Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
File: 8gLwqonAZ9ZjOLTVnSBSujmplEs.mft (raw, json)
Hash identifier: Zte9ZN2u0PmJ2RvaJQs0F/2fbjjp3Y8l+YvbY8ETeMM=
Subject key identifier: F4:2D:76:2A:D9:72:30:03:D6:29:7C:12:64:17:66:42:98:5F:2A:CB
Authority key identifier: F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
Certificate issuer: /CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Certificate serial: 01989FA837075A0EC2BD3A83D306D0AC42F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
Manifest number: 0590
Signing time: Tue 12 Aug 2025 19:00:58 +0000
Manifest this update: Tue 12 Aug 2025 19:00:58 +0000
Manifest next update: Wed 13 Aug 2025 19:00:58 +0000
Files and hashes: 1: 8gLwqonAZ9ZjOLTVnSBSujmplEs.crl (hash: itmysG4GpdZHOfoWnY6zq6d5EFlsxcUuVb/q7G64HBQ=)
2: gxY3cqQ9AtbDjrB_-otpHb6Irb0.roa (hash: LD3l5OVkY9IZSD+ZJZMYqJis4oBCr+KMHwZEJzzuk0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:a8:37:07:5a:0e:c2:bd:3a:83:d3:06:d0:ac:42:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Validity
Not Before: Aug 12 19:00:58 2025 GMT
Not After : Aug 13 19:00:58 2025 GMT
Subject: CN=f42d762ad9723003d6297c1264176642985f2acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:91:88:0b:f3:6e:4a:bd:06:d9:09:b7:d6:10:
10:2d:32:05:88:f1:6d:3b:79:4f:8b:02:de:03:ad:
25:09:73:0a:bf:76:b9:2f:b9:35:eb:47:c5:be:1c:
aa:5e:44:2d:0d:3e:aa:96:78:38:88:bb:6f:cf:54:
05:08:5e:4e:26:9b:f8:25:cf:0c:54:35:15:60:4c:
f5:96:43:a3:95:d6:14:eb:cc:0d:f0:bc:fb:b2:f8:
0b:bb:c2:85:eb:ff:c2:77:80:4c:96:63:f2:a8:63:
a6:06:e4:c6:4a:70:2f:71:9c:fd:0d:a1:38:a2:f8:
60:9f:1c:91:b9:63:97:7e:d0:64:6c:13:4d:6c:fe:
77:d7:da:61:6f:a8:b7:36:fd:3c:4a:d2:44:18:3c:
0e:82:8f:86:dd:7c:ad:3d:b6:d0:74:52:73:b3:bc:
a5:43:fc:17:bd:b3:3c:d2:79:6b:a4:43:d3:b3:b2:
3b:4c:ac:4f:7d:83:76:39:91:a1:a1:ec:d7:67:b3:
7b:b7:b0:ba:00:fa:57:cc:99:27:3d:53:28:1b:59:
c8:ac:07:4f:d2:2f:e8:f5:32:8b:53:62:4f:f1:d0:
dd:ea:df:a2:37:e6:3e:09:2f:4e:a5:0b:38:cc:89:
01:0f:f2:14:41:b2:b7:ef:55:74:47:70:bd:59:56:
8c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2D:76:2A:D9:72:30:03:D6:29:7C:12:64:17:66:42:98:5F:2A:CB
X509v3 Authority Key Identifier:
keyid:F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:c0:42:c9:00:45:bd:e2:51:69:cc:dd:77:d1:ff:5c:e7:0b:
69:a9:d3:ad:61:3a:ec:69:e4:02:13:79:3f:cf:95:b2:d5:85:
11:54:65:1c:b5:aa:05:69:9e:7f:d4:84:38:95:81:86:a6:8c:
55:ce:69:7a:0a:1b:0d:7c:ff:52:77:76:9a:95:5f:59:ab:cf:
ed:68:33:a8:88:f8:90:9e:cb:72:23:53:8b:43:56:78:4a:86:
c5:00:7a:ac:28:04:e7:12:78:0b:eb:59:ce:a2:33:58:cf:16:
56:5f:0c:ca:14:0d:a4:58:3b:8f:68:0d:7c:8e:0f:bf:1f:f5:
3f:f8:fc:b8:7b:08:36:1a:ab:3c:81:4d:f5:99:de:70:42:77:
98:a3:b6:35:63:02:b6:a4:23:06:d0:aa:7b:f8:45:9d:d2:9a:
2c:cb:6e:51:f0:fb:8d:22:38:06:07:74:1d:23:37:f4:55:a9:
e5:ac:aa:ac:fa:42:18:c4:15:fd:2c:9a:6b:1a:c2:b7:f6:7e:
1f:9f:43:e0:4b:c5:da:60:17:dd:c1:95:1f:3e:11:ac:a3:4e:
62:8e:c8:06:86:be:38:56:e0:2f:ea:35:26:fd:87:7f:b4:4d:
02:c2:89:8d:bf:25:34:61:70:ce:ed:0a:01:d1:c3:d9:87:96:
11:12:e7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:17:27 2025 by rpki-client