Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: wOJZ3wDa/zzHi1AHyPKHMq7YtH8IHekTa4Bb7/rJAds=
Subject key identifier: 4A:EB:4C:E2:18:72:65:96:BB:A3:2D:70:C5:63:D1:56:49:74:1A:DE
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 01976BBD3672DF1FEE57695C616A4BC6AC8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0EEF
Signing time: Sat 14 Jun 2025 00:00:51 +0000
Manifest this update: Sat 14 Jun 2025 00:00:51 +0000
Manifest next update: Sun 15 Jun 2025 00:00:51 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: fQjcBEqgdJj8fCqY+ZZq0qZwzCPzdp6+ocjBX4ORta8=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:36:72:df:1f:ee:57:69:5c:61:6a:4b:c6:ac:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Jun 14 00:00:51 2025 GMT
Not After : Jun 15 00:00:51 2025 GMT
Subject: CN=4aeb4ce218726596bba32d70c563d15649741ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:76:8d:6b:a1:8f:f5:e9:50:8d:3b:03:d4:5e:
03:dc:a6:62:1b:3b:3f:48:9d:85:af:ac:a3:54:f4:
cc:b3:8b:22:dd:d6:fc:46:b5:68:5e:bf:a1:1e:7f:
67:32:c7:cd:fa:0e:0a:47:ec:35:24:21:42:0f:03:
61:d7:d1:83:c2:75:e2:ca:b8:cf:9f:12:76:2d:ae:
bd:ac:b6:b2:30:06:bb:8e:4e:d7:ad:f2:18:49:81:
28:89:02:57:9c:dd:a5:9e:5c:21:66:82:8b:f2:fa:
7d:92:34:f3:8a:2f:80:ef:95:b7:a5:51:a8:85:12:
d8:50:4c:22:82:cd:b8:67:11:4b:97:6e:4d:f7:3a:
69:4e:d4:66:d2:62:3b:82:1a:aa:2c:e5:8b:01:8a:
fd:dd:60:dc:45:8a:47:c1:c6:d5:e3:90:17:5e:47:
6f:a1:40:7d:04:14:ba:83:99:84:c4:d1:b0:26:fa:
dc:d1:fc:73:df:14:01:0c:2a:b7:3e:63:db:af:09:
83:86:cc:e8:6d:d6:33:8f:66:ce:3c:83:dd:8a:df:
5f:81:90:3a:17:3f:f5:ae:8c:b5:79:65:23:17:de:
7c:88:13:ec:b9:b6:37:ce:a2:3d:d0:c5:a6:4d:80:
50:65:ea:5e:8a:57:6a:ce:79:47:1d:06:43:9c:c2:
c0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EB:4C:E2:18:72:65:96:BB:A3:2D:70:C5:63:D1:56:49:74:1A:DE
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f1:92:e4:47:aa:00:be:b9:2c:e8:ee:36:86:b2:b7:2f:1c:b7:
da:a7:71:48:ed:74:b9:75:66:96:ea:6b:b4:12:e0:c6:eb:a5:
f9:5f:6e:d0:f9:55:bd:9c:d1:94:d1:c9:5e:2e:a7:0d:5e:e4:
54:f3:c0:e9:6f:03:2f:a4:3c:85:87:81:ca:28:67:3a:17:35:
66:c6:8b:db:70:e3:05:ae:93:d5:68:c9:29:b8:62:89:e9:43:
c8:4e:2e:45:47:8f:08:b9:ca:e7:b8:8b:93:df:b8:0d:fd:a9:
ce:69:99:c5:c2:ef:26:28:a9:3a:2c:f4:1b:c6:c0:13:e6:4c:
e5:5d:6b:4d:fb:db:01:0b:c1:a8:9c:17:35:60:f3:e0:ed:e5:
31:06:ef:ff:9b:4c:75:45:ff:20:8e:d7:8e:f7:cd:ea:b4:49:
d2:95:ae:19:97:7f:0d:0d:b4:27:24:82:f3:d3:24:5a:5e:8d:
69:78:d9:73:4e:1d:fd:2a:4c:20:c2:03:86:e0:b6:7b:c6:b6:
bd:e1:78:28:55:6c:2c:44:60:bf:f7:a1:dd:c4:a2:48:ae:8c:
ac:84:9d:8f:2a:ab:c1:db:9c:1d:0e:15:64:cc:b3:8c:15:d1:
39:35:2a:d9:48:36:16:4a:25:2f:3a:2b:ba:50:90:f0:2f:0b:
1f:ae:78:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:20:57 2025 by rpki-client