Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: YqgZIL/RYopNAhF1hy/mFBAF81a8tADmcPTJorDv8Ow=
Subject key identifier: BE:21:08:C2:E8:A7:64:CE:B3:9C:13:B4:83:CC:6D:AB:3B:E8:D4:C1
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 0197684E6966060EFC3670BF09357D004188
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0BA9
Signing time: Fri 13 Jun 2025 08:00:58 +0000
Manifest this update: Fri 13 Jun 2025 08:00:58 +0000
Manifest next update: Sat 14 Jun 2025 08:00:58 +0000
Files and hashes: 1: ArXM7RJDnDKHHLBE21eoL2lE76c.roa (hash: n1+IHvUCKe6KRZXjngvQSrArHwaB9mNvliy4XN3wMhA=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: yU+VM3Dg0uD+3L9pjyFcK5zaoFArVLS7IjdwTQT28F4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:69:66:06:0e:fc:36:70:bf:09:35:7d:00:41:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Jun 13 08:00:58 2025 GMT
Not After : Jun 14 08:00:58 2025 GMT
Subject: CN=be2108c2e8a764ceb39c13b483cc6dab3be8d4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:03:08:e4:5e:25:99:24:17:d9:30:de:4d:d5:
fb:c6:56:aa:75:26:26:20:77:6e:3b:b5:c0:b4:32:
26:15:a1:26:28:a4:18:42:9b:76:73:e2:86:54:f5:
66:58:1c:33:40:f8:ff:38:7e:e1:70:18:c9:32:30:
2f:b6:5f:42:b9:9b:ec:09:d3:3d:94:2c:f6:8d:cb:
3b:dc:92:60:be:bc:7b:f1:5f:21:84:1f:d8:d4:e8:
af:a2:17:6b:01:48:4e:a3:74:85:36:4e:b2:f5:0e:
2e:cd:6c:8a:9c:eb:5e:22:b4:67:59:87:58:52:b6:
05:2b:33:0e:12:42:41:7e:5b:b1:6e:fc:f2:58:92:
f7:6b:31:09:35:28:03:5c:98:73:04:94:1d:b7:65:
67:46:e5:19:a8:45:73:f8:fb:ab:3b:91:29:d3:06:
98:3b:f1:7a:7a:be:b8:98:53:55:95:60:0b:31:6a:
ad:8b:5d:fa:ae:54:53:22:22:7f:74:3e:1b:04:26:
3e:dd:95:13:c7:d9:6a:73:12:98:4e:61:24:c8:13:
3e:29:bd:bf:77:d4:fd:d4:d9:f7:d9:84:50:72:1e:
a9:07:e0:24:62:fe:54:73:4c:f7:b0:92:e0:26:5f:
ef:f3:d6:39:69:c1:d7:54:7d:c4:db:37:39:75:db:
6c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:21:08:C2:E8:A7:64:CE:B3:9C:13:B4:83:CC:6D:AB:3B:E8:D4:C1
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:fb:44:4f:cb:29:f8:34:0b:9b:0e:d7:c5:3a:8f:02:79:55:
fc:a0:d9:78:79:b4:ad:09:d7:3a:20:6e:a1:cd:e2:82:02:9a:
e0:06:a9:36:1a:61:45:f8:11:33:8e:ef:89:b5:2b:6b:dd:e2:
ae:40:53:78:bc:9e:7e:2c:01:f1:b4:03:e8:e5:40:90:f7:2d:
70:b8:77:ca:e2:cf:ef:76:19:a2:40:64:4d:02:9b:63:fc:10:
99:b7:d8:f7:28:24:5d:19:13:16:28:f9:2c:c0:f1:46:aa:6a:
b9:bc:ab:65:de:17:c9:4b:77:e3:60:75:be:fc:84:e2:31:18:
92:b8:41:c2:2c:92:ae:98:5d:ae:17:99:8e:43:aa:8d:91:6e:
0f:83:10:65:d6:a5:b4:54:83:5f:6a:46:e1:a1:7c:6b:34:66:
88:ce:12:7d:d2:95:c3:02:72:0c:11:3e:2a:96:a3:b6:f6:67:
cc:d7:14:68:74:fa:f7:2e:81:bc:7e:9f:14:70:84:ee:cc:ef:
2d:35:81:c2:2a:ea:89:7a:64:65:2a:77:00:7c:8f:17:f0:4c:
fc:47:5b:c7:1a:c3:d0:78:77:1e:06:2e:c7:11:71:6d:a3:b7:
58:55:59:ab:5f:62:10:56:ed:24:ba:1a:52:93:54:be:26:44:
97:3c:93:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:24:09 2025 by rpki-client