Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
File: SFF8v1-HKM7CSvPC6G7PuANT5g0.mft (raw, json)
Hash identifier: 7xBsWkLgSXkXOKF5X7FxB97+r7XK5QVVLdAN9oYF9Hg=
Subject key identifier: DE:74:C0:07:18:43:3C:C9:38:8A:C3:E8:A6:44:B5:91:57:79:FB:75
Authority key identifier: 48:51:7C:BF:5F:87:28:CE:C2:4A:F3:C2:E8:6E:CF:B8:03:53:E6:0D
Certificate issuer: /CN=48517cbf5f8728cec24af3c2e86ecfb80353e60d
Certificate serial: 0197470C4CAA797E73AC3B5F924EEB15613D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
Manifest number: 0C5B
Signing time: Fri 06 Jun 2025 21:01:17 +0000
Manifest this update: Fri 06 Jun 2025 21:01:17 +0000
Manifest next update: Sat 07 Jun 2025 21:01:17 +0000
Files and hashes: 1: SFF8v1-HKM7CSvPC6G7PuANT5g0.crl (hash: LVSlR00vhAJLdWfwrFve8AvtxQ24h4h1/WhI8yXG0sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:4c:aa:79:7e:73:ac:3b:5f:92:4e:eb:15:61:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48517cbf5f8728cec24af3c2e86ecfb80353e60d
Validity
Not Before: Jun 6 21:01:17 2025 GMT
Not After : Jun 7 21:01:17 2025 GMT
Subject: CN=de74c00718433cc9388ac3e8a644b5915779fb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:62:e2:00:d6:dd:69:88:bf:ac:f3:1d:5c:
e3:6e:a0:62:ab:8a:9a:b3:b2:50:98:48:e3:5d:97:
e2:22:4a:a5:dc:1f:4c:ed:75:1c:0b:94:23:83:77:
8a:7d:18:d8:68:25:c8:7b:f9:31:b5:f5:d6:a5:68:
e7:f5:2a:9b:1a:3f:b6:2a:ee:0e:1f:d8:dc:a5:53:
81:0f:f5:0b:b9:92:84:ba:48:13:5d:2c:14:af:ed:
d3:b1:45:35:d6:36:27:1e:44:38:65:75:61:83:4d:
5d:55:21:70:9f:33:c9:57:8c:b0:7d:92:95:34:b1:
86:54:c3:7d:9d:63:32:e4:72:75:c1:2a:fe:31:6a:
18:b5:3c:30:09:31:8a:13:d7:b4:60:67:64:29:f0:
ce:e3:71:5a:d6:76:1e:73:fc:6c:3e:fa:6c:08:2b:
d4:d7:0b:50:b0:2d:f1:a8:22:cc:bc:4b:3c:08:6b:
80:a0:41:e8:9c:4f:ba:13:79:d0:ea:49:2e:3f:d5:
24:03:84:39:5b:d8:08:6b:13:5e:47:9f:e8:df:da:
3a:68:f9:9a:3b:b1:a1:16:d8:7f:c8:c6:a0:23:53:
71:cf:80:0d:ae:71:ff:c7:f3:13:39:4d:c1:c3:22:
83:19:bb:52:23:da:cb:31:36:1a:65:1f:ae:b3:1c:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:74:C0:07:18:43:3C:C9:38:8A:C3:E8:A6:44:B5:91:57:79:FB:75
X509v3 Authority Key Identifier:
keyid:48:51:7C:BF:5F:87:28:CE:C2:4A:F3:C2:E8:6E:CF:B8:03:53:E6:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFF8v1-HKM7CSvPC6G7PuANT5g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2f2d-a425-44ab-9b5d-8c3b40285566/1/SFF8v1-HKM7CSvPC6G7PuANT5g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:09:2b:1a:d1:86:c3:6e:e9:ea:d5:53:01:9c:7f:00:20:0b:
67:d9:4c:7d:e3:36:a9:e2:06:1b:f5:8e:8c:8b:34:71:05:62:
b7:e2:bc:ff:f3:01:c5:fa:e0:f1:89:81:7c:a8:19:f3:40:9b:
94:9f:c3:8d:11:7b:a2:8f:1b:50:1c:0a:29:64:5e:f4:08:90:
62:c9:7d:ef:7a:b7:af:cc:90:67:11:5a:a3:a2:d1:df:f5:7b:
7b:3c:94:df:e5:d8:33:dd:8b:81:7e:de:25:ca:6a:a7:47:57:
8f:aa:cd:50:f7:d9:f3:c6:fa:cf:52:09:e0:b1:42:80:cb:16:
9e:e7:1b:f6:80:87:f7:1d:4f:13:34:58:98:b0:1b:b3:a3:fc:
6a:68:a3:4d:3e:9b:16:77:bd:f2:9a:ea:ce:e7:5f:26:a3:d2:
84:ef:3f:70:9e:d2:0e:1b:96:cc:c6:7f:69:0f:7e:06:e5:9e:
77:35:5c:ff:b4:df:19:dc:0c:55:11:7b:c4:88:c1:2d:aa:21:
db:fe:4c:57:98:93:b4:c0:d5:f8:2e:0b:cc:73:da:8a:9b:99:
88:42:89:98:68:f2:bd:cc:a7:3e:da:21:a3:52:b1:10:4f:99:
b0:18:74:b0:51:93:8e:dc:b0:93:04:79:90:0e:f5:20:58:78:
bd:d1:e8:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:59:02 2025 by rpki-client