Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier: +IJVNSmt+IuKZASYcE+7Llnlx/gunJSQerHy6JxUayA=
Subject key identifier: C1:33:0A:87:A4:EE:F3:A8:D9:1E:89:2A:CF:36:0B:14:97:EC:75:83
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 0197B5C484F58FC591C68AA9D73ABE3A0ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number: 0C64
Signing time: Sat 28 Jun 2025 09:00:44 +0000
Manifest this update: Sat 28 Jun 2025 09:00:44 +0000
Manifest next update: Sun 29 Jun 2025 09:00:44 +0000
Files and hashes: 1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=)
2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: sQ+qVe8g2AA5y8qaBbgFxGLBBS4ECyzB8yhl3YgSsAo=)
3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:84:f5:8f:c5:91:c6:8a:a9:d7:3a:be:3a:0e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: Jun 28 09:00:44 2025 GMT
Not After : Jun 29 09:00:44 2025 GMT
Subject: CN=c1330a87a4eef3a8d91e892acf360b1497ec7583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:54:4d:4a:a5:78:d0:45:c5:84:39:5b:a7:
24:f3:52:8e:ad:34:31:55:c4:f0:df:88:cf:8c:6a:
e4:f0:1f:6e:9b:82:5f:e4:ca:17:8e:39:10:05:03:
d8:f6:8b:72:1b:f5:ee:ca:8e:71:c1:07:af:83:6b:
64:06:42:2f:92:4e:a1:16:63:e2:80:e5:8b:c4:7d:
18:24:89:d8:b2:e9:8c:69:93:54:ba:79:3c:d9:4a:
b2:29:43:69:c1:d2:2f:b2:48:e4:71:b9:6a:ef:db:
32:6e:66:c5:38:7e:27:db:ef:b2:8c:63:3c:78:e1:
57:2c:25:04:81:da:5c:a8:f8:65:bf:5b:3f:8c:93:
7b:f4:f0:d9:3e:f4:3e:05:3e:57:ae:12:07:e1:db:
de:ae:d4:a4:60:13:a7:41:af:f0:65:d6:e1:13:5d:
b1:f8:a7:b9:3a:a8:8a:b3:64:c8:d4:f3:55:a0:00:
89:d6:33:bc:76:ca:15:a7:43:9b:ed:35:91:46:01:
6f:a0:b8:f0:98:0c:d4:0e:e4:20:d3:af:57:28:7d:
6f:26:89:c0:d5:d5:ef:f4:98:ea:5d:a9:a5:ca:dd:
0a:2b:f5:85:a1:42:c9:56:dc:aa:f4:7d:1e:c3:94:
f1:f2:ac:53:39:a1:fd:12:bc:e1:76:f7:80:69:ae:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:33:0A:87:A4:EE:F3:A8:D9:1E:89:2A:CF:36:0B:14:97:EC:75:83
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:1f:78:2d:0e:70:61:e3:f5:9a:85:98:65:2d:ff:30:2d:60:
54:30:94:49:d6:d5:2e:ea:b1:51:8a:c9:62:65:61:c7:c4:04:
b2:00:c0:e3:37:4f:22:1f:31:ca:0d:75:43:c5:d3:fd:a7:4d:
5b:e0:2e:e2:cf:56:98:fa:aa:60:10:c3:88:b7:19:44:86:21:
ec:58:fb:4e:f5:8b:46:14:77:ac:aa:c4:b3:13:6d:8d:6f:51:
4d:33:c2:a8:6e:44:fe:9c:1d:16:e2:5f:92:dd:69:db:2e:d1:
2a:32:79:01:f8:dd:89:b3:1f:6e:1f:8f:47:1d:11:74:9b:15:
2c:51:c7:a8:6c:6a:25:df:3f:dd:28:c4:a2:00:4f:86:c2:87:
05:11:99:ae:7d:df:ef:93:c0:7f:a0:49:19:98:70:01:1d:1d:
56:46:eb:15:5d:a6:f6:c6:2e:49:1b:02:1b:ab:b3:e3:cb:c9:
83:7a:c7:b3:03:18:b7:9c:a1:d3:45:95:8b:a0:90:01:76:ca:
1c:70:18:ee:01:83:7f:c0:55:f8:b3:69:32:56:de:0b:77:78:
a3:4c:99:6a:bb:18:60:67:96:d3:b0:fe:d9:2c:a3:03:78:53:
8e:f9:37:9c:42:5a:d3:47:45:c9:6b:79:29:d9:8a:97:d9:c1:
f4:1b:83:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:23 2025 by rpki-client