
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: oZjQPvozc1VZdFfQcLUFLQBXDnd80rxLt1T8qtYrHvI=
Subject key identifier: D5:81:6A:1A:17:FF:1E:06:C5:94:26:CE:C5:C8:7D:D2:EC:89:35:8E
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 0197684E197AD8104AE215C0359623251757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 09CB
Signing time: Fri 13 Jun 2025 08:00:38 +0000
Manifest this update: Fri 13 Jun 2025 08:00:38 +0000
Manifest next update: Sat 14 Jun 2025 08:00:38 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: BDJiSCPfZF3AzGO5RUAQrepoigktMCENeNk1efyj11w=)
2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:19:7a:d8:10:4a:e2:15:c0:35:96:23:25:17:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Jun 13 08:00:38 2025 GMT
Not After : Jun 14 08:00:38 2025 GMT
Subject: CN=d5816a1a17ff1e06c59426cec5c87dd2ec89358e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1b:ec:99:4a:80:94:0e:f3:b1:02:3b:9f:7f:
05:5f:c3:dd:bd:58:dc:66:99:ab:5d:c6:db:0d:c0:
75:16:30:6c:88:3e:b9:c8:0b:9d:12:11:b8:4d:8a:
e6:51:7f:cc:a0:27:e1:1b:cc:c3:76:84:17:73:14:
83:cb:e0:2e:60:2a:9e:18:7b:7f:d9:9d:e1:23:07:
58:aa:79:04:4f:12:4f:8d:4a:46:b7:05:2d:9d:7a:
d3:84:33:05:95:02:69:11:aa:c1:91:d5:8c:89:c6:
d8:1b:fe:08:34:15:3f:9a:bc:4b:a9:9f:d0:8c:60:
c2:ae:b6:b3:3a:5a:f6:f2:1c:75:ec:46:2e:4f:28:
3e:31:76:b8:6e:78:53:25:f9:8f:14:aa:1b:50:cf:
fa:0d:9e:cc:8f:cc:4f:01:e6:b6:17:c9:5f:0d:9f:
0d:b8:73:db:55:ca:2e:fc:22:e6:9f:6e:93:df:22:
e1:c7:d9:99:c2:a6:c9:01:bb:55:2e:ad:e5:5b:98:
ee:68:08:58:2f:ca:ed:e3:01:6b:d0:e3:67:1d:78:
2d:47:53:20:20:b4:cd:56:04:43:72:ae:9e:db:3c:
13:2d:93:52:8d:21:1f:71:e0:c5:7b:3c:e1:1e:94:
57:2f:e5:73:a3:58:20:32:73:65:15:47:57:a4:8b:
b6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:81:6A:1A:17:FF:1E:06:C5:94:26:CE:C5:C8:7D:D2:EC:89:35:8E
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5b:6b:1b:e1:17:8c:73:38:2d:0b:ef:40:8d:17:6c:cd:2b:
5f:cd:45:2b:8a:ff:d4:41:42:11:61:1b:a7:b6:37:99:32:ac:
b0:e4:f7:ce:1b:2a:4b:6d:80:a4:32:9b:2b:4c:da:43:8e:a9:
b7:14:04:cd:d9:aa:2d:00:30:58:0f:cb:73:28:be:5b:a1:ca:
f5:cf:02:b6:3c:b0:bc:b1:8f:e3:ff:16:9c:ac:8d:ba:c4:de:
8b:f2:2b:a4:fe:93:18:bd:b3:24:38:4c:eb:8d:07:25:24:ea:
8c:c6:87:50:e7:7a:e6:07:fe:7e:b0:5f:28:d0:73:7e:07:b0:
96:85:77:4a:5e:39:5b:79:5c:c8:b9:0e:37:a0:0c:05:f5:c8:
fa:08:b1:9b:4f:61:d8:f3:e0:09:7d:ca:b6:fd:ce:d9:eb:70:
1d:b4:45:7e:bd:99:39:08:31:b1:33:5c:4d:1d:fa:33:cf:9c:
26:7c:40:0a:0f:1a:a0:c6:c7:f3:9c:84:88:f6:d0:29:0a:4b:
d2:c2:e1:43:4c:ef:96:59:e8:5d:57:0b:8a:57:4d:9f:b8:ed:
5d:64:cc:32:24:5b:64:25:a3:7e:c2:c8:4c:78:a1:16:5b:3c:
e2:c1:fc:cd:1c:6b:f4:c3:10:4e:b1:d4:d9:71:64:05:96:59:
c8:b8:56:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:49:21 2025 by rpki-client