Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
File: 8PY2_se1stGN43l-aYTAaVXnFtc.mft (raw, json)
Hash identifier: jOw3rpwPJVXRFA2wZ3uILMNJu3HE52ZH1VyuSApwmz8=
Subject key identifier: BF:AC:79:40:0B:90:30:77:27:D4:E2:73:FA:75:A1:A0:71:C8:13:A4
Authority key identifier: F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
Certificate issuer: /CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Certificate serial: 01976D0677DFF2F67CF991A36631EA7C632F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 06:00:29 +0000
Manifest this update: Sat 14 Jun 2025 06:00:29 +0000
Manifest next update: Sun 15 Jun 2025 06:00:29 +0000
Files and hashes: 1: 8PY2_se1stGN43l-aYTAaVXnFtc.crl (hash: jeTeQWtXqSfNzVvZhhEacZp/4Prkc12046ygQQWXjxE=)
2: N4NsUcZuS_9XiBDgAfw6eryV7HU.roa (hash: tpgeA/zfOVEAg9H115FFWM358l26uFQNlABFRgvWlU4=)
3: yV4dNy3NsBZVUNWCmHTLsnrsaLM.roa (hash: HeRl5vH7gTSirrF3z1irtqiGbkDXqM3OvljtYndKLgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:77:df:f2:f6:7c:f9:91:a3:66:31:ea:7c:63:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Validity
Not Before: Jun 14 06:00:29 2025 GMT
Not After : Jun 15 06:00:29 2025 GMT
Subject: CN=bfac79400b90307727d4e273fa75a1a071c813a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:06:ab:fc:5d:d4:b8:81:f2:49:2f:4d:83:
97:db:3f:21:e0:fe:ee:c1:87:d6:37:1b:e7:4b:62:
e6:d3:cc:e7:1d:0f:15:3a:fd:af:b5:ea:6d:2b:01:
eb:8c:1d:ad:8b:05:21:0c:3c:fc:98:4f:6f:e4:04:
a8:da:e1:37:d8:28:36:e1:89:75:13:d5:a1:28:34:
10:f1:59:45:bb:46:37:54:0a:90:2e:19:0e:bd:80:
27:1e:e9:cd:7e:dc:9b:f4:e4:32:e9:c2:ae:f8:dc:
2a:2b:85:52:16:f9:52:61:ba:34:f5:7c:25:04:73:
79:40:a1:0b:23:eb:e1:e7:97:9f:9f:32:22:0c:3a:
36:10:99:cc:61:42:2f:63:24:a1:08:0f:47:08:5b:
88:98:38:e2:ef:19:6d:3a:0d:0b:ea:8b:3a:de:cc:
31:41:6c:05:b6:d3:ab:38:98:22:ce:d6:eb:9b:2f:
94:96:f6:fa:e7:2d:07:d7:9f:93:1f:69:b8:13:3e:
64:0d:9a:d2:f0:87:8c:35:4f:f5:d0:1e:ff:83:34:
85:56:42:e5:69:47:17:e3:04:0a:30:bc:33:0c:bf:
11:3e:3b:49:62:dd:b7:8b:8b:d0:15:e5:13:7f:0a:
33:5d:62:6e:8f:a3:5c:4a:78:78:81:19:59:04:bd:
76:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AC:79:40:0B:90:30:77:27:D4:E2:73:FA:75:A1:A0:71:C8:13:A4
X509v3 Authority Key Identifier:
keyid:F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:19:ca:05:b8:c0:18:28:73:95:c9:9b:68:34:68:14:0a:0f:
34:e6:84:8a:79:8a:62:e6:bd:c6:33:32:b2:22:24:83:8a:3e:
f9:15:1f:d4:2d:69:78:75:7d:a5:5f:4e:4c:56:0a:4b:63:c2:
54:dc:1f:d6:9b:67:69:e1:66:16:c1:49:10:85:8a:f4:b3:dd:
8f:73:fa:73:65:37:c0:58:9a:c5:96:fb:19:be:c0:ef:6b:3c:
8d:32:f2:5d:4b:3c:f8:c1:bd:0b:fd:e6:8a:d1:56:44:75:e5:
a7:1c:96:3e:e5:34:cf:e9:69:ec:d3:e2:87:c1:c5:ab:37:e0:
6d:fb:25:da:60:75:90:75:c2:d2:13:f0:3a:20:8e:8a:b4:08:
c0:99:e9:92:9a:d8:58:0a:99:17:f8:c8:2b:12:bb:c5:b6:a7:
aa:a0:fe:46:c4:d5:9e:02:11:fa:7c:47:e5:92:b9:ff:11:43:
84:8a:78:43:be:20:3a:1d:15:4e:88:a6:df:ab:8d:25:2a:86:
09:84:02:d9:4b:eb:2d:77:05:63:cd:1f:29:1d:1f:31:36:1b:
0b:0a:b0:9b:51:b9:d7:6d:58:c1:e1:b5:b7:18:19:eb:94:b3:
75:3f:88:c6:3c:f8:76:f6:25:e9:7f:43:a1:1e:27:b3:e8:09:
07:59:da:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:17:25 2025 by rpki-client