Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: dQ+gWzq/skVLu2SP9DsX9ILEg9g89z9hsLWjtrYBYPE=
Subject key identifier: 6A:64:9D:F8:96:50:1C:4C:77:35:AF:49:5B:87:F2:16:9E:C8:1C:05
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 01977B9E2E7644259FD9CDA5F8AD3C8569E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 0A2C
Signing time: Tue 17 Jun 2025 02:00:53 +0000
Manifest this update: Tue 17 Jun 2025 02:00:53 +0000
Manifest next update: Wed 18 Jun 2025 02:00:53 +0000
Files and hashes: 1: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: Oydrp3KfegH7HKgVgEYfYOyhCAmCPkraHvHS2I2CiN0=)
2: TwUAmEwQxO2jeeE0IG7nOUuBRU8.roa (hash: 5uZF7JHC6Cu/tuWa9kusO7lA0+dh5OGQEqs1E5VZ/5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:9e:2e:76:44:25:9f:d9:cd:a5:f8:ad:3c:85:69:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Jun 17 02:00:53 2025 GMT
Not After : Jun 18 02:00:53 2025 GMT
Subject: CN=6a649df896501c4c7735af495b87f2169ec81c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e3:7f:e1:76:30:b5:d2:9e:fe:06:e3:c6:a7:
d4:cd:ca:54:ba:0d:ec:0b:cc:58:01:af:cb:1d:cf:
69:20:15:c8:ed:24:6b:8c:c8:e5:7b:89:1c:7f:d5:
b3:8e:7a:8d:d7:f8:76:56:f6:c7:39:29:16:37:1e:
ca:2b:cf:80:41:cf:f6:3c:cc:4f:58:67:f6:bd:4c:
a1:74:45:3b:b2:7d:0a:81:35:47:0f:04:c5:ac:17:
78:2a:59:66:bf:45:29:2b:2b:a3:01:d1:4e:46:bb:
00:d3:1f:cd:fa:3d:5c:63:a6:04:cd:84:ba:97:93:
57:34:b2:08:2c:de:27:c7:51:3e:ff:87:35:09:8c:
08:64:b3:f8:27:3e:73:ff:c4:b0:33:23:a6:1d:fd:
ca:c7:1f:1b:ac:70:4c:af:cb:b2:e3:a5:71:70:55:
e8:56:c3:46:80:5a:79:28:fe:21:f0:3f:58:a5:31:
d0:a3:83:58:d6:86:09:bb:2f:be:49:d9:1f:30:53:
cc:97:36:35:6c:1f:2f:40:6a:e6:ab:fe:15:37:ff:
c5:0c:28:b3:0e:16:d4:57:8c:6f:2d:58:f0:c6:3c:
f2:4f:bb:bd:fb:1a:9b:1f:a2:9c:ed:59:8c:d6:af:
7b:40:51:74:01:cb:de:18:5d:a1:6a:cd:ba:a5:df:
98:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:64:9D:F8:96:50:1C:4C:77:35:AF:49:5B:87:F2:16:9E:C8:1C:05
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:57:f1:99:e5:a3:1f:5d:21:e1:8d:80:24:6a:fe:c6:de:b7:
aa:f9:e0:08:ec:71:6a:14:36:b2:9f:9d:5c:00:95:16:7e:db:
8d:e8:8b:07:7e:68:bb:79:e6:e3:a5:56:20:ac:ac:45:16:1a:
83:6a:22:7a:41:11:b8:b9:b5:c4:c6:ab:79:49:3b:cf:9e:5a:
7f:58:ee:07:e4:ab:0c:69:df:e3:d4:6c:00:57:36:56:d3:17:
2d:d2:b4:ac:9b:3a:66:1b:5f:70:7d:9f:aa:c4:d5:0e:00:7d:
1a:d5:c0:5f:11:53:bb:81:31:53:28:91:23:e9:db:a2:23:ac:
95:71:26:c7:58:1d:e4:53:b1:2c:e4:a1:7a:a2:27:bf:42:65:
77:10:4a:22:04:75:eb:7b:2b:00:85:4b:e6:23:dc:99:ae:04:
eb:23:4e:f0:92:31:ab:9c:05:bc:42:fc:c6:de:31:9f:8f:4f:
23:f7:9f:ef:64:54:f5:99:06:54:e1:c9:31:27:fa:7e:2d:25:
fe:b4:8d:79:69:8f:00:a2:59:9a:2d:65:1f:f7:94:01:d6:4c:
d2:1d:b5:24:65:7d:bb:a4:1e:fe:40:86:64:d3:63:b3:66:86:
9a:18:3f:19:b9:2f:04:47:f7:6c:97:e2:92:c7:53:94:1e:63:
d7:ba:72:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 09:11:40 2025 by rpki-client