Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: bRfWtJ+428PkhuoEc8xMfrYJD7Rpjpi0iwLks8OA4KA=
Subject key identifier: 40:AB:B4:AC:47:8E:E2:FB:41:A3:90:9A:2B:62:9B:E6:08:97:84:C2
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 01975F81DFE8F12A7E9754484BDA0E8A184D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 10CD
Signing time: Wed 11 Jun 2025 15:00:36 +0000
Manifest this update: Wed 11 Jun 2025 15:00:36 +0000
Manifest next update: Thu 12 Jun 2025 15:00:36 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: Qs4J1p8u/ajA1Ye3MFEYtZr7hacQJFL8GguMbToPmYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:81:df:e8:f1:2a:7e:97:54:48:4b:da:0e:8a:18:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Jun 11 15:00:36 2025 GMT
Not After : Jun 12 15:00:36 2025 GMT
Subject: CN=40abb4ac478ee2fb41a3909a2b629be6089784c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0d:87:c0:55:a0:8c:84:39:2c:da:01:40:12:
fa:1c:cf:36:e2:81:be:60:7f:16:e0:a9:ab:7b:8d:
fe:f6:5e:c3:ae:1d:f0:21:73:e5:ca:20:64:a5:89:
4f:8a:8c:0a:bc:89:d5:b3:24:d2:ae:a5:8d:b8:99:
8f:97:a1:49:05:59:0f:6b:51:d6:68:36:33:8f:c9:
f4:fe:da:9d:a0:ee:9b:bc:85:d2:58:51:7e:e3:26:
bd:b1:4c:b7:3b:70:d1:ab:14:7c:c6:80:77:cf:25:
02:26:ca:0e:61:ba:a5:18:a3:ae:88:5d:5b:1d:d5:
d4:fb:17:5f:c1:d1:43:de:2c:a5:46:fc:f8:86:61:
1e:b1:7c:d2:eb:8a:27:ae:dc:bb:81:31:3f:aa:36:
7a:c0:ba:17:c7:8d:59:49:11:88:ae:03:e1:eb:8b:
23:2d:d7:b1:c7:c7:e8:e8:09:3d:d4:72:24:95:8c:
73:01:97:8e:b7:8c:c7:27:f7:f7:ad:24:28:e8:12:
ea:7b:f9:ae:55:08:fd:8c:18:a8:21:17:ea:69:57:
6b:d6:85:c8:51:f0:4a:1c:33:a5:2b:ee:47:7a:4c:
65:91:ad:e6:ba:23:36:bf:ed:ee:87:b0:2f:be:fe:
58:6d:c4:db:a4:45:e2:54:bf:3a:21:9f:fd:14:9b:
15:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AB:B4:AC:47:8E:E2:FB:41:A3:90:9A:2B:62:9B:E6:08:97:84:C2
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:43:98:37:bd:ea:be:60:4a:ed:b5:41:b7:17:d1:45:a7:db:
9f:8b:92:ca:0e:bf:09:61:fc:1b:02:2f:51:58:2b:82:da:40:
06:18:c3:bf:9d:8d:fa:c0:37:15:8f:99:5f:37:8f:30:66:9a:
7f:54:3e:5c:c3:51:f1:fe:ef:8c:16:56:8e:5e:f7:86:0a:3e:
87:08:30:0a:41:14:cc:34:3e:c8:40:90:85:ea:30:87:a6:df:
d0:bd:8f:c2:73:b4:ff:27:4a:20:11:28:7c:55:c8:47:0c:82:
e6:cb:70:5c:04:c0:31:9b:cf:46:94:0b:ca:38:29:f2:da:dd:
13:03:a6:7d:55:86:18:4e:36:8e:b0:8a:6d:61:25:b4:f9:c2:
a7:98:2f:91:9c:7a:2b:1c:8a:ca:27:3e:5e:e5:f2:46:3c:e5:
78:2a:b4:74:75:02:a8:41:7b:6b:20:d7:09:cc:d5:94:21:9f:
31:21:d3:85:3f:cd:2f:c1:14:b9:3e:67:b2:41:2b:8a:64:84:
3f:c1:52:f7:8a:a3:c0:f8:25:d5:8a:ae:a5:81:80:ce:de:0a:
fa:d4:96:6f:e3:f5:7a:c0:d4:05:9e:2d:bc:4a:b7:ff:1e:62:
be:9f:65:76:0a:fb:f0:d5:e5:fa:38:77:74:75:06:3a:29:e6:
df:c9:39:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:40:30 2025 by rpki-client