Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: giY2ZMUSKOxT0iq5JC4ZRApTpRh27SSVwYDNVHtzbxk=
Subject key identifier: 66:4D:D4:23:31:50:2E:1C:8A:BB:1D:80:6C:4C:DA:E3:AE:94:B7:3A
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019748C2F7B686ABFF202EA048211FC0675C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 05:00:26 +0000
Manifest this update: Sat 07 Jun 2025 05:00:26 +0000
Manifest next update: Sun 08 Jun 2025 05:00:26 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: /2rMKpGvtVRsvQK9weH/G/pY/0SHqiaXFqCPzvgyqlI=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:f7:b6:86:ab:ff:20:2e:a0:48:21:1f:c0:67:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jun 7 05:00:26 2025 GMT
Not After : Jun 8 05:00:26 2025 GMT
Subject: CN=664dd42331502e1c8abb1d806c4cdae3ae94b73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:09:6f:82:1b:1b:2a:78:96:fe:cc:94:38:
5b:73:02:a8:e7:b6:3a:f5:b1:80:9e:02:43:0a:cf:
6c:90:cc:43:f4:27:93:50:c6:7e:3d:ce:29:f4:a1:
af:a5:3c:fa:56:ce:98:f3:63:94:de:f8:23:22:1f:
9c:09:07:92:45:ed:ca:b7:95:3b:20:f2:52:70:dc:
61:34:93:8b:7e:ad:2a:93:b2:e8:53:d0:39:48:20:
e8:77:07:7e:0c:ac:58:3b:2f:43:aa:44:a0:d5:85:
d1:b6:45:fe:18:3e:91:97:0c:f5:f5:ac:a4:08:03:
97:7b:9f:7e:a2:9e:d5:0d:dd:1e:61:2e:69:54:3b:
a6:c6:f5:db:4f:b1:91:56:5e:a3:e9:15:c4:4d:5a:
2f:f9:9f:ed:a2:29:fd:29:b8:1b:09:96:f9:70:1a:
7f:d0:c3:61:e1:77:22:a1:bb:4f:ca:8b:58:21:34:
5b:38:21:02:e5:9a:36:9b:9e:7c:27:d8:e7:be:9d:
7d:7c:5b:74:9d:09:88:ec:24:13:47:ac:22:f6:12:
37:d8:5a:f1:a8:ab:99:b2:a1:0e:04:f9:c3:cf:e2:
c2:e1:0c:82:a1:a1:13:cb:40:69:db:c2:e4:ef:65:
74:f5:06:41:ac:8d:b0:eb:dc:7f:0c:f7:b9:cc:c1:
57:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4D:D4:23:31:50:2E:1C:8A:BB:1D:80:6C:4C:DA:E3:AE:94:B7:3A
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b4:48:eb:ed:65:e4:b9:c7:dd:b6:2a:ee:69:ec:b9:ec:53:
1a:14:24:31:e0:c9:2a:e8:ce:80:ad:ad:cd:fe:f6:3b:02:8a:
68:fd:0d:51:32:36:d3:1b:45:db:2e:cb:50:6b:42:7b:81:45:
d8:2d:89:f6:61:c5:7f:50:c7:c2:20:5a:0c:5d:07:d0:21:46:
a3:39:f7:b3:a3:6c:e6:2f:ef:17:e4:82:b6:e8:14:93:23:ae:
2b:8d:ba:66:72:1c:a6:7b:b8:62:52:31:0b:0e:ff:e4:f9:6e:
07:3b:d1:a9:d1:6b:60:6a:16:b2:af:e5:20:c9:1e:cc:a1:aa:
ec:6e:31:d7:28:48:9f:a7:d7:1e:94:a7:3d:2b:66:87:c0:a5:
00:f9:61:ef:90:03:fd:38:40:77:0a:65:a2:9c:ed:72:9e:08:
da:11:b5:93:06:d4:1c:16:25:36:89:c8:00:93:8b:87:da:db:
29:8a:49:c3:bb:1c:ea:44:5a:29:db:8e:a0:e7:31:b2:33:3a:
84:29:3f:17:a0:5c:ea:64:3c:6a:c1:95:28:e9:1d:f3:4e:0e:
07:08:d6:43:8c:7b:bb:e0:e4:e6:77:e8:d9:ca:0d:4b:dd:50:
57:39:1c:fa:8c:41:04:be:44:20:08:3c:1b:b7:be:62:e7:60:
cd:50:d7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:30 2025 by rpki-client