Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
File: 8CDLT5tfebnaa0gnutnFSiqAxTE.mft (raw, json)
Hash identifier: 1xZsvP1yffmsJQVTV0lYVkE/H013OanoANpA7uOviOQ=
Subject key identifier: 47:BC:4B:A4:39:E7:9D:4E:09:EE:E4:8F:6F:01:24:ED:14:2F:5E:52
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Certificate issuer: /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial: 01976C2AB6634143E8219B24E538A08F1AA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
Manifest number: 0E25
Signing time: Sat 14 Jun 2025 02:00:27 +0000
Manifest this update: Sat 14 Jun 2025 02:00:27 +0000
Manifest next update: Sun 15 Jun 2025 02:00:27 +0000
Files and hashes: 1: 8CDLT5tfebnaa0gnutnFSiqAxTE.crl (hash: zFnW+Hh1ilyDOdiK+Gpy3LPcVLVMnK75cUq+2Hz66Ns=)
2: amkS5SoIvujCi9yce4d8VftUldc.roa (hash: +cELHuiQeJpKMXecyPF27q6ZAbek7zvwZNYTMIlI2SU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:b6:63:41:43:e8:21:9b:24:e5:38:a0:8f:1a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Validity
Not Before: Jun 14 02:00:27 2025 GMT
Not After : Jun 15 02:00:27 2025 GMT
Subject: CN=47bc4ba439e79d4e09eee48f6f0124ed142f5e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:75:e6:6b:41:1c:b8:20:63:86:bf:64:cb:
b4:f2:91:e8:c9:a1:85:f0:a6:1c:32:4d:a3:a3:87:
79:2e:11:34:e1:61:b6:8f:d8:5d:14:52:48:88:e7:
9b:04:00:8c:0d:0b:6e:92:09:0a:35:45:93:16:ec:
82:3d:d4:fd:34:14:bc:41:f0:0b:a8:e4:f1:2e:aa:
a3:2f:75:46:8e:4e:25:a5:a1:34:ed:49:96:bf:3f:
cc:85:ad:df:3d:53:25:c2:93:e8:62:52:75:76:5a:
7d:b5:2b:b5:24:ca:92:f7:17:49:32:d7:cd:ca:81:
bf:8f:0f:f4:88:b4:78:81:48:95:34:c7:a6:09:e1:
9b:f2:d4:97:41:46:64:3d:00:d8:5f:4a:c3:17:15:
23:5b:7e:4b:40:bf:21:82:76:80:a5:2a:3a:0a:0a:
61:8c:f3:65:ef:2b:25:e0:e3:eb:3d:ed:6c:9c:f6:
55:1a:d7:85:e7:76:48:f7:69:20:8b:3b:d8:6a:90:
80:4c:b9:ed:ef:16:24:eb:f7:d1:cd:4a:17:b3:d8:
56:d3:d3:e3:90:ad:28:1e:e9:86:07:17:5d:a8:c6:
17:51:ae:ec:33:66:a9:89:54:8f:ef:bb:97:2b:ee:
e1:63:c3:9e:29:9a:97:06:6a:f7:da:b6:62:68:dc:
e1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BC:4B:A4:39:E7:9D:4E:09:EE:E4:8F:6F:01:24:ED:14:2F:5E:52
X509v3 Authority Key Identifier:
keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:66:47:99:d0:f7:8d:29:50:c3:75:a8:bb:df:05:5f:a7:1e:
47:52:87:ab:28:2a:f0:06:8c:cf:b9:49:f9:83:7e:a0:71:26:
59:4c:2f:78:24:1d:b1:b8:27:ed:d6:b8:17:96:2f:84:d8:1a:
40:61:48:e6:b9:b9:41:bd:91:7d:ff:a1:58:fb:2b:fc:be:99:
35:86:02:f7:00:63:e6:dc:f8:b4:45:c0:6d:2a:80:74:bb:18:
d0:b4:89:3f:a8:f5:9f:e7:3f:39:9d:a4:42:66:fb:bc:45:6c:
e0:cd:6d:47:14:5e:ca:0a:43:7c:e0:17:af:63:f1:fe:1d:18:
91:f1:8a:1b:22:50:a0:ab:a3:02:76:40:74:d6:ed:dd:49:c4:
f7:09:1a:70:17:77:cb:f6:f0:f2:5f:cc:08:e7:ec:62:e5:72:
10:cc:d8:6e:ad:0e:63:2f:ad:4a:e0:1d:d9:f3:a6:87:56:84:
7f:53:06:5f:9c:d3:95:7c:f7:5e:b6:5d:5f:16:7c:68:a3:b9:
58:8e:47:45:c8:d7:e5:1b:dc:33:cb:ed:6f:65:d7:82:79:a4:
20:da:4e:40:38:d1:8b:20:28:ae:81:4a:e6:2f:02:72:50:13:
f7:8f:c5:7c:b6:28:2d:98:39:e7:04:37:7c:43:f3:ab:7f:03:
c0:55:16:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKrZjQUPoIZsk5TigjxqoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMjBjYjRmOWI1Zjc5YjlkYTZiNDgyN2JhZDljNTRhMmE4
MGM1MzEwHhcNMjUwNjE0MDIwMDI3WhcNMjUwNjE1MDIwMDI3WjAzMTEwLwYDVQQD
Eyg0N2JjNGJhNDM5ZTc5ZDRlMDllZWU0OGY2ZjAxMjRlZDE0MmY1ZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYF15mtBHLggY4a/ZMu08pHoyaGF
8KYcMk2jo4d5LhE04WG2j9hdFFJIiOebBACMDQtukgkKNUWTFuyCPdT9NBS8QfAL
qOTxLqqjL3VGjk4lpaE07UmWvz/Mha3fPVMlwpPoYlJ1dlp9tSu1JMqS9xdJMtfN
yoG/jw/0iLR4gUiVNMemCeGb8tSXQUZkPQDYX0rDFxUjW35LQL8hgnaApSo6Cgph
jPNl7ysl4OPrPe1snPZVGteF53ZI92kgizvYapCATLnt7xYk6/fRzUoXs9hW09Pj
kK0oHumGBxddqMYXUa7sM2apiVSP77uXK+7hY8OeKZqXBmr32rZiaNzh3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEe8S6Q5551OCe7kj28BJO0UL15SMB8GA1UdIwQY
MBaAFPAgy0+bX3m52mtIJ7rZxUoqgMUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOENETFQ1dGZlYm5hYTBnbnV0bkZTaXFBeFRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC83YzQ0YzQtZWNjZC00OTVjLWI5ODMt
ODRjOTBiYmE5Y2Q0LzEvOENETFQ1dGZlYm5hYTBnbnV0bkZTaXFBeFRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC83YzQ0YzQtZWNjZC00OTVjLWI5ODMtODRjOTBiYmE5Y2Q0
LzEvOENETFQ1dGZlYm5hYTBnbnV0bkZTaXFBeFRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi2ZHmdD3
jSlQw3Wou98FX6ceR1KHqygq8AaMz7lJ+YN+oHEmWUwveCQdsbgn7da4F5YvhNga
QGFI5rm5Qb2Rff+hWPsr/L6ZNYYC9wBj5tz4tEXAbSqAdLsY0LSJP6j1n+c/OZ2k
Qmb7vEVs4M1tRxReygpDfOAXr2Px/h0YkfGKGyJQoKujAnZAdNbt3UnE9wkacBd3
y/bw8l/MCOfsYuVyEMzYbq0OYy+tSuAd2fOmh1aEf1MGX5zTlXz3XrZdXxZ8aKO5
WI5HRcjX5RvcM8vtb2XXgnmkINpOQDjRiyAoroFK5i8CclAT94/FfLYoLZg55wQ3
fEPzq38DwFUWpA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:33:52 2025 by rpki-client