Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
File: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft (raw, json)
Hash identifier: 4U5p4RzTo5O9LeqHnuw3hLnmyxHvMBUWjuy4ZaOlzlw=
Subject key identifier: DB:41:66:FB:21:6E:4D:26:F2:AA:A0:66:CA:B3:F9:D1:4B:A5:62:F0
Authority key identifier: 09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
Certificate issuer: /CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Certificate serial: 01974A7AAC728B8FD8D395DCDF6FE1BCACC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
Manifest number: 0270
Signing time: Sat 07 Jun 2025 13:00:42 +0000
Manifest this update: Sat 07 Jun 2025 13:00:42 +0000
Manifest next update: Sun 08 Jun 2025 13:00:42 +0000
Files and hashes: 1: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl (hash: xWhQ+54wj7Xmm8q6w1usxmrcAM1l249kM7aqrL5zQ1w=)
2: oDzw6scHjTvVUxNbd-QUot4DsM0.roa (hash: wtt4piWURYUGaUVkeFPj0sScj6sbR4E+qyw2r+vT/ds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:ac:72:8b:8f:d8:d3:95:dc:df:6f:e1:bc:ac:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Validity
Not Before: Jun 7 13:00:42 2025 GMT
Not After : Jun 8 13:00:42 2025 GMT
Subject: CN=db4166fb216e4d26f2aaa066cab3f9d14ba562f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:92:20:38:b1:90:47:51:ab:ee:62:01:6f:6c:
96:3a:9d:31:17:e8:ca:20:50:79:b8:f3:11:a2:b0:
aa:d9:0f:e6:c1:b4:70:cf:ff:75:40:80:d1:ed:02:
c6:d3:54:45:34:5f:8c:0c:43:35:e5:ce:f9:d7:51:
55:ff:7a:a9:b5:3b:2c:73:b9:72:a4:71:72:97:1b:
fc:f9:9f:8a:52:ae:76:77:9f:8f:aa:a3:15:ab:37:
fb:e6:08:3b:f1:b9:4d:19:ce:06:7c:37:1f:9c:13:
6a:9a:70:02:ef:a6:fa:a6:fc:9d:f2:69:e2:b4:9d:
16:b3:de:d5:75:b9:69:6d:bc:9c:48:14:e3:cf:84:
d8:a1:7f:f7:cc:eb:d1:4b:69:a0:6f:53:43:11:a6:
1f:0f:76:9e:e3:c6:63:d6:e2:03:d0:fc:e4:e1:e9:
4e:89:23:8c:8d:11:17:8f:c0:7b:13:8c:9d:59:24:
96:6c:ab:a2:cc:8a:88:55:45:1a:36:51:31:40:40:
cd:ea:cd:11:a4:c9:28:55:69:e1:b1:d1:fb:e5:b7:
6e:77:8e:37:d8:a7:c1:b6:2c:94:1c:37:c2:36:59:
1a:50:7b:f9:e0:07:06:68:8d:54:b6:07:c2:36:46:
39:57:a8:ce:e0:83:98:dc:f6:a3:dc:90:a9:fe:2d:
b3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:41:66:FB:21:6E:4D:26:F2:AA:A0:66:CA:B3:F9:D1:4B:A5:62:F0
X509v3 Authority Key Identifier:
keyid:09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:78:7c:5f:a9:22:b4:27:bd:92:76:37:2c:65:1a:18:29:4f:
5c:d3:54:1f:33:f5:7c:ec:b2:a3:4c:26:f5:53:0c:a1:c0:ca:
7a:70:db:bb:14:f9:f2:04:79:65:c1:7f:0f:da:4c:a8:8c:08:
7e:ee:fa:eb:ba:11:a8:4e:ea:c9:0b:6f:83:f5:e9:02:87:1f:
04:43:7c:bb:80:11:8c:15:35:ea:7a:cc:72:e1:a6:c9:d9:bb:
dc:c2:7f:eb:6f:b3:e0:07:c3:6c:4a:3e:df:33:5d:c5:73:61:
b5:e4:eb:8c:e9:92:34:2c:0d:25:e4:16:52:4c:ea:73:e9:a5:
b0:48:30:a0:29:8d:4a:18:4b:a0:7f:08:eb:34:3c:81:1a:96:
e3:c5:d7:b7:34:a2:6e:fa:bd:40:4d:ad:68:47:e7:6d:4d:37:
85:c0:23:fd:f2:46:c3:57:8f:8b:94:4c:0f:1a:dd:74:c0:13:
f8:79:e1:1a:b0:38:87:38:41:cb:b7:22:8d:a2:92:6e:8a:dc:
41:5c:0a:cc:b7:60:f9:3a:40:fc:cb:ba:1a:ef:7d:94:63:c0:
db:ed:37:0f:a6:8d:ac:7d:06:7f:e6:3c:5d:47:b8:4f:b4:18:
33:fe:75:61:96:4b:06:88:50:a5:ec:8a:50:2d:4e:d4:fd:ac:
ec:3e:9c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:44:39 2025 by rpki-client