Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: l6e412bf7CI8y8fUCVyBrmCEsmOQO/4lw5rHe9MSbNA=
Subject key identifier: 02:F7:7D:3B:2E:FC:36:60:3F:3A:C2:59:E0:81:9A:E9:37:4D:21:E2
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 01974742F310DA7AD77CF77A0725F6EDA2A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 0580
Signing time: Fri 06 Jun 2025 22:00:59 +0000
Manifest this update: Fri 06 Jun 2025 22:00:59 +0000
Manifest next update: Sat 07 Jun 2025 22:00:59 +0000
Files and hashes: 1: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: SIEp2E/1DK1Rg2xrSIa8dOUAbjZUKVkbmqfoNbD9Ouk=)
2: Di0vSgAmdtxn2ZM7Al8L8Zr3oIU.roa (hash: 0Bf0l0DWLnoKx593QVoGlu2x+BD1lYWYH448tSVbn0U=)
3: Tb-8GP8qcCsPrA2Xrleo-iet2HM.roa (hash: yyhoDt89y5+7nL9lVvf4sdS/dAeJY+OT1BrhoMFwMME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:f3:10:da:7a:d7:7c:f7:7a:07:25:f6:ed:a2:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Jun 6 22:00:59 2025 GMT
Not After : Jun 7 22:00:59 2025 GMT
Subject: CN=02f77d3b2efc36603f3ac259e0819ae9374d21e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:ed:a6:fe:12:52:51:69:9e:1e:27:b3:fb:
22:e7:65:c7:be:91:dd:1e:51:f6:f4:28:d4:3a:9b:
44:22:ed:9a:16:36:4c:13:d0:32:46:2b:04:02:4f:
ae:ab:a2:cf:06:24:52:8d:0e:39:14:ef:bd:0a:a9:
99:71:93:68:fd:07:d0:7c:75:6c:cc:34:07:6b:f1:
02:b5:3b:15:3f:74:88:43:42:c4:70:07:93:77:dc:
c2:bd:88:3f:31:08:ad:5c:5f:fe:85:bd:93:5c:8b:
c5:47:80:31:3a:67:70:8c:3e:93:18:93:d0:37:35:
34:3b:6e:47:71:86:1a:f5:a1:8a:7b:a5:8d:f2:d3:
5e:92:ab:0d:2c:67:f1:cf:dd:89:00:6a:4f:cd:69:
1e:36:2d:a3:a9:55:ac:57:bf:93:b6:d7:e1:18:89:
8e:e0:ee:68:4d:40:c3:da:35:18:4e:21:b0:2a:8f:
f7:dc:e5:c6:20:e5:92:0b:89:0b:c3:96:f8:3c:d9:
68:e2:ed:ff:dc:45:34:8e:a0:aa:f4:e2:d5:10:9b:
c7:f8:c2:ee:ef:7e:7e:6c:e6:93:14:61:e2:db:32:
0a:ec:9d:c7:48:d5:ad:29:b1:18:71:19:fb:0a:4c:
35:8b:38:b4:66:2e:57:1c:c2:59:c3:87:dc:14:bf:
65:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F7:7D:3B:2E:FC:36:60:3F:3A:C2:59:E0:81:9A:E9:37:4D:21:E2
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:42:c1:a1:f0:4d:08:4a:af:23:a2:36:b2:83:00:3c:07:0b:
4a:42:88:05:58:a7:9b:5e:9f:a3:e6:79:68:20:79:79:8d:91:
dd:d6:66:8a:ba:97:21:6c:4a:d4:e4:1d:f2:47:b4:3a:87:74:
42:0f:bc:25:43:3d:67:ca:cc:27:2d:96:66:33:61:0a:c6:37:
59:fc:4c:5a:08:09:67:18:91:74:e7:44:95:78:d7:e9:fc:4c:
a0:a7:63:b8:c6:01:bf:7e:04:44:cb:af:58:54:e2:ba:10:62:
f0:ab:70:64:a0:f5:04:2c:02:3f:a6:35:5d:c7:d4:6a:ce:31:
49:c1:a0:82:07:55:84:8e:61:39:11:7f:42:6a:6f:9f:62:61:
cd:bd:b0:82:5c:4f:9a:cd:af:a7:e4:66:7e:2e:2b:65:1b:7b:
a8:08:3b:f4:ab:fb:a0:1e:02:c5:06:93:e6:25:cb:d6:ee:31:
97:ce:11:86:79:17:2f:93:44:17:85:d5:e4:e6:90:c3:a4:88:
8e:76:a1:ae:6d:13:b8:00:6e:e1:e6:d6:e5:39:3d:6c:c0:7c:
78:cd:81:c8:66:2e:bc:55:a2:4c:cf:fa:ab:9c:52:6d:70:d5:
6d:fb:5c:5a:68:7f:f6:b8:cb:65:a3:fc:83:1e:77:56:82:5d:
b6:c6:c1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 05:53:53 2025 by rpki-client