
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
File: j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json)
Hash identifier: cr6ORrN7YjwOxLB0fCZA8Na9vctvSbwSTsZfzFVK/UY=
Subject key identifier: 24:BB:26:42:A7:CC:81:AF:42:26:8B:C3:ED:8D:40:75:4F:B9:12:C5
Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
Certificate issuer: /CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Certificate serial: 01976BBD0737BC4508D919611ED554F8F987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
Manifest number: 08BE
Signing time: Sat 14 Jun 2025 00:00:39 +0000
Manifest this update: Sat 14 Jun 2025 00:00:39 +0000
Manifest next update: Sun 15 Jun 2025 00:00:39 +0000
Files and hashes: 1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: lDeO6NXAv/vrZyyPdK/yx4RGjq6RK2Nzt6+N9mLYuSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:07:37:bc:45:08:d9:19:61:1e:d5:54:f8:f9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Validity
Not Before: Jun 14 00:00:39 2025 GMT
Not After : Jun 15 00:00:39 2025 GMT
Subject: CN=24bb2642a7cc81af42268bc3ed8d40754fb912c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:04:9c:e7:08:72:4c:f8:2b:83:71:57:80:b7:
f7:23:3d:fd:c4:de:8a:ac:f3:93:ff:9b:78:25:5a:
d4:2e:f8:c2:a9:33:a8:8f:23:e6:83:86:9b:d1:c4:
14:95:61:0c:0e:89:09:72:93:f0:78:25:d1:da:78:
3b:44:21:d7:d5:91:05:be:07:91:b8:0d:cc:96:89:
80:a6:56:99:97:2a:6f:d0:d2:d0:87:94:38:6d:2f:
8a:95:b2:2a:66:a9:2d:00:f4:7b:ad:1f:c6:7c:cc:
62:29:02:57:f6:76:5a:28:48:5d:ee:ba:8e:0e:a2:
77:ce:fa:ed:dd:d9:23:91:36:fd:d1:de:d9:64:07:
10:60:68:ed:d6:e7:d3:02:8c:b4:29:8e:3b:0a:73:
fe:a8:8f:b0:bb:59:ff:0b:e8:e6:d9:07:4d:bb:57:
30:f4:86:07:8f:80:e3:62:aa:24:ec:ee:34:8e:f5:
67:5b:63:65:43:c6:d5:27:f4:a9:8b:75:54:21:77:
5b:41:45:b3:31:ef:6a:76:23:87:17:80:ac:6b:4d:
8d:5d:36:d4:af:5a:ce:c8:a4:80:4d:5f:1d:eb:9e:
73:dc:9d:46:72:f9:8d:3e:2d:20:6e:ca:9d:c1:a1:
6a:22:81:35:ca:da:01:88:7e:67:73:d6:ef:37:f8:
e2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BB:26:42:A7:CC:81:AF:42:26:8B:C3:ED:8D:40:75:4F:B9:12:C5
X509v3 Authority Key Identifier:
keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:fc:cd:1d:f7:87:28:07:15:ef:ee:48:a9:28:0f:1e:20:d3:
a5:23:df:64:dd:b5:31:26:fd:99:5d:1b:58:21:66:86:14:65:
2a:b6:d4:1c:5a:57:83:3a:12:d2:ba:57:b5:5c:70:cc:80:c8:
b3:0d:7a:b3:34:02:6d:10:1c:f3:07:9b:2c:69:df:17:58:69:
6a:8e:c8:e8:ef:ca:8b:1e:09:48:74:0f:d9:8a:2d:df:b7:d8:
06:a1:4f:a3:ba:45:f2:8e:0e:8a:0e:40:9d:20:f3:94:4b:f4:
94:b6:c6:ab:55:f7:95:f7:89:07:89:88:76:a5:b0:bc:1e:8a:
bf:ad:83:d7:ef:21:37:e3:5e:58:09:bb:c6:62:e2:87:76:7e:
31:3a:05:d9:0b:7f:be:37:cd:13:0f:90:c2:0b:de:6a:7b:a7:
ee:3f:5e:3b:14:03:2c:3b:48:aa:1d:d7:b1:39:d4:0e:fc:19:
e2:36:12:e3:27:ed:0e:06:b7:aa:5c:b4:42:86:c9:51:8d:16:
8c:96:3c:12:75:d7:70:c3:4d:b8:a2:a1:fe:eb:bc:6b:94:82:
ab:a6:59:db:88:a8:f4:63:d2:a5:97:7e:da:d1:13:32:61:a4:
11:ed:90:c8:5a:a8:3f:17:c9:5b:0e:d4:cc:ce:d3:77:24:d7:
13:37:c4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 01:44:48 2025 by rpki-client