Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: 2Dfe1SmL7Sz0h6ZZzF9D6xkQfzLqmzr5kpygpl2D6CE=
Subject key identifier: 30:FE:72:F8:1E:45:4C:F7:A3:C1:B6:93:33:04:6C:8F:42:C4:50:2A
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 0197635EE931F2C2A15ABA2CA7963604ACCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 10CF
Signing time: Thu 12 Jun 2025 09:00:53 +0000
Manifest this update: Thu 12 Jun 2025 09:00:53 +0000
Manifest next update: Fri 13 Jun 2025 09:00:53 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: 6q/wfsApWjr1ub2ALKILCNieNjPfu/AYb0fNwtoy15c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:5e:e9:31:f2:c2:a1:5a:ba:2c:a7:96:36:04:ac:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Jun 12 09:00:53 2025 GMT
Not After : Jun 13 09:00:53 2025 GMT
Subject: CN=30fe72f81e454cf7a3c1b69333046c8f42c4502a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:36:e4:38:ae:67:0d:8e:ef:dc:a4:80:f9:
c2:b2:60:9b:3b:06:2c:dd:72:51:57:6a:6f:d8:d2:
34:a5:b5:d9:b7:30:02:44:19:3b:30:d6:90:5b:61:
85:18:93:85:ce:91:ff:c7:22:34:be:67:29:ff:74:
11:11:7e:58:9f:c9:d9:bd:a1:99:f7:4f:66:37:96:
dc:f6:3e:64:1c:cf:18:c7:3e:49:04:33:dd:32:2f:
0f:ca:2a:7e:ba:fb:0a:fd:41:00:9c:74:0f:c8:72:
ed:9d:d9:a0:8d:c4:25:fe:6f:2a:4a:c5:61:e9:09:
0b:1d:7b:d3:a2:a2:21:37:2d:51:39:00:ee:81:ce:
7b:22:aa:2c:47:97:73:0d:e5:c4:01:9d:f7:22:e6:
76:e2:e0:4c:cb:d1:c2:41:b9:8e:79:11:24:84:91:
5c:23:cb:b7:df:e9:a3:62:e9:cf:fc:d5:3f:96:7b:
b4:5a:45:78:d6:bf:9a:4b:b1:e5:02:2e:a9:89:eb:
97:41:11:b3:67:64:8c:5a:1a:b7:1e:13:4c:19:65:
fc:e5:2a:ff:50:67:65:35:b8:7b:c2:8a:d4:20:4f:
64:65:2e:6a:d0:ed:2d:c9:67:70:89:70:5e:17:04:
bb:0c:04:3f:08:6a:4f:d6:0a:3b:87:75:ba:af:34:
1a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FE:72:F8:1E:45:4C:F7:A3:C1:B6:93:33:04:6C:8F:42:C4:50:2A
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:59:21:4b:05:fd:ae:39:66:da:d8:8e:4d:5e:c0:50:73:96:
0a:e9:3e:05:94:37:e5:82:f8:30:62:a4:4e:d9:36:4a:7f:61:
b7:5a:58:2e:e1:e2:42:ef:9a:d1:10:89:f5:bb:c1:48:11:ad:
9a:e5:5f:44:a2:1f:e7:66:1f:0c:13:30:69:bc:f4:ad:b0:59:
7e:d3:26:75:2d:84:bc:e5:d0:39:11:51:05:e3:04:b1:18:64:
3b:ae:cf:b7:c5:78:5f:55:e5:78:bd:6d:f4:c9:10:f1:44:da:
39:5d:87:c3:1a:46:f3:11:7c:95:fb:fe:08:ca:aa:2b:84:25:
07:14:b4:b3:0a:39:87:fe:57:26:69:36:78:39:55:d6:d0:3f:
da:87:b0:5e:5d:b6:02:e9:18:0e:54:25:a8:cf:fc:e4:22:76:
77:ad:e6:0e:fa:4f:c4:6a:30:30:5b:60:b4:13:3b:82:ee:0b:
3c:b8:23:57:e5:2c:18:04:4b:39:f2:34:5b:f2:f0:ad:97:72:
7d:18:6b:21:6a:9b:db:9c:df:df:d8:34:ae:f0:9c:61:60:e4:
20:48:d7:09:f7:35:4e:68:eb:5c:b5:dc:6a:1f:eb:06:72:e7:
29:d5:be:06:64:c3:9f:f0:7f:ac:c6:ac:79:2d:ba:1e:8b:c1:
e0:71:ad:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 11:31:59 2025 by rpki-client