Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: 8VF3ro+6VxYjPBC0jiQPNjBkf0wCztyugRUvnmd4j10=
Subject key identifier: 0B:DE:29:59:4E:CB:F1:2B:AE:79:B7:43:51:C1:C0:9C:2A:27:A2:D1
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0197458B08C31353D5E7CC2F425A91BA63B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 08A7
Signing time: Fri 06 Jun 2025 14:00:28 +0000
Manifest this update: Fri 06 Jun 2025 14:00:28 +0000
Manifest next update: Sat 07 Jun 2025 14:00:28 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: 4B6i4WNuIKnAW7PImYAbpuswEt5TqFmOJg6H9JCvPyI=)
2: eTuN91J09OBNoZtxEtruVhH4DbY.roa (hash: F1iOkNAfZrkXFWgz/sdsk9Ul6Wkc9BDyHiaUC1recQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:08:c3:13:53:d5:e7:cc:2f:42:5a:91:ba:63:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Jun 6 14:00:28 2025 GMT
Not After : Jun 7 14:00:28 2025 GMT
Subject: CN=0bde29594ecbf12bae79b74351c1c09c2a27a2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a2:f6:c3:04:42:96:2f:71:a0:8d:f3:b5:0c:
ed:29:06:10:0a:39:d5:f9:20:97:42:00:71:a9:17:
99:9e:5d:3c:37:57:ae:a8:c3:8e:60:58:ca:64:42:
40:c7:69:f3:c8:5e:22:32:2f:ae:95:98:95:4d:c7:
5c:38:5d:64:b0:97:40:f3:7b:26:45:f8:74:c4:0f:
cd:f6:c3:b3:7e:cb:6b:dc:98:99:13:89:cb:8a:d3:
65:d0:26:92:32:5c:a3:c7:24:68:8b:21:7c:5c:df:
34:9e:0c:b3:43:f2:98:b8:5c:92:03:ce:a3:dd:a9:
92:a1:f8:7e:10:c2:c3:82:63:d6:4f:8e:98:ef:10:
6f:03:dc:12:7e:aa:db:2e:1b:b8:3b:5f:7e:3b:e8:
b7:15:ae:a2:45:48:e9:aa:36:68:ce:82:07:8b:95:
91:98:92:b0:c3:70:2d:5c:ea:18:4d:47:8d:11:3c:
5d:6f:03:c0:33:06:46:04:74:3f:84:69:4e:96:13:
fd:50:50:71:38:e1:4d:02:d8:e3:76:1f:b6:d7:93:
36:e8:b6:6f:f0:31:1b:65:fa:cd:39:03:14:b1:87:
dc:3d:7b:05:5b:49:36:fb:73:12:b8:43:5f:40:71:
e0:cf:1f:4d:8f:d6:4c:da:88:cf:02:f1:4e:7d:a1:
8a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DE:29:59:4E:CB:F1:2B:AE:79:B7:43:51:C1:C0:9C:2A:27:A2:D1
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:81:aa:1c:33:0c:07:03:44:14:d0:bb:4b:8f:74:be:3f:f4:
4e:a3:55:80:9c:57:1b:a7:3d:6c:cb:f2:27:23:6f:53:61:4b:
c2:da:04:44:91:1b:c1:bb:a9:84:ae:f8:79:0e:c8:a2:1f:21:
ae:47:89:ba:03:e8:77:f7:64:8a:d2:5e:f3:0d:24:48:5e:9a:
0f:d7:88:47:e3:71:02:7a:c0:13:eb:37:e5:6c:c5:a9:1c:61:
8b:ce:ec:64:ef:f8:b6:94:32:61:ba:7f:22:05:5b:7a:f9:16:
c3:ac:49:27:ae:f7:81:5b:da:48:d5:0f:1e:23:b8:16:82:0a:
ee:bd:42:62:41:32:f3:e5:99:3f:27:41:4b:39:08:98:26:66:
bb:e5:92:00:7a:76:3a:9c:26:37:12:c6:90:b1:18:7d:fd:69:
85:e3:bc:fe:94:c4:b6:ba:b2:73:4c:a6:ec:09:72:a5:4e:7b:
d4:ee:6a:d4:53:84:f7:e5:d0:d5:73:90:e1:9e:f6:41:22:ce:
69:bc:5a:b3:3e:8f:c8:0f:6d:c0:e8:77:51:53:be:36:69:18:
d7:50:da:e5:0d:dc:47:43:ce:6b:de:5d:19:2e:a4:6a:e8:58:
cc:0c:f4:2e:6d:cb:af:75:de:0a:2c:d7:5e:84:45:ab:15:8c:
62:93:f1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:34 2025 by rpki-client