Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
File: 8gI-dqaOpsn3DT6nLfhOU9whck8.mft (raw, json)
Hash identifier: iI8/T7Z/YPVJURtVqLnOuuLV4oJw0s2DA4Bhy7aYOuM=
Subject key identifier: 16:A6:2A:F1:E9:FF:C6:7B:07:5C:EB:60:18:17:E2:83:B8:9E:26:DF
Authority key identifier: F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
Certificate issuer: /CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Certificate serial: 01974E5802895AB6630CB199A853ED168D29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
Manifest number: 0DD3
Signing time: Sun 08 Jun 2025 07:01:19 +0000
Manifest this update: Sun 08 Jun 2025 07:01:19 +0000
Manifest next update: Mon 09 Jun 2025 07:01:19 +0000
Files and hashes: 1: 8gI-dqaOpsn3DT6nLfhOU9whck8.crl (hash: uXTKecb+27fQWLH1eatnhke08+LWCvfDj4iOOII6jM0=)
2: xmm2JL7TcI6ebRwScNNxmj8JWuo.roa (hash: fkFUQl1m0mbIlDS4H4YUitr8IcfvKPdCtORJm2ZIyMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:02:89:5a:b6:63:0c:b1:99:a8:53:ed:16:8d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Validity
Not Before: Jun 8 07:01:19 2025 GMT
Not After : Jun 9 07:01:19 2025 GMT
Subject: CN=16a62af1e9ffc67b075ceb601817e283b89e26df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:c7:ab:cd:4b:17:a6:b1:ea:63:e4:85:42:07:
2f:04:4f:e0:1f:cc:a4:13:7f:2b:85:9c:41:0b:76:
8c:e3:66:ea:ff:99:c7:75:7e:af:c2:9a:a3:57:bc:
d3:0f:56:2d:63:bc:15:d8:51:c8:a1:e7:e0:69:a5:
7a:78:81:1d:ef:af:a5:96:b7:ee:eb:9c:6e:f4:73:
af:44:97:49:4d:92:d4:00:4e:c1:73:e2:96:cd:db:
ef:35:9a:eb:60:57:d2:9d:50:ce:d0:44:28:e9:4f:
f5:67:3b:84:47:ec:3a:52:cf:91:48:df:d8:50:e1:
f7:61:8e:6c:df:11:f8:45:b9:65:39:56:e4:8d:04:
05:94:67:4a:0a:e1:36:ea:37:96:4d:fd:8a:e3:27:
ce:14:b5:84:ab:eb:f6:57:18:5b:b0:63:00:e7:7b:
2a:22:af:27:db:77:3e:b7:19:35:52:63:4e:fe:42:
8b:e9:03:95:78:78:ec:33:f0:b1:35:bd:55:b9:63:
e1:6b:b7:eb:66:9b:37:57:26:2a:f4:41:2f:5b:a1:
2b:a1:58:8c:71:af:1f:f3:bb:76:8c:1c:94:73:04:
9c:4c:e4:72:28:8c:25:03:65:1e:90:99:92:2c:88:
7d:dd:82:89:7c:03:e8:42:83:9d:f0:fe:4e:72:2b:
4d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A6:2A:F1:E9:FF:C6:7B:07:5C:EB:60:18:17:E2:83:B8:9E:26:DF
X509v3 Authority Key Identifier:
keyid:F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c8:ec:48:08:89:1e:e9:3c:b0:c9:2a:25:00:cd:cf:ea:9c:
39:5d:30:a3:f8:80:1b:1b:87:29:01:7a:65:23:58:ec:8e:4c:
47:21:e5:59:04:0e:42:df:ed:bf:b4:a3:44:f1:61:7c:74:be:
b3:d0:58:fc:46:52:66:07:32:01:2d:30:bd:74:fd:a3:e4:f1:
c6:1c:f9:32:bb:80:ef:12:68:af:12:9a:37:5a:01:60:af:e2:
00:83:f6:70:9d:ef:6f:c0:01:c8:e7:60:5a:97:9b:f4:05:80:
3a:89:ac:f7:16:ca:fb:77:d8:a9:61:a0:d2:99:2b:6c:dd:32:
3f:af:33:9e:2f:cf:a1:32:8a:32:41:49:42:4f:39:3e:ab:81:
09:83:c4:40:28:44:95:03:be:aa:60:0a:df:3b:96:a8:39:f7:
14:db:8e:4a:4c:4b:13:88:0d:6f:3b:5d:eb:0f:e4:f6:c3:4e:
30:09:e1:36:71:73:39:e0:ba:fc:3f:0f:b9:e9:4a:70:03:40:
8d:02:20:8f:e3:fb:f7:e6:81:0d:eb:ad:75:85:37:77:5d:68:
4c:19:28:28:41:7d:fb:29:bc:50:47:d9:dd:45:59:04:04:eb:
68:b7:a2:8b:13:92:33:c0:d1:f0:3d:64:31:9b:be:f5:dc:88:
ae:8b:37:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:01:19 2025 by rpki-client