Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: Pw8blAA4Dzb0VPij59TX50lisKmslS8EaKdggW+k9P0=
Subject key identifier: 38:7F:65:84:85:D8:24:80:F0:EB:25:5C:7A:4E:80:BB:AE:F5:54:45
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 019746D4AFE3F1308E1B59A8F2CEBB7EE9F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 0219
Signing time: Fri 06 Jun 2025 20:00:33 +0000
Manifest this update: Fri 06 Jun 2025 20:00:33 +0000
Manifest next update: Sat 07 Jun 2025 20:00:33 +0000
Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: PjlrDpg58xv6W5AKHl24zXAbk6VJWK26ID1UrQZOi9U=)
2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:af:e3:f1:30:8e:1b:59:a8:f2:ce:bb:7e:e9:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Jun 6 20:00:33 2025 GMT
Not After : Jun 7 20:00:33 2025 GMT
Subject: CN=387f658485d82480f0eb255c7a4e80bbaef55445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:7c:e6:9a:41:57:14:67:d2:a8:15:1a:fc:
62:55:76:46:33:52:78:88:54:89:d5:d5:bd:31:f6:
15:70:49:2f:07:37:4d:2d:7f:7f:44:90:4e:34:81:
da:8d:49:08:c3:e6:a6:02:4a:be:c0:6a:de:64:05:
1c:c4:c7:3c:34:1c:cb:aa:19:7a:4e:73:39:e1:58:
cb:0a:89:3a:60:57:3e:7c:28:3e:c1:ac:3f:32:84:
99:5e:e9:d9:d6:c5:6e:38:a9:df:b0:62:a2:b1:6b:
e7:dc:91:fd:87:7a:ae:05:f0:03:af:30:a4:80:a3:
57:26:98:0c:6f:26:96:2a:89:7d:bb:a2:c0:2c:0a:
bd:60:23:cd:ea:9e:c9:bf:7b:b6:97:fe:46:50:42:
7f:c8:7e:68:9b:c9:a2:0f:69:63:7f:a1:2f:e5:bb:
22:f4:5e:f5:bf:3b:98:a0:c4:77:bd:1c:05:31:56:
d3:9b:95:0e:bb:cd:88:e6:c7:04:74:8c:88:dd:3a:
1b:c8:ba:d0:67:29:ef:e6:23:1d:5f:86:b2:1e:b3:
74:56:6f:30:99:a8:39:82:ed:38:fe:c5:6b:11:48:
5c:a5:fd:ff:7a:bd:b6:54:4e:2a:10:0f:6c:46:12:
af:cd:75:34:cd:18:59:c7:6d:7b:11:07:ae:87:c2:
14:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7F:65:84:85:D8:24:80:F0:EB:25:5C:7A:4E:80:BB:AE:F5:54:45
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:b8:86:17:78:64:35:fb:2a:dd:84:ef:eb:b2:83:de:f8:bc:
d7:df:8f:02:09:ea:4c:de:e9:e3:c9:93:93:d0:2d:99:d5:cc:
f2:1c:ba:1c:f6:7a:fa:d4:d1:f4:8f:70:49:df:e4:08:2b:4f:
cb:75:7f:09:64:b1:4f:b0:54:bf:9a:85:e0:ac:79:d1:87:83:
b0:cd:c7:6c:76:c8:f0:79:04:76:74:b5:a9:a0:36:27:1f:8f:
bd:9f:8a:ec:6d:a3:e9:26:bf:ac:35:64:d2:a9:17:13:61:29:
00:ca:69:34:28:a9:9e:a0:51:fa:36:50:21:34:54:dd:1e:1b:
b1:39:85:29:15:fa:62:d8:ec:d9:11:67:78:5f:c5:9a:04:55:
d8:47:2b:6b:6c:5d:8a:3c:f3:f6:f9:6c:0c:cd:eb:c4:b5:35:
ed:18:cd:05:c5:1f:81:17:e7:bc:0b:69:fa:31:9c:92:aa:e5:
16:93:2e:93:29:45:b0:e2:00:d1:bc:2f:bc:3f:ad:5d:04:84:
ce:8c:6d:6f:d1:af:64:e9:88:45:ed:bc:52:7d:0d:97:b2:37:
4b:37:f0:a7:0e:d7:ff:b5:69:a6:08:5b:b3:6a:6b:37:c2:5d:
85:1d:b2:e6:bf:2c:17:72:36:60:97:c7:db:48:2e:83:22:52:
f8:f3:c9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:23:48 2025 by rpki-client