Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: xCSTSSKAmXuU+YFjQlxQEB5uU2M5kVkXsur97vKpfmk=
Subject key identifier: D4:91:D5:8E:7D:67:B2:5E:A2:BD:02:51:07:1D:32:FC:8B:2D:7E:09
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019769978813C3AC7B65FB00F43F173EA6B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 158C
Signing time: Fri 13 Jun 2025 14:00:27 +0000
Manifest this update: Fri 13 Jun 2025 14:00:27 +0000
Manifest next update: Sat 14 Jun 2025 14:00:27 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: AVUGDLLNJrQtJ4d7IVwHgdlyZZtozpxFKswcNyuC6po=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:88:13:c3:ac:7b:65:fb:00:f4:3f:17:3e:a6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jun 13 14:00:27 2025 GMT
Not After : Jun 14 14:00:27 2025 GMT
Subject: CN=d491d58e7d67b25ea2bd0251071d32fc8b2d7e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b6:b0:22:89:e0:12:09:20:de:7a:7f:ed:11:
08:a3:2b:a7:f8:54:be:55:6d:20:41:20:c0:29:a3:
3b:98:44:6c:c3:1a:10:f0:c4:57:95:5a:75:2f:e5:
94:e7:bd:07:b5:9b:05:47:66:47:b7:c9:6e:02:a4:
fc:5a:1a:61:e4:a2:65:61:46:5c:40:70:32:8d:fb:
14:f1:27:2c:c3:c6:1b:df:f7:1e:40:db:69:fa:8b:
99:34:f4:84:94:d3:8d:4d:ee:08:95:9c:e7:90:40:
b3:d4:ad:7a:71:7d:b5:a8:7a:51:db:86:16:60:92:
6a:10:e4:7b:fe:73:7a:f6:3a:f7:61:f3:0e:2f:4a:
cb:76:ff:a4:6b:f5:20:3a:9b:f2:3c:c5:6f:69:29:
53:cd:89:f3:38:44:0c:f1:7e:a5:1b:4e:6e:98:60:
c4:92:2a:8b:ab:e8:f6:19:1e:50:19:eb:51:07:b8:
19:e4:13:33:d3:d6:6a:75:6c:98:57:a1:e6:2a:27:
b6:f9:a5:6e:8a:c5:fd:c2:4c:96:48:00:60:eb:b1:
cc:93:b2:68:6f:9c:89:62:eb:bf:6c:40:36:fb:09:
f4:ed:de:36:04:c3:04:a7:b7:ab:72:c1:d3:7e:12:
e4:83:db:be:08:37:ea:43:b9:80:77:6e:d3:12:42:
8e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:91:D5:8E:7D:67:B2:5E:A2:BD:02:51:07:1D:32:FC:8B:2D:7E:09
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:11:e6:d0:38:70:e8:5c:84:bb:87:5b:ae:3c:a9:bc:74:ca:
c2:2a:8b:06:41:f6:45:9e:b3:3d:b2:d2:b9:7f:84:aa:91:76:
ca:e0:98:b8:50:28:96:d9:d0:a0:c8:6c:0e:32:23:5d:ca:33:
11:74:ff:32:31:45:d2:4b:fc:f5:08:fe:6b:64:7e:3d:11:51:
4f:63:73:ea:ac:fe:7e:58:39:dc:24:1f:13:e9:e9:c0:c3:f9:
14:a4:22:3a:e4:ee:64:16:91:a4:fb:df:8f:07:74:ba:f2:73:
41:96:ee:8c:fc:a1:67:56:d4:68:fe:ee:84:38:e3:b9:d7:f8:
02:8b:22:68:2c:d3:1b:c6:98:34:33:76:3f:7f:4b:5c:9f:5c:
c4:d2:ab:7a:02:06:f0:a5:7d:c3:e1:44:ca:94:dc:0a:86:66:
70:68:c7:99:5f:ae:4d:be:26:37:d6:79:7b:b9:5b:0a:38:1f:
27:ec:40:04:7d:9b:f5:29:82:ab:2d:c7:55:b2:52:b2:1a:6f:
8b:f9:a0:9b:b1:35:61:34:8a:11:ef:89:41:69:18:f6:12:ca:
e3:99:5c:8b:06:dd:90:a8:62:d8:c0:ef:5c:66:a2:c7:95:86:
db:47:67:1b:7e:7a:a0:d3:07:21:c6:55:3b:49:cc:80:9d:63:
01:4d:b1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:08:32 2025 by rpki-client