Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File: goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier: +pdWiX8kO8UDKvNL+/2r8IDb1UfjEfWiiIYSFmoBGMU=
Subject key identifier: AD:3B:8D:35:D0:E7:4B:4D:CA:AC:F7:49:96:2E:76:BA:57:F5:C3:FE
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer: /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial: 01988B0FD6032A7284F025D757832E1AFF4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number: 06D8
Signing time: Fri 08 Aug 2025 19:02:07 +0000
Manifest this update: Fri 08 Aug 2025 19:02:07 +0000
Manifest next update: Sat 09 Aug 2025 19:02:07 +0000
Files and hashes: 1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: UhHjLbkhHsJozAhzz70VI7I0t5FjQUMdQZnIfIKTkGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:d6:03:2a:72:84:f0:25:d7:57:83:2e:1a:ff:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
Validity
Not Before: Aug 8 19:02:07 2025 GMT
Not After : Aug 9 19:02:07 2025 GMT
Subject: CN=ad3b8d35d0e74b4dcaacf749962e76ba57f5c3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:97:21:59:23:e6:e4:75:f1:e1:c2:19:9c:9e:
71:75:aa:16:16:7c:8d:b5:5e:78:00:99:67:58:79:
e4:05:b8:b6:af:7d:23:da:6e:6e:0f:e2:19:38:13:
b5:b3:1f:38:92:2d:8e:dc:61:0c:69:53:3a:d7:fb:
60:91:f9:10:8e:49:58:e7:73:8f:d1:dc:56:84:74:
21:0a:14:4b:15:e7:41:7d:ad:b1:84:1c:78:5a:71:
e1:92:b8:27:ce:a5:98:cb:0d:48:87:c6:76:44:4a:
ac:c1:cd:59:67:32:d5:33:ad:d5:a8:35:7f:7d:39:
32:80:c8:fa:e2:be:25:7c:a1:23:9f:78:fe:a8:cc:
1d:73:2e:b9:e4:aa:64:27:13:b2:9d:ae:cd:cf:27:
b9:da:ba:b4:11:0c:09:95:15:91:e5:62:24:80:d9:
dc:54:e2:9d:3a:2c:02:ff:df:75:79:39:98:df:49:
ad:9a:28:a5:2e:94:1c:e3:dc:db:8a:fd:74:66:d6:
cc:f5:18:dd:3a:ff:49:a6:29:11:4a:8c:43:12:11:
d7:26:46:d4:90:f1:c0:ef:57:99:ec:c8:df:10:29:
01:88:65:62:ff:39:33:31:1c:c6:8d:18:fd:ac:84:
74:80:f2:2b:4c:bd:e0:10:5b:b9:fe:c6:f2:d4:76:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3B:8D:35:D0:E7:4B:4D:CA:AC:F7:49:96:2E:76:BA:57:F5:C3:FE
X509v3 Authority Key Identifier:
keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:ac:21:4e:17:81:8d:84:0a:2e:3d:f2:2f:09:b1:8c:8f:f9:
16:32:2b:8c:ca:ac:72:f7:e5:bb:52:d2:70:ed:45:b7:50:99:
74:56:61:a2:21:3b:76:65:de:fe:4f:54:30:28:d2:b4:5e:3d:
32:c5:a7:6d:7f:e7:f0:ef:08:06:71:42:6f:61:35:0f:76:06:
e8:c8:5c:0f:14:ca:77:6d:c7:aa:bf:6d:ce:b9:ec:88:4d:a2:
0a:d7:d1:74:44:63:d0:38:09:f7:ae:35:00:10:30:11:0f:9d:
f4:7f:ab:4d:db:b9:53:bc:d3:72:ac:10:31:42:99:df:39:1a:
ad:e0:58:7f:73:1b:e1:6b:5c:44:bf:c9:71:64:75:ba:29:87:
9c:6c:33:12:cd:6d:4b:e9:cd:f6:bd:e5:b7:d5:f4:eb:46:d0:
18:98:69:03:ff:cd:61:ee:97:89:b9:8a:74:88:65:f8:e6:84:
7a:26:67:b1:49:7c:59:e9:42:34:d0:c9:1d:06:6e:9d:fb:9c:
c1:3a:04:c0:d3:c6:84:5f:e8:64:a6:36:a5:f6:5f:87:a9:d4:
9b:0a:1b:45:2e:38:b6:5f:9c:bf:b9:78:4b:f5:ed:22:29:b3:
83:c4:6b:6d:52:d5:cb:82:5b:af:a2:23:e7:95:52:eb:c1:38:
3b:f5:04:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:35:04 2025 by rpki-client