Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json)
Hash identifier: aSy+6AtjbZNMRRDwF2+8X/7R/Rn0BDkmQOeh9cyaEcA=
Subject key identifier: 4F:4F:6F:83:AA:FA:9B:ED:54:3F:24:FA:0D:4F:4A:9F:A0:31:71:07
Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652
Certificate serial: 01974B8DCA162F90ED14A7E4C17763BC728B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 18:01:12 +0000
Manifest this update: Sat 07 Jun 2025 18:01:12 +0000
Manifest next update: Sun 08 Jun 2025 18:01:12 +0000
Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: XthVBn66IaIBUVa5QeFXSsTB2SyfdU+QpjvROnrArHM=)
2: FuulQ2OCXlEeKOdXSHSbO4OXD9g.roa (hash: vDsoze7SRq5/DcfNiXEwTROz6jQawFkLYnYc3el4ix8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:ca:16:2f:90:ed:14:a7:e4:c1:77:63:bc:72:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652
Validity
Not Before: Jun 7 18:01:12 2025 GMT
Not After : Jun 8 18:01:12 2025 GMT
Subject: CN=4f4f6f83aafa9bed543f24fa0d4f4a9fa0317107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:85:be:0f:4d:e8:eb:dd:f8:86:7e:02:6c:77:
1e:b1:64:d7:1f:35:84:39:3f:ee:ef:03:a1:24:22:
69:98:ed:0a:e5:48:31:97:d3:37:7c:d9:71:f1:08:
f7:89:00:a2:40:95:6c:ca:d1:ed:a6:fe:2c:ad:7e:
4b:31:d8:03:fa:a4:05:9b:a1:2c:01:35:ed:a1:83:
32:2f:31:67:a8:71:fb:93:b6:80:9c:75:54:f3:96:
ed:d2:65:f1:8d:09:76:83:a3:b0:ba:75:ec:04:83:
b9:bf:30:d3:23:93:35:24:b4:08:a3:b0:54:8a:e3:
90:03:5b:b1:c9:f0:ee:f2:66:a6:d3:55:21:24:97:
81:a3:d9:39:cc:ce:af:de:2d:be:ed:9d:a8:c2:f7:
28:7a:64:70:2f:94:0a:57:e5:40:67:b7:64:a6:aa:
09:40:67:46:96:78:9a:ca:d2:cb:79:80:1f:59:77:
c7:10:1a:30:91:a3:2e:e4:d5:73:1b:de:10:1c:d6:
46:5f:39:fa:8c:fd:05:fd:84:b0:d5:e9:23:e2:c5:
76:46:20:57:aa:c4:ae:c9:e0:6f:2a:ae:ca:30:94:
d5:80:05:e9:74:ad:e8:41:ab:b9:36:11:17:c4:f1:
5d:7d:75:5a:69:80:80:df:aa:86:ef:8d:e2:0d:b0:
4d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4F:6F:83:AA:FA:9B:ED:54:3F:24:FA:0D:4F:4A:9F:A0:31:71:07
X509v3 Authority Key Identifier:
keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:21:5a:9d:64:ad:df:af:51:f9:e9:02:b8:ba:5d:f0:36:29:
37:91:d0:0f:41:18:4e:40:74:ee:83:97:89:97:10:2b:81:3a:
e8:c0:a5:62:e7:08:3b:fe:63:cb:03:11:c7:ea:dc:b5:fe:9f:
b8:d4:fd:2c:73:b3:89:ad:42:16:b5:1b:b5:d3:ae:d3:16:46:
b9:3a:d9:27:40:1d:f0:0c:76:03:ac:3f:51:54:16:40:c5:1b:
37:4b:e4:53:6b:aa:2d:7e:12:fa:3e:39:74:3d:8f:db:dc:e9:
97:c4:ba:a3:26:c6:84:8e:8d:29:28:90:7d:36:2b:21:5b:e6:
f8:5c:56:e4:5a:79:b7:f7:22:2a:a8:cd:cf:47:d7:af:b7:a8:
7f:6a:97:4a:2e:65:8f:93:d3:d7:52:36:85:ca:ac:13:df:58:
37:60:3b:38:6a:e3:c3:62:dc:d5:c1:85:79:8c:8e:8a:57:b2:
4b:70:8c:fa:05:87:49:b9:f8:de:cb:f9:46:80:42:04:6e:2b:
e3:0a:05:7f:21:ee:e5:66:1f:32:32:76:3a:e6:20:ae:a1:44:
98:77:b7:b0:49:fb:fd:db:eb:24:91:5f:92:31:ec:8d:89:7c:
1a:32:86:ff:d3:b5:46:5a:8d:34:b5:50:82:40:3c:bf:2c:f6:
16:cb:2b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:29:45 2025 by rpki-client