Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: XztcbNvHqO/fPaWB56SiHZqXwMh4kxkQ/TCKZlWkhQE=
Subject key identifier: 57:78:F7:12:A9:13:1A:52:FE:EA:10:DB:17:18:8D:30:B8:F7:B0:7C
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 01974C9FEA426E9D44D6F7BD818F1B56395D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 1592
Signing time: Sat 07 Jun 2025 23:00:37 +0000
Manifest this update: Sat 07 Jun 2025 23:00:37 +0000
Manifest next update: Sun 08 Jun 2025 23:00:37 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: lUJ6H8TK8bKR3ZgQRDEIIC30UCxJ90u042zRMXoSyeg=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:ea:42:6e:9d:44:d6:f7:bd:81:8f:1b:56:39:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Jun 7 23:00:37 2025 GMT
Not After : Jun 8 23:00:37 2025 GMT
Subject: CN=5778f712a9131a52feea10db17188d30b8f7b07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c7:4b:33:25:a3:ca:21:ec:47:64:d4:48:06:
1c:27:b8:c3:77:6c:18:ff:cf:4a:7c:a5:4b:b6:12:
ba:f3:eb:d2:f2:c3:7a:27:48:6c:74:cb:61:b7:23:
f4:84:17:c5:59:51:9f:00:34:34:3d:f2:f2:2a:58:
2d:cc:7b:dc:59:60:08:36:e1:6c:a9:83:14:99:08:
bb:ea:cf:93:6a:73:92:c0:53:8a:55:0b:07:df:2a:
33:5e:04:45:da:ef:b4:62:18:5f:23:6b:40:e3:5e:
a8:bb:a8:e6:20:d5:43:eb:a3:27:ff:4e:fa:e3:3c:
0d:3a:42:f8:15:95:31:01:ce:ee:be:d6:1a:f0:ce:
08:ce:f0:ac:61:14:c3:56:65:c8:a2:14:d3:07:29:
a0:eb:4b:9c:e9:88:a9:c0:6c:f7:5c:ca:00:7c:a5:
c7:97:89:67:bf:37:4b:68:8d:d9:98:be:1a:fe:59:
9b:4e:96:09:5a:67:04:7f:4f:18:ff:d5:02:85:2b:
6f:48:bb:2e:0c:60:e0:2f:78:d8:fb:31:8e:b2:9d:
60:ed:17:df:8f:33:e2:13:b4:f5:65:6f:1f:21:d8:
49:2b:35:91:d8:d8:85:45:a1:84:d7:37:b0:75:3c:
b8:a1:fe:0e:f1:6d:cc:0e:47:83:00:8d:fe:ed:23:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:78:F7:12:A9:13:1A:52:FE:EA:10:DB:17:18:8D:30:B8:F7:B0:7C
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8e:dd:3a:d4:bc:68:10:37:18:b8:01:6a:f3:11:ad:52:96:
64:9e:08:cf:87:c6:ee:fd:a0:44:87:53:b2:43:e4:05:82:51:
fd:20:8e:e6:8e:e8:66:33:97:0b:e6:c8:59:5e:82:2f:df:af:
4e:97:e9:ae:4c:48:8f:80:d5:fb:65:e1:7c:a0:cc:cd:5c:ed:
26:82:82:5e:bb:57:48:10:5e:e3:c8:b0:c3:41:42:eb:fb:69:
15:d0:99:d9:15:6a:d4:ce:f3:64:19:37:f7:26:90:71:53:e8:
b0:1e:6d:88:c0:72:4f:b1:d1:d9:4b:17:45:80:30:bf:c6:2a:
7d:74:1f:86:31:1d:af:08:5d:0c:30:81:c1:2d:0c:ce:fb:11:
05:94:12:eb:c3:ad:4d:a8:6a:7a:31:db:1b:1a:60:46:84:22:
76:16:7b:da:f8:03:9d:26:92:fc:ae:70:d9:48:49:cd:8c:df:
29:44:b8:ef:25:23:15:54:ff:44:dc:af:7d:c6:78:fc:ce:68:
34:ba:b8:ef:58:b6:f5:b4:9f:0a:8f:3a:70:08:d9:88:39:25:
4c:03:62:21:ac:65:79:0f:7d:83:c4:c5:86:79:8f:ac:37:ad:
4c:68:65:e2:a7:0d:de:a8:a1:ad:4e:a7:fc:e4:84:33:23:8d:
cb:66:2b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:24:44 2025 by rpki-client