Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: NYpJvvDXlhGZkr+K4zZ9UMVlSbG1/aBGnX6Uv7Y/sXc=
Subject key identifier: F7:10:C8:2A:B7:DB:93:AB:2D:43:7A:87:2F:A6:9E:B7:5E:75:0F:26
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 01976C2AE645DD979834FA53C5312746CA57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 0407
Signing time: Sat 14 Jun 2025 02:00:40 +0000
Manifest this update: Sat 14 Jun 2025 02:00:40 +0000
Manifest next update: Sun 15 Jun 2025 02:00:40 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: 2Ab5jzL9LTHVl3qRMQU98DSlBVZUr4fPXOBLodCSJAA=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:e6:45:dd:97:98:34:fa:53:c5:31:27:46:ca:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Jun 14 02:00:40 2025 GMT
Not After : Jun 15 02:00:40 2025 GMT
Subject: CN=f710c82ab7db93ab2d437a872fa69eb75e750f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c5:91:20:ff:b6:c6:bc:3d:99:67:fa:aa:36:
25:4b:09:6b:8e:02:75:28:eb:4f:59:fb:28:32:cf:
8a:bc:1e:20:74:31:2d:2e:7b:77:0a:18:27:3b:68:
1c:bf:ea:26:cf:5c:ee:ee:e1:34:9e:2d:45:50:52:
31:f4:1a:5a:74:cc:22:6b:68:f8:f5:51:d5:2c:e1:
f8:06:19:bf:b6:ab:ee:8e:50:e9:5b:5f:40:42:26:
5c:1e:39:2e:2c:2e:ce:22:2e:dd:c0:3d:5f:27:81:
00:1c:a9:30:d8:64:3f:c3:1c:b5:fb:42:cb:c0:df:
3a:ac:65:4b:1c:12:a0:43:72:05:3a:1f:6c:6f:fb:
57:a0:f2:75:24:9b:bf:a6:d4:e6:3b:17:4a:16:22:
5e:74:c4:ca:e2:cf:36:a4:06:93:7a:18:fc:a0:36:
e4:ba:eb:60:26:63:17:d2:1e:e0:06:4f:5e:79:ce:
cb:3b:e3:94:c8:c1:4c:1a:8e:5d:54:64:9f:3d:18:
ea:c8:b5:f2:f9:56:e8:e3:8f:b9:d5:13:1e:2e:35:
00:c6:c2:47:b4:4d:ba:d3:13:62:41:98:8e:05:7d:
41:e4:d2:60:3e:83:b7:07:3c:27:d8:da:f2:ca:7e:
6d:a6:6a:ec:61:81:29:de:c5:37:f1:f8:d3:b3:ad:
6d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:10:C8:2A:B7:DB:93:AB:2D:43:7A:87:2F:A6:9E:B7:5E:75:0F:26
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:fb:f5:97:50:82:e5:e3:69:7b:ae:39:76:08:90:c1:59:cf:
75:13:a0:68:e2:e9:57:1e:46:be:13:ca:28:1a:95:e4:59:61:
8f:89:af:55:be:9c:90:10:5b:0f:d3:62:72:0f:f3:32:80:c9:
56:35:54:cc:90:8d:2a:34:d2:bc:ab:67:29:b3:11:e2:64:66:
c3:96:86:69:29:8b:f1:53:0e:36:b5:3e:7b:bb:34:2d:34:ef:
56:3b:dd:67:6c:a1:d6:2b:5a:60:f1:6e:86:47:13:c7:ac:17:
e8:a9:ee:6b:59:d0:43:9f:bd:36:10:75:1c:00:cc:c3:ea:c9:
6b:1f:73:44:f7:c9:7f:e3:a0:5f:23:06:dc:d1:4c:eb:29:a5:
c0:72:0d:ac:66:5e:b8:64:aa:78:b7:57:2f:0b:65:1c:e0:43:
b5:03:e1:12:4d:d9:9b:ae:be:1f:10:fc:1e:b9:72:b5:c8:43:
42:85:3a:8a:ed:f7:3e:8f:c4:09:c6:88:9f:48:19:38:d7:c0:
3f:37:9b:6e:8a:d0:b5:70:71:11:82:02:83:87:7c:79:42:a4:
74:ac:93:7a:82:52:30:e9:e5:e7:a1:ef:24:41:ad:65:cb:cd:
82:52:b2:60:42:04:c1:da:b2:ad:2a:9a:66:9d:36:da:c9:3f:
c8:3f:13:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:37:22 2025 by rpki-client