Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
File: a8GtFnaioypFoM85L3-cXqaOLeo.mft (raw, json)
Hash identifier: 2apO6dRap7a8PETjAdtvOHuuSMqqVVPItmaY/QgkmsU=
Subject key identifier: CC:DA:1D:EC:D5:D9:FC:16:8B:C3:EF:A0:FC:8A:F6:FA:2A:29:8D:77
Authority key identifier: 6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
Certificate issuer: /CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Certificate serial: 01976EF4DA7D9CA6D2E418F49E18889E656A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 15:00:29 +0000
Manifest this update: Sat 14 Jun 2025 15:00:29 +0000
Manifest next update: Sun 15 Jun 2025 15:00:29 +0000
Files and hashes: 1: CkA5P7l5ePDJ8YtVI5RwljhHN3I.roa (hash: Rv4CNPYpNEer366FC8TAHEAISsXVQ6rJf8w+ppgPPgs=)
2: a8GtFnaioypFoM85L3-cXqaOLeo.crl (hash: t4gmiZ5ePGtZgLDdJ2uzsm0Nkv8L0Qqt8HgOvPKzEjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:da:7d:9c:a6:d2:e4:18:f4:9e:18:88:9e:65:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Validity
Not Before: Jun 14 15:00:29 2025 GMT
Not After : Jun 15 15:00:29 2025 GMT
Subject: CN=ccda1decd5d9fc168bc3efa0fc8af6fa2a298d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0d:fa:15:fd:f1:6d:83:71:45:35:16:3c:04:
3d:76:af:b2:45:74:52:14:64:74:bb:13:dd:e2:fc:
98:45:69:22:16:2d:26:29:c3:de:8f:82:a6:b3:35:
c4:b6:07:99:b1:f1:c2:6a:65:5c:34:68:c3:d1:23:
6d:d7:fc:87:c7:99:2e:f2:4c:71:da:48:97:b5:41:
8a:85:ed:09:14:cd:e6:bf:dd:1d:dc:74:8c:e2:34:
9f:23:90:f2:d0:98:e6:55:64:e8:83:ce:4a:7e:aa:
da:2e:2d:c8:a1:52:10:32:ff:09:86:69:fe:14:03:
d2:0b:63:6d:12:c5:3b:4b:79:cc:43:ae:d1:54:c5:
42:cf:4d:2a:86:ae:3c:50:0b:59:77:29:8c:4d:de:
e8:df:87:16:1a:36:07:12:09:c5:b8:9c:78:a2:05:
f9:5a:45:20:2a:35:90:33:6f:1f:ab:b1:d3:db:46:
b7:70:7c:ef:36:a6:61:d5:e4:e2:0c:b1:75:70:d3:
96:1d:a9:e1:9a:5f:31:47:e4:03:54:67:64:25:1e:
21:ba:c2:2f:2f:d5:c4:1a:f4:5f:15:1a:b6:5f:68:
d2:55:46:d0:10:ff:cd:d3:2c:d6:b6:69:cf:81:6f:
31:0f:00:08:79:e9:1f:85:7b:f0:01:62:0c:3a:2e:
c7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DA:1D:EC:D5:D9:FC:16:8B:C3:EF:A0:FC:8A:F6:FA:2A:29:8D:77
X509v3 Authority Key Identifier:
keyid:6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:36:db:ef:6d:42:f5:ae:f8:84:76:d3:ca:56:7b:b7:fd:67:
49:bb:48:34:10:6a:cd:eb:8e:87:f5:18:80:62:f6:b9:6b:8a:
1b:7d:09:2a:55:bb:1d:2f:59:57:79:42:8e:8a:54:d3:d9:fd:
1a:4e:e5:1f:e7:8b:cf:40:3e:f0:22:1b:78:ad:c8:92:f9:ef:
64:66:d1:3a:fd:38:a7:1b:8c:f0:5a:c9:9b:bc:64:37:35:d9:
0c:56:0e:d2:22:92:16:24:67:7e:f8:85:81:1c:32:22:d7:c6:
ee:c3:29:73:4d:23:3f:b5:af:3a:19:f7:06:39:b3:6a:3f:56:
fd:6c:b8:ba:f3:5a:61:46:1d:0a:9f:b8:5b:af:bc:97:0c:72:
40:7d:05:e8:94:3a:8d:5b:1f:07:d8:96:9d:bd:6d:ed:c7:db:
1d:8c:83:03:ba:20:8b:5f:6b:e6:ba:6d:4a:5d:ed:01:40:bb:
ff:72:28:bb:d4:96:8e:ec:34:6d:64:1a:76:3a:c1:ea:77:c8:
a1:fb:61:61:37:f0:8b:d4:d9:38:29:32:4a:04:ad:db:1b:f4:
5c:6f:3a:c5:b4:7e:f2:23:90:2b:bc:25:b1:9e:86:18:e1:2f:
a2:5d:91:01:f4:f3:5d:81:9e:dd:34:c6:07:2d:fb:26:66:b8:
be:b8:b0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:11:48 2025 by rpki-client