Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier: 5RmkuPpgzn5+x7+Fbek6j3lBa84fFHwskp4dhXeUupw=
Subject key identifier: 01:BA:72:BB:12:21:0F:23:4A:A1:4A:8B:40:4D:F0:18:F1:AB:B4:C0
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial: 0199180991E82A5B453C06C6CE3AD89D1ADA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number: 1668
Signing time: Fri 05 Sep 2025 04:01:44 +0000
Manifest this update: Fri 05 Sep 2025 04:01:44 +0000
Manifest next update: Sat 06 Sep 2025 04:01:44 +0000
Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: LEEOwHCqA5gcSGZdbS7VoSfoZeOxr3nkn5h99aQuGN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:91:e8:2a:5b:45:3c:06:c6:ce:3a:d8:9d:1a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Validity
Not Before: Sep 5 04:01:44 2025 GMT
Not After : Sep 6 04:01:44 2025 GMT
Subject: CN=01ba72bb12210f234aa14a8b404df018f1abb4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:48:93:05:57:2a:16:df:52:98:6e:d6:0f:f1:
27:03:21:56:2c:99:3f:bb:2e:0e:f8:b3:ff:10:a3:
ed:84:1d:22:ff:63:05:a6:a6:a4:07:a2:d5:b4:b7:
eb:d4:23:3f:b7:e2:dc:58:a8:ed:fa:dd:5c:3c:bb:
1c:67:b0:a5:c0:24:a9:5a:ff:ee:e2:70:d3:5e:81:
cf:bc:24:f0:25:d4:6f:56:14:77:1f:9c:93:29:7a:
b0:69:57:ab:6e:57:d4:6f:d5:6c:c9:42:d6:9c:a6:
33:5e:9d:a6:5a:70:33:c6:4e:ac:9e:6d:d0:20:d4:
3a:1e:1c:d9:04:ad:f3:3e:ac:74:de:e0:41:72:87:
ba:d7:c4:6d:27:e2:1d:0a:4d:7a:11:94:4c:37:9e:
eb:fb:b3:98:7d:21:93:84:4e:ae:2d:10:a2:8d:a5:
7a:d7:be:ba:c1:75:09:89:9a:5f:4f:7e:a7:47:87:
0a:96:7f:0e:2b:cb:8f:17:58:b0:a1:87:3f:d5:d9:
3a:14:78:56:60:3e:88:0a:e6:aa:8f:92:3b:3b:40:
e2:15:e7:82:f1:d4:20:f4:d5:8d:6b:d7:18:8e:f0:
ee:8e:50:05:ba:b7:db:53:c0:e3:79:f4:27:67:0b:
39:9e:02:c1:6d:98:e9:a5:ef:f2:55:b0:56:2d:b1:
fd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BA:72:BB:12:21:0F:23:4A:A1:4A:8B:40:4D:F0:18:F1:AB:B4:C0
X509v3 Authority Key Identifier:
keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:c5:ad:bc:81:2d:75:6f:ff:64:23:e7:3d:2f:a8:12:3d:74:
ea:fa:2d:60:05:4e:08:5d:1f:10:07:98:df:1f:3f:28:21:ee:
9d:55:48:0c:c7:d6:65:82:39:37:8b:3d:f7:05:b2:b3:80:29:
19:dc:7a:13:34:f1:55:fb:4b:86:9c:54:47:13:2f:85:19:6b:
b2:af:05:28:12:2b:f5:bb:4e:dc:f9:b9:59:36:f9:6a:b2:53:
f2:b2:3f:99:cc:18:2b:47:d5:85:65:04:7c:b4:c4:8c:e4:51:
f7:da:88:7b:c1:7f:27:12:04:7c:92:99:73:9d:4b:20:66:24:
49:0b:af:e7:19:ae:cd:60:0e:0e:ec:06:c3:88:4a:73:3d:38:
ad:11:b9:16:81:36:e8:eb:62:19:41:87:a9:6e:ce:f8:a4:b7:
3d:20:42:61:8d:9d:f1:29:3e:70:a8:d8:32:41:9b:d6:38:c7:
d1:0c:98:22:6d:89:6b:61:e3:db:9a:02:82:eb:2a:a9:7d:28:
0f:8d:28:7f:98:92:a9:73:d3:08:a4:4a:4e:3c:57:e5:b3:30:
d7:17:56:ca:32:88:32:b7:2b:6f:63:60:9a:56:4f:d5:b9:0d:
03:96:fe:56:0a:51:78:45:f5:0e:d3:50:c7:02:7e:d5:ba:11:
6e:17:40:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:21 2025 by rpki-client