Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: 3/LHHSnz6JeqVjcP4Jv7j4tOPOHMdG9CU1FcR1iqcdw=
Subject key identifier: 24:9F:1E:5C:7B:E2:3D:35:52:84:F1:08:E3:E2:AE:4C:F0:9D:FE:13
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 01974968686561BAC96ADA1A7853B9805B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 08:01:08 +0000
Manifest this update: Sat 07 Jun 2025 08:01:08 +0000
Manifest next update: Sun 08 Jun 2025 08:01:08 +0000
Files and hashes: 1: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: 2fDwt97IMSOCUjz0hDkMAKWs8epQJmeNEf5apmD3TOs=)
2: e9rn6bxSsUmtvRo7sJ4lEtK6S2Q.roa (hash: lsA08XTxVJOQQYnez6W7EOdFIkHihRjO9Y7qKfekirQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:68:65:61:ba:c9:6a:da:1a:78:53:b9:80:5b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: Jun 7 08:01:08 2025 GMT
Not After : Jun 8 08:01:08 2025 GMT
Subject: CN=249f1e5c7be23d355284f108e3e2ae4cf09dfe13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:26:f2:e7:cf:61:6b:bf:a0:0a:c9:80:be:3c:
61:3b:9e:b3:63:a9:86:15:d9:f2:34:93:3f:f0:d3:
22:fb:09:91:c1:c2:94:e5:5f:3c:f9:d9:e8:1e:43:
76:f7:63:3c:75:d8:dc:17:bf:dd:62:03:98:8c:fb:
5c:1b:18:4f:73:a6:02:bc:b4:ca:26:f5:35:b5:1f:
90:24:a9:d1:38:29:d8:79:d9:0d:26:54:e4:fc:16:
46:8d:d1:4a:df:b5:96:37:29:1c:4b:4f:70:2d:80:
08:ba:5d:97:d4:72:08:7e:86:56:66:18:1c:52:1a:
d6:42:71:21:24:ac:f0:32:69:ca:0f:57:68:14:5d:
2d:0c:71:eb:d4:80:f9:12:d4:2f:d3:2f:d4:28:a7:
70:70:b2:d7:ad:ad:35:c9:26:88:5e:7a:1c:77:af:
19:49:fb:05:b0:75:4f:dc:16:5b:e2:20:6d:17:d0:
2d:e9:44:96:d5:c3:2e:f2:cb:ae:5a:7a:6d:40:f0:
4a:bd:4e:ff:3a:e9:a0:6f:bd:c4:20:b9:ed:b8:95:
6a:de:c4:5e:96:aa:bb:2d:32:e8:77:fa:ad:df:34:
7e:36:b6:c5:08:91:3d:8c:6b:59:67:27:bf:90:39:
eb:ae:44:3c:dc:13:06:dd:24:61:9a:a4:ae:76:99:
9c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9F:1E:5C:7B:E2:3D:35:52:84:F1:08:E3:E2:AE:4C:F0:9D:FE:13
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:24:2d:e6:99:f2:a8:bc:7e:c5:51:53:12:64:d1:fe:25:9c:
cc:9c:01:88:9a:60:f0:47:bb:6d:d8:dc:79:63:7c:25:5b:12:
15:30:27:57:9a:8f:d7:78:6c:2f:77:26:b2:1c:cc:99:11:cc:
93:e7:10:8a:3e:91:43:5b:c1:55:83:7c:df:3c:03:19:17:89:
4f:5c:03:93:cc:a6:ab:b9:0e:17:ab:c0:81:32:4a:83:12:95:
e9:10:ee:a7:50:cc:ce:a6:2b:fc:47:8c:a0:e6:8a:55:1b:28:
7c:4b:c6:80:e8:33:a3:17:4d:06:de:1b:ca:e1:fb:1d:36:20:
d9:79:b6:54:97:4d:d9:5f:73:40:58:8b:eb:98:f4:cb:ca:9a:
c3:7a:19:c0:1c:2b:cf:d3:6f:f9:ed:00:00:4d:55:be:51:e2:
c5:20:c8:f1:88:15:2e:b8:54:5e:71:0e:7b:63:eb:3c:fb:70:
45:ae:35:3a:66:8f:c4:fc:42:b5:1c:10:35:e8:db:b8:28:c2:
0b:88:21:81:4d:77:11:46:20:8d:c3:96:9f:d9:b8:a7:cd:5f:
4d:3d:07:5b:52:14:10:3f:d9:ae:20:7a:f8:1e:eb:3c:3a:ff:
8b:86:97:e9:4a:24:42:05:e0:e2:5e:d2:de:16:d4:db:d6:15:
1f:dd:21:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:48:45 2025 by rpki-client