Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: Rn/5nW3/FmJ5j0HXoP8+R2muuzDJRcp3f8dhnJyXQ8c=
Subject key identifier: 26:C9:74:3F:36:1D:AF:A6:3A:C4:42:4C:4E:30:50:C8:64:75:C8:2C
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 01974DB2916E33E9831089112CB2680027DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 0202
Signing time: Sun 08 Jun 2025 04:00:37 +0000
Manifest this update: Sun 08 Jun 2025 04:00:37 +0000
Manifest next update: Mon 09 Jun 2025 04:00:37 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: nYpXYm8j8uzrbD58IABDbAih5xFjYAPjFGiapWAzN5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:91:6e:33:e9:83:10:89:11:2c:b2:68:00:27:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Jun 8 04:00:37 2025 GMT
Not After : Jun 9 04:00:37 2025 GMT
Subject: CN=26c9743f361dafa63ac4424c4e3050c86475c82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0f:6b:3c:46:3f:fe:29:ed:2e:0b:73:e3:f3:
46:45:6e:8a:18:23:a7:5d:e6:05:ef:5f:fa:d9:25:
0d:e0:73:9f:ac:54:c4:32:e2:85:af:fd:05:9e:27:
f1:7e:26:80:7e:d7:af:a2:91:79:6a:0f:15:56:c2:
9a:85:cb:24:ff:3a:a1:e0:e0:69:ee:c0:c8:e6:27:
f0:e8:16:72:f5:de:60:1e:10:21:95:25:a5:f5:84:
49:37:ad:3d:c3:6c:ba:23:88:86:e5:d7:ea:d9:47:
bb:31:c5:74:57:54:50:ad:98:40:04:7e:35:ab:0b:
66:a2:86:d5:ed:52:8e:56:4f:8e:bf:6b:d1:89:d9:
9e:73:56:91:91:8b:44:cc:64:e4:b1:fb:6f:9a:94:
b5:73:3c:83:4f:12:cd:54:ca:74:cf:0f:ed:f2:2c:
22:77:0c:e9:8b:57:67:f6:32:06:88:03:9c:7c:ec:
bd:81:91:4e:03:5f:50:e0:d3:e6:b5:77:d4:f1:52:
48:e4:d3:1f:dc:82:f8:e5:88:44:65:a7:a5:51:61:
da:20:77:57:11:5f:dd:55:00:f2:9d:11:26:29:7f:
e5:48:b8:14:19:ac:75:f1:9e:9d:75:a9:5c:10:08:
da:3f:ad:ea:fc:06:29:97:29:16:ff:e6:f6:4f:0e:
1d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C9:74:3F:36:1D:AF:A6:3A:C4:42:4C:4E:30:50:C8:64:75:C8:2C
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:87:cf:03:46:51:22:7f:03:f2:e9:2f:91:9c:44:6d:3e:a2:
f5:1e:83:2e:35:1a:7b:4a:00:c1:7e:52:1e:ae:44:41:9d:94:
03:de:9d:e8:78:5b:de:9c:54:ca:03:02:89:f7:0b:5e:f5:99:
4d:6d:d8:e3:65:02:ff:e1:05:af:6a:d7:eb:2e:92:b8:62:40:
fc:21:fa:be:b3:38:37:0a:78:72:b7:60:61:10:00:5c:21:ad:
6c:e6:ed:10:dc:cb:79:88:63:68:5f:79:b1:1c:12:a9:db:ef:
6c:fb:4f:40:ac:7d:cc:c1:63:13:30:ab:dd:44:e0:12:39:0a:
72:f5:5e:a0:89:a7:09:74:39:4b:52:52:60:f5:68:7d:89:3c:
37:be:61:b0:4c:6c:a5:67:b2:2a:b5:24:18:23:90:1e:98:f5:
63:78:3d:2f:6b:0e:11:cb:b4:9d:2f:36:d7:54:db:98:4e:1e:
23:6b:2d:ee:22:47:f7:e9:75:39:32:99:a6:fb:9c:ae:32:ce:
73:ac:38:19:a9:ed:1d:19:ae:33:ab:2e:f0:36:37:8c:a0:23:
dc:6e:fc:0b:05:92:33:ff:73:33:49:0f:be:6f:e6:bd:cc:ff:
3a:8f:54:9c:9f:89:de:a9:b2:49:99:6f:13:34:12:ac:03:14:
b5:74:bf:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:03:40 2025 by rpki-client