Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: r59l1obWquPimZSniZCW6VpjYUka4yywmC5no5ST2zE=
Subject key identifier: 81:CD:1E:84:74:59:4C:27:D8:8D:28:C5:99:3B:83:EF:E0:90:43:41
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 019759B6950B8090A19020016E8E9C02B052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 10CA
Signing time: Tue 10 Jun 2025 12:00:27 +0000
Manifest this update: Tue 10 Jun 2025 12:00:27 +0000
Manifest next update: Wed 11 Jun 2025 12:00:27 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: G/wwVt91xfe0yUYP2TPKXwrGWyU8ETVVHvaK6Q2mivQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 12:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:b6:95:0b:80:90:a1:90:20:01:6e:8e:9c:02:b0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Jun 10 12:00:27 2025 GMT
Not After : Jun 11 12:00:27 2025 GMT
Subject: CN=81cd1e8474594c27d88d28c5993b83efe0904341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:1c:b1:c1:13:44:16:f6:43:70:9d:08:ba:
05:b2:74:df:15:a0:07:75:6b:c5:97:7e:16:93:32:
57:dc:02:7b:10:ae:4c:22:11:6c:50:88:95:17:3d:
0b:e6:af:af:bf:f1:cd:ac:79:57:d1:73:b3:40:20:
18:0b:29:6d:0e:08:79:e5:fd:d9:43:d9:cb:6c:ee:
c5:cb:f7:dd:e3:34:04:03:1e:12:69:89:b7:4e:64:
27:4b:7e:8e:3c:8b:41:17:26:e1:74:55:0c:3c:86:
31:14:f9:5f:9b:95:48:9c:31:14:e4:dd:01:f9:c0:
e5:39:4a:f6:56:9f:33:9e:81:b3:d4:bf:6b:9e:ea:
d7:22:2e:6c:52:b8:0a:b9:26:a3:35:b6:e6:dd:2d:
d4:b0:cc:49:88:27:f6:3f:2a:ca:7d:52:cb:52:f0:
99:77:49:cf:e8:6a:29:e2:de:ce:e3:4a:ca:e4:f5:
ba:b7:a5:d7:a2:f9:84:39:40:7c:07:25:4f:82:14:
f2:7d:df:0f:45:b1:0f:b7:b0:f7:f3:b8:51:18:4c:
09:66:db:e7:7c:96:c3:a3:56:b2:68:ce:61:45:f8:
d4:0f:d2:09:87:4b:f5:a3:d3:ea:21:b9:63:b8:54:
54:0a:38:e3:61:1f:e7:b8:60:a2:09:25:97:08:64:
bd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CD:1E:84:74:59:4C:27:D8:8D:28:C5:99:3B:83:EF:E0:90:43:41
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6a:da:16:9f:f1:de:a1:1c:6d:eb:de:1c:a2:75:9d:0b:f9:
f4:91:ee:66:ad:f5:0c:cd:07:fa:98:a3:08:88:c0:ac:93:22:
32:f4:4d:05:6d:66:46:66:0c:53:0c:c2:b1:d4:99:0d:bc:d6:
e4:2e:40:ba:be:9c:0e:04:c9:91:f7:0f:33:b1:54:41:98:c8:
6e:ed:e4:ba:f7:7b:96:43:a0:3f:90:86:22:b5:4a:ad:29:05:
0e:33:ba:d1:28:57:a0:16:cd:2c:bf:c8:09:59:2a:62:39:91:
81:1f:f1:f6:8b:2e:e6:ff:c6:34:4a:0d:da:b9:9c:d9:16:bb:
88:f9:6e:54:12:ee:34:05:19:86:7d:d1:87:0b:2d:74:87:e3:
0b:f7:2e:88:6d:a3:ee:0a:3d:04:fe:db:c6:6d:ba:f1:6e:df:
9a:6a:e0:89:45:e4:9a:c8:4e:76:c2:49:1f:97:98:2c:ad:d2:
55:c0:de:4f:b4:85:43:55:1c:11:e1:2a:c9:47:cb:44:15:81:
23:0d:7a:5f:57:75:84:c0:85:07:c9:3b:24:28:6c:5e:9b:2a:
b5:ab:89:c9:4a:7b:d1:97:08:43:38:32:65:54:8a:1c:8c:03:
5c:aa:6b:11:50:1a:60:e2:d0:0e:68:e4:13:9d:4c:aa:60:fc:
45:7b:ae:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:57:27 2025 by rpki-client