Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: vsKVzpmouKwyhZU90vX51zwqBwr4kb73FRbCC8hQqq0=
Subject key identifier: 16:BA:52:3C:38:B5:D0:3A:DD:35:0A:AB:41:25:11:35:9B:D7:8B:25
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 019746D4A81B00DA31F164A5B46B656D339A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 148D
Signing time: Fri 06 Jun 2025 20:00:31 +0000
Manifest this update: Fri 06 Jun 2025 20:00:31 +0000
Manifest next update: Sat 07 Jun 2025 20:00:31 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: HB5lZy5ZLmVSuMI80oiGCQkMHSDsrD3qgc6TwMuOABk=)
2: m0jbiHxRktR_kE-i3D3woRX2ZsI.roa (hash: fSOohTJ+oYWg/YD/VykP7b8U7lIYd4B0MDv4mOCNuT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:a8:1b:00:da:31:f1:64:a5:b4:6b:65:6d:33:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: Jun 6 20:00:31 2025 GMT
Not After : Jun 7 20:00:31 2025 GMT
Subject: CN=16ba523c38b5d03add350aab412511359bd78b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:bd:af:80:b4:ee:89:d0:94:20:08:da:b0:
92:6f:5f:b2:e5:6f:c1:9d:a8:ec:1b:ec:9e:89:4a:
51:58:5c:17:66:9f:0d:fd:9b:ce:e1:c5:e8:1a:18:
17:5a:86:2a:e7:ee:2d:3b:25:3c:7c:27:0a:13:f7:
70:00:ad:be:a4:e6:bf:4e:a4:ed:d9:96:05:72:73:
fb:25:e3:80:92:15:2a:11:f8:a6:99:a7:2d:43:50:
13:29:bb:e6:b4:6e:ec:62:84:65:b3:e2:a9:26:2d:
50:72:b7:ae:0a:36:61:f4:df:d9:59:37:1d:28:a9:
53:c7:8a:14:51:35:ec:d0:bf:7f:1e:88:56:17:df:
dd:53:ca:28:db:35:fd:10:58:9f:a7:0f:05:5b:35:
16:4e:0a:18:80:49:53:ab:fa:41:b3:f2:73:76:72:
07:56:88:a9:b1:ae:c7:94:cb:b7:e1:55:de:82:d6:
10:7d:43:26:f7:b8:3e:f0:5d:1a:32:cc:e0:3f:3f:
18:82:63:e4:cb:07:83:29:37:81:1b:b6:7f:5c:55:
9f:99:0f:01:36:50:8b:d2:6f:39:17:35:1b:ef:9c:
6b:d9:7f:02:f8:0b:e1:0d:df:63:48:c7:83:59:7f:
91:16:20:e5:74:11:a9:26:d5:89:4e:54:6f:e8:a2:
7c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BA:52:3C:38:B5:D0:3A:DD:35:0A:AB:41:25:11:35:9B:D7:8B:25
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:51:58:cc:66:ba:8a:78:28:19:5e:de:95:d1:d8:14:62:95:
32:fc:3a:bb:c3:76:a0:ab:86:2a:95:b9:13:aa:89:71:3d:ad:
30:fd:60:8a:f0:2e:f7:cd:89:e0:e5:f3:7b:d0:7d:a0:1b:22:
9d:fa:4f:8e:40:68:79:c9:58:a2:c8:70:b3:5f:86:2c:dd:c9:
27:bd:13:56:f6:51:60:f7:eb:1e:b6:22:08:1c:90:bb:cb:b5:
21:69:64:34:44:0c:59:a6:d0:2f:06:eb:94:57:83:8e:c9:27:
b3:cb:22:77:33:0c:02:22:9a:08:3f:b5:0a:c5:5e:bd:12:3e:
eb:8e:04:b6:8f:9a:f0:fb:32:c0:1e:9d:09:86:71:fc:94:6d:
6d:5a:f7:8f:73:74:b8:56:d1:6d:61:a6:ee:67:46:8c:8e:46:
80:d1:37:4b:2a:b8:97:40:fc:15:c1:6a:9c:05:7b:95:e1:e0:
1a:04:1c:51:85:6e:89:8e:76:be:54:40:9c:f4:e6:66:02:cd:
7d:f4:64:ba:0f:19:54:20:88:ba:55:05:7b:e7:2b:24:5e:ec:
5f:22:70:ed:94:c2:21:5a:d0:71:ad:76:fd:1a:3c:ff:35:dc:
56:f2:10:1c:26:2d:30:d3:5e:43:27:a8:c6:29:94:20:f3:b9:
a9:59:e3:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:45:47 2025 by rpki-client