Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
File: 8R8omgChsRW386TRuAEb-Q0aL3I.mft (raw, json)
Hash identifier: qqwLfHU1wTWqtJOQaUYK1SzxK1fzFe+smr/nZ7lkyu4=
Subject key identifier: 3D:90:05:E3:E6:60:92:B7:1A:EB:A6:29:E3:5C:91:42:A7:E4:27:BF
Authority key identifier: F1:1F:28:9A:00:A1:B1:15:B7:F3:A4:D1:B8:01:1B:F9:0D:1A:2F:72
Certificate issuer: /CN=f11f289a00a1b115b7f3a4d1b8011bf90d1a2f72
Certificate serial: 01974E5754AF9C42419D63810F1BD4B485E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
Manifest number: 094E
Signing time: Sun 08 Jun 2025 07:00:35 +0000
Manifest this update: Sun 08 Jun 2025 07:00:35 +0000
Manifest next update: Mon 09 Jun 2025 07:00:35 +0000
Files and hashes: 1: 8R8omgChsRW386TRuAEb-Q0aL3I.crl (hash: 5OSi58r65Ks9ElHlHtA3mgU7FRFIzb+F/190YcGfMXw=)
2: tRxgXr9YQwTbEh2NqyL9M68npkQ.roa (hash: QcuVE9jeWpJsMM52+9+6n7mFIjZuC9lNEDcWkB7O3NI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:54:af:9c:42:41:9d:63:81:0f:1b:d4:b4:85:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f11f289a00a1b115b7f3a4d1b8011bf90d1a2f72
Validity
Not Before: Jun 8 07:00:35 2025 GMT
Not After : Jun 9 07:00:35 2025 GMT
Subject: CN=3d9005e3e66092b71aeba629e35c9142a7e427bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6c:8d:b9:e5:4d:6b:ff:7e:8a:97:7e:fe:46:
07:f2:9a:be:ad:a3:b4:3e:35:8b:20:be:da:f1:a3:
c6:b3:b9:24:0a:e1:d6:ac:12:79:2a:b2:45:a1:a2:
87:f4:a8:c9:11:a2:2b:ee:68:85:28:ed:e2:aa:8c:
7b:13:69:cb:34:ad:88:3e:57:5b:58:28:96:0f:b0:
72:e2:d8:bc:c7:c2:b6:35:b1:68:05:08:4f:92:8f:
49:96:4f:d4:8b:bc:d1:6e:fc:88:16:a5:26:51:6d:
c3:85:a4:42:67:31:5a:dc:2e:6e:8c:a5:57:19:26:
13:bd:f1:de:ff:bf:be:ba:a2:f6:16:bb:57:bf:62:
99:db:3f:ed:b1:ee:e9:ba:1d:f6:cb:67:be:a5:5c:
ef:34:8c:c1:0f:9e:46:0f:c2:87:c8:6a:81:fc:d9:
0e:09:62:fc:4d:a7:b0:aa:96:09:6a:35:a6:7c:0f:
e8:1b:cd:bd:33:f0:0c:9b:86:fd:68:77:10:6c:72:
b8:88:8f:0f:24:1e:59:8c:ab:c1:da:d9:ea:a9:05:
9d:84:70:2c:51:18:af:de:5a:b9:69:ce:06:e6:be:
c8:65:d8:1d:fe:8a:ec:93:d7:74:11:86:87:6c:60:
9a:f9:dd:93:32:07:d0:b7:3d:b5:d1:7c:03:d3:8d:
3f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:90:05:E3:E6:60:92:B7:1A:EB:A6:29:E3:5C:91:42:A7:E4:27:BF
X509v3 Authority Key Identifier:
keyid:F1:1F:28:9A:00:A1:B1:15:B7:F3:A4:D1:B8:01:1B:F9:0D:1A:2F:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:7a:29:8a:df:21:cd:08:85:75:0d:b0:b6:34:67:4e:ed:19:
20:b3:98:6b:75:ba:87:88:8a:b9:89:e6:c0:c8:73:b0:bb:fe:
80:1a:87:3b:74:53:cd:e6:e7:6c:1a:10:79:8a:57:57:2a:e6:
23:10:24:20:21:2a:f6:68:5f:ae:d9:87:f2:5b:46:5c:44:23:
91:46:10:8c:27:4d:09:b8:43:8b:16:8b:c1:d4:cd:e8:72:41:
63:a1:05:24:b1:ec:bf:33:bb:1d:36:18:34:ad:4f:5c:1d:a6:
20:4e:11:4e:54:94:09:e4:39:cd:02:5e:fe:c2:ca:b5:9f:c6:
10:55:b8:62:42:44:bf:39:4e:a8:79:36:cc:13:a1:ae:c3:34:
8a:be:53:14:5b:69:0b:b0:c8:95:40:a2:00:81:f9:06:6c:51:
a6:ae:b8:6d:c0:c0:f4:f9:80:35:31:4b:8e:39:1d:d7:2f:b8:
92:47:31:5b:15:58:9f:ed:53:84:b1:1a:5f:f5:2f:67:a4:cb:
9e:60:2e:f7:22:8e:f7:7a:08:0d:75:c6:a0:4c:ee:e2:04:0a:
3c:18:ff:ff:f1:fa:4b:01:df:1c:c5:a6:c1:90:f3:d2:25:16:
f3:3c:97:0a:4f:d1:f6:7e:5c:a9:d3:b3:f6:c4:37:77:26:0c:
8d:e1:67:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:36:36 2025 by rpki-client