8:5b:
50:fa:d2:fd:3f:a3:13:7f:b5:0c:5f:33:24:f1:0b:
01:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:74:5B:15:75:EA:11:BA:B9:18:2E:17:7C:31:04:CB:C4:8D:98:D5
X509v3 Authority Key Identifier:
keyid:F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:15:11:e5:ed:05:58:ba:cc:15:70:45:2b:47:94:7d:a8:db:
1a:0d:eb:d5:c4:b5:d8:89:05:9f:4f:d0:e1:05:1a:65:5f:95:
51:0a:3d:2a:1b:7b:75:c5:a9:d5:30:d8:f0:8a:c2:38:24:5f:
00:7b:ad:e1:76:13:00:fc:00:03:30:a6:de:96:68:bd:03:c9:
06:22:ec:29:74:54:0c:17:23:34:3d:aa:94:26:96:0c:9d:ab:
95:bc:14:7d:af:b4:76:92:f7:42:9e:19:23:b8:8e:cf:e6:85:
3c:ff:b0:4f:07:d6:a7:ed:22:e1:51:e9:82:be:fb:58:4f:bc:
6c:39:9b:96:53:03:23:d1:95:77:83:85:d4:91:ec:3c:3a:d0:
fc:14:36:b4:b5:21:bf:9a:96:b6:2d:d5:bf:1a:67:5b:2b:6f:
3d:73:a4:bc:97:85:e6:c9:db:54:8e:66:b9:1d:d5:53:20:67:
2a:cb:05:3c:8f:dc:bb:89:60:3d:fa:85:fe:df:5e:b1:6b:4c:
80:a3:c6:7d:21:76:eb:45:6d:b6:1f:a6:1f:91:c7:e4:ea:7c:
47:85:52:1d:2f:44:e4:23:3a:6f:ce:a5:56:3b:73:2a:3d:dc:
bd:67:0f:98:4d:fb:c2:e0:e1:5b:83:f3:ee:9c:85:ec:6a:a6:
a0:b9:a7:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:51 2025 by rpki-client