Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
File: soehvthfaZtS-gaqGeUc8liPFLk.mft (raw, json)
Hash identifier: RKTDcL7wYjcndbMMBzGnXH6nwwvGk4WosWsA08rlCPo=
Subject key identifier: E0:1C:EA:E7:C4:CB:9B:50:4E:25:93:BD:D6:D2:19:F5:14:D0:70:0D
Authority key identifier: B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
Certificate issuer: /CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Certificate serial: 01976F2C5E8F41E7FCDBCE55D4365CF2C90C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
Manifest number: 1032
Signing time: Sat 14 Jun 2025 16:01:08 +0000
Manifest this update: Sat 14 Jun 2025 16:01:08 +0000
Manifest next update: Sun 15 Jun 2025 16:01:08 +0000
Files and hashes: 1: soehvthfaZtS-gaqGeUc8liPFLk.crl (hash: PkvELPkE3Dg9McDki+dW5FFjdE+iEIT8IQ+vqjR7Pcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:5e:8f:41:e7:fc:db:ce:55:d4:36:5c:f2:c9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Validity
Not Before: Jun 14 16:01:08 2025 GMT
Not After : Jun 15 16:01:08 2025 GMT
Subject: CN=e01ceae7c4cb9b504e2593bdd6d219f514d0700d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:72:6d:7c:f4:d1:6c:e5:04:b1:64:bd:00:
79:e3:c4:77:d2:12:3e:f9:31:2c:0b:38:5b:a6:53:
37:53:6d:73:bb:8c:27:e0:a6:35:89:ed:8c:1b:67:
22:8c:6f:77:d2:b8:42:9f:d3:38:23:0f:c1:ee:06:
e8:4e:e9:13:70:ac:90:a8:f0:31:19:a9:3f:5b:07:
be:4d:27:be:9c:a0:c4:cd:71:60:d8:39:2e:7e:a8:
37:7b:a3:6a:d0:3b:c6:3f:10:ae:e4:d5:e6:56:dc:
37:ce:38:77:92:5b:d1:84:70:f4:f4:ea:c9:af:8f:
c3:eb:9b:69:bc:09:ff:6b:e4:1e:e8:95:67:25:ad:
d8:32:ba:c7:89:e2:e0:ed:e1:03:e8:b8:05:69:2a:
b8:ee:03:b6:24:f5:75:77:ef:b1:25:4a:74:65:8f:
0e:18:7d:fa:b2:f8:36:dd:49:22:75:c3:6b:1d:39:
fe:d4:4a:6b:82:d3:b0:9f:01:38:d0:ab:52:6d:6b:
aa:55:50:ae:eb:1a:79:48:70:13:59:f3:77:ae:ab:
fd:59:da:df:8b:52:8c:c3:3e:79:95:57:95:0a:6d:
bd:93:21:8b:68:38:2f:92:fa:be:a0:df:8f:db:73:
94:70:8a:a7:b7:b2:64:16:f2:5e:68:17:67:e5:13:
bb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1C:EA:E7:C4:CB:9B:50:4E:25:93:BD:D6:D2:19:F5:14:D0:70:0D
X509v3 Authority Key Identifier:
keyid:B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:58:7c:c0:2f:2c:8f:f9:b4:5e:25:e8:84:2a:90:b9:55:f6:
c4:15:ec:e3:9e:ca:da:e1:4c:16:b2:f7:4d:7c:6f:05:94:0f:
89:42:f4:f7:61:be:a4:1f:dd:08:a5:43:ca:90:bf:ea:a7:a8:
05:72:81:8f:fb:18:4e:da:63:b2:19:9f:50:f8:23:df:a1:89:
bf:f8:fb:71:f2:bf:ec:74:7b:89:e5:15:a6:dd:0f:6a:43:29:
44:d4:60:e5:38:06:05:54:33:ab:2d:4e:47:00:c4:22:af:7e:
34:e9:de:2c:4a:4b:63:48:43:51:f8:6e:78:da:80:0a:45:38:
e8:ab:6b:6e:93:6b:7d:d6:75:9b:1e:b9:e4:b6:52:47:c7:e8:
ec:4b:21:94:65:f3:f8:e5:0a:f2:9e:98:b7:20:a8:13:f8:1a:
40:8b:f2:3f:53:98:44:26:50:ad:27:f5:ea:94:f1:9b:82:47:
66:ab:7c:16:1f:97:62:b2:07:92:b5:65:83:13:19:cd:c1:3a:
78:5c:65:7d:6b:4f:fe:70:c9:42:08:7e:7e:f1:cc:f5:45:fe:
1a:a9:5e:90:5b:b2:b1:e8:3e:b2:ca:71:1c:d5:02:a8:69:b0:
93:ea:b4:44:8e:c1:47:9d:67:ff:b0:4e:cf:58:a4:3b:e9:ce:
c0:ee:b4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:46:50 2025 by rpki-client