Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: 8SwzzzeSEuZqBpKQ6ytviHwM8p0Zl55c8jO842fmee8=
Subject key identifier: 58:B9:3F:B6:39:43:63:E3:4A:CF:0C:7C:76:AF:08:77:ED:10:42:54
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 01976E509EE73EABEC624146BA20B2609B81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 084D
Signing time: Sat 14 Jun 2025 12:01:06 +0000
Manifest this update: Sat 14 Jun 2025 12:01:06 +0000
Manifest next update: Sun 15 Jun 2025 12:01:06 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: aP+sAoMoq4StwLdlr0vAseKTzJM9due54+Qlc4iZSHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:9e:e7:3e:ab:ec:62:41:46:ba:20:b2:60:9b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Jun 14 12:01:06 2025 GMT
Not After : Jun 15 12:01:06 2025 GMT
Subject: CN=58b93fb6394363e34acf0c7c76af0877ed104254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:8c:a6:e1:b2:c5:2d:94:72:86:02:e3:92:
42:8c:e5:f4:48:4c:7d:59:de:1a:99:9d:71:40:d5:
c7:89:f7:21:a3:e1:8b:c9:03:45:d7:54:4d:02:c1:
bd:82:06:6a:5c:b3:b4:02:24:75:8c:b3:70:01:62:
f7:67:ae:b0:69:5a:29:2f:6d:ba:74:7b:d6:f8:5e:
34:c8:ee:44:8b:b6:5d:3d:a3:70:a3:ac:dc:68:31:
e4:d8:92:f0:f2:db:f9:1f:f1:04:5c:dd:d5:74:40:
ac:fe:11:f3:d8:86:ea:06:89:49:e6:2c:0d:e0:f1:
12:78:11:33:c1:05:2e:79:9c:46:da:ce:05:88:20:
69:5a:dd:9f:83:09:73:8f:c6:81:03:50:b0:0b:9d:
cd:b3:4f:22:4f:d9:9c:06:56:de:fa:38:58:73:09:
2d:67:f9:bd:d9:be:8d:84:f5:74:b8:54:45:cb:12:
80:ab:68:8a:db:09:98:84:f6:83:80:5d:10:d1:7d:
b5:f7:42:ee:47:2c:38:f1:cd:97:2d:0c:ee:78:b0:
a6:50:9d:5f:61:1f:f0:31:e2:8c:27:78:06:dd:d7:
09:74:9e:ca:12:05:29:31:71:26:39:fb:00:b6:98:
1c:b7:5b:0c:b6:2c:82:3d:a7:9f:3b:db:07:e7:25:
15:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B9:3F:B6:39:43:63:E3:4A:CF:0C:7C:76:AF:08:77:ED:10:42:54
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ad:a0:75:00:30:19:a2:9c:71:8a:ce:4d:3f:66:4f:a5:84:
4a:63:6f:3c:08:6a:f3:50:e5:12:8e:9a:f7:15:66:9c:64:81:
9b:9a:3d:76:71:86:a6:c1:e0:ce:a1:31:ab:f7:f6:b8:bd:b1:
b0:de:bc:c5:78:78:94:95:33:cb:c7:ef:18:d6:22:47:9b:58:
38:aa:a3:20:ec:28:40:72:6b:c1:f8:fe:b2:bf:bc:8d:9b:7f:
92:78:03:6f:bd:14:93:1b:39:6d:97:7a:7a:eb:ef:a0:9c:45:
29:10:d2:f2:68:eb:03:2b:b7:3f:f3:bd:e0:2b:f7:e3:79:2e:
32:b2:98:a2:e4:6c:8c:77:85:0f:ee:3f:81:57:f2:67:a6:d0:
9c:8b:60:12:90:1b:99:da:d7:59:58:f7:ee:8c:7a:6d:2a:68:
48:95:f6:eb:48:5a:19:5b:1e:8b:c4:4d:31:8a:56:93:b0:cf:
f5:af:b0:7b:e1:94:f3:ca:d8:27:64:5b:98:79:3c:2d:23:8b:
01:88:ee:1c:3f:6c:76:f3:ef:50:74:5f:4d:e9:4b:12:85:64:
57:8a:a7:18:96:eb:de:c4:47:bf:42:a5:15:94:f6:12:de:02:
d2:fc:6b:9e:75:dc:b8:35:18:77:b6:6d:bd:5b:80:90:4b:d5:
f7:cc:52:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:09:49 2025 by rpki-client