Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: wtfYj0qVT6MuwksOXoNJjOotyIEOiyZumj6xfxUXcmE=
Subject key identifier: BC:9B:1C:B1:F1:2E:8D:6B:14:5E:0D:A8:35:AF:AF:7E:E0:B7:45:13
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 01974AE8CEF91D9E6EF52022FB07438BAD9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 0C76
Signing time: Sat 07 Jun 2025 15:01:00 +0000
Manifest this update: Sat 07 Jun 2025 15:01:00 +0000
Manifest next update: Sun 08 Jun 2025 15:01:00 +0000
Files and hashes: 1: 11v4ujiE85pODnajO4MIvDa-EEI.roa (hash: 899jJDpYjGC19E0C+sSPG4BflRjWNeXH81Y2tQUCHZ0=)
2: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: 2T10IqoXWglt3G4qE49g+owSHqjPe/8HPOWJkaXpgjQ=)
3: H5a6_PbqYpspvXprSKayoanO0T4.roa (hash: rh38nYvA7FwPR7BzdHUH02hvI8rv4wT+OqQOUSlde48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:ce:f9:1d:9e:6e:f5:20:22:fb:07:43:8b:ad:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: Jun 7 15:01:00 2025 GMT
Not After : Jun 8 15:01:00 2025 GMT
Subject: CN=bc9b1cb1f12e8d6b145e0da835afaf7ee0b74513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:34:1d:47:4c:8c:fd:69:c9:59:27:a2:50:0d:
94:a9:c8:b1:6c:95:a2:cc:22:aa:46:72:1a:c0:36:
68:62:50:ce:4b:4c:1e:d8:c1:1c:4c:fe:73:1b:9b:
ee:a7:96:19:26:90:91:a5:57:14:43:ed:22:4b:cf:
cd:ab:8f:51:89:3c:0b:fb:da:78:3d:b1:34:c4:5b:
b9:24:17:51:d7:04:2f:ba:69:80:0b:aa:ae:b3:e9:
47:5c:c9:0f:98:d9:7f:4c:5e:97:ae:f2:aa:1e:19:
f8:52:46:78:3a:ee:9b:9a:63:d9:b1:97:30:b1:8b:
5f:b6:32:d0:02:a6:8b:09:08:05:00:9c:70:af:4c:
9c:93:bf:8f:71:8a:83:f3:fa:08:1b:a7:5f:39:4c:
32:01:eb:59:bb:dc:a3:15:90:80:4e:4e:70:bd:50:
05:21:a8:94:c4:25:1c:a3:01:a2:3a:cc:83:dc:b9:
a2:89:09:f7:c2:9e:1d:1a:71:42:3c:29:39:83:9f:
03:4e:83:67:fe:b7:8e:aa:f4:43:5c:ca:b5:16:89:
b5:0d:13:48:33:b9:b0:f3:e3:c8:40:d7:ee:25:55:
d8:fc:22:df:e2:89:18:85:3c:fc:df:98:70:0e:7b:
73:42:cb:f8:03:52:1c:1f:61:61:0b:82:85:a6:f5:
a8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9B:1C:B1:F1:2E:8D:6B:14:5E:0D:A8:35:AF:AF:7E:E0:B7:45:13
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:67:ec:51:bf:74:ec:43:2f:50:55:48:cc:7f:98:ce:d7:bf:
f5:11:02:68:1c:01:f5:0c:bc:76:08:5a:bf:09:d1:ef:ef:c7:
3d:1d:6b:16:63:4b:17:c3:c2:c3:af:2e:44:ba:42:07:a4:6d:
0f:16:16:3b:54:ad:20:83:65:47:3e:be:63:89:52:ca:a7:8c:
1b:6e:a9:a8:57:b6:e2:84:dc:ea:e2:10:30:85:b8:9e:68:62:
96:7f:a2:7d:4d:c2:1b:1e:e0:31:99:06:f2:54:b4:8a:b0:b3:
ff:ab:1b:c1:ed:ce:be:97:ce:d8:84:96:5c:8d:74:e8:6b:8b:
b6:83:59:09:d9:76:15:f6:c7:e0:8a:01:dd:86:d7:2e:4b:ed:
31:04:89:e1:5b:62:2f:f7:c1:64:b8:6a:0f:2a:fd:8f:02:0c:
91:29:7a:3a:59:08:45:2b:40:5b:53:23:11:32:7c:05:cf:32:
d9:4c:bd:35:39:89:89:cd:40:91:28:a0:e0:c0:73:4d:89:66:
53:df:16:97:66:56:d4:c2:b0:e1:51:73:f2:e1:ca:b1:61:92:
bf:26:85:f9:57:06:76:ff:55:b2:2e:23:f7:77:fc:4e:4e:2a:
14:b4:04:eb:e5:cd:70:22:ac:36:77:c6:3d:3b:0d:36:e1:1b:
69:08:e0:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:35:17 2025 by rpki-client