Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: DWUneWjkjoFFA2rOH9X/XTrn32wLy7Rmi7O9+ZU95y8=
Subject key identifier: 16:77:4D:94:B7:9B:98:6A:C3:14:B7:65:81:F6:A5:F7:65:CF:53:CC
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 01989B5E139DE02B0E1059235C4C362122A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 0AC1
Signing time: Mon 11 Aug 2025 23:01:30 +0000
Manifest this update: Mon 11 Aug 2025 23:01:30 +0000
Manifest next update: Tue 12 Aug 2025 23:01:30 +0000
Files and hashes: 1: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: B1PQxySPktZlxrsx2vmkbqHs7VCMBElbd0h6RCiZzgc=)
2: TwUAmEwQxO2jeeE0IG7nOUuBRU8.roa (hash: 5uZF7JHC6Cu/tuWa9kusO7lA0+dh5OGQEqs1E5VZ/5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9b:5e:13:9d:e0:2b:0e:10:59:23:5c:4c:36:21:22:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Aug 11 23:01:30 2025 GMT
Not After : Aug 12 23:01:30 2025 GMT
Subject: CN=16774d94b79b986ac314b76581f6a5f765cf53cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:5f:fb:d0:13:ae:bd:b9:c5:ec:77:3c:76:
7b:0a:2b:47:09:b0:c9:0d:b2:81:92:82:16:65:bd:
f1:b1:c7:99:fc:d4:94:8a:c8:f7:f0:2a:51:eb:17:
49:0f:a1:29:6b:30:96:89:d0:88:15:a3:c2:0e:2f:
40:bf:4e:22:12:0f:e2:ea:ee:ee:04:fd:dd:a7:82:
ef:1b:73:53:05:e6:b8:11:4a:3f:14:96:fe:f2:1f:
60:0f:bd:bf:5c:5f:06:92:1c:13:e3:20:f6:31:3f:
cf:59:d2:c1:62:03:ce:41:c0:91:82:0d:15:7f:ef:
bf:2b:d7:7b:aa:a1:5a:a8:b1:13:24:fc:db:38:44:
f9:e7:9c:d5:c5:9c:aa:d0:91:a7:f6:36:87:e7:36:
6e:e4:b5:63:59:2e:36:74:27:97:37:fe:f3:a4:ae:
3b:84:8b:f7:14:54:67:c6:d7:27:17:8b:93:52:ff:
cf:9e:94:f9:84:bc:95:1a:9f:3d:e4:95:d1:60:55:
ef:8d:7e:99:1b:dd:09:1b:c5:73:04:86:9e:46:df:
f7:cb:4b:bb:dd:ca:cb:8b:06:82:45:a7:10:71:17:
5e:8c:1f:0d:ae:7a:a9:cf:ae:00:be:ff:f7:b0:f0:
9e:dd:1d:9e:ae:f9:92:61:d9:a2:20:69:fa:cf:6f:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:77:4D:94:B7:9B:98:6A:C3:14:B7:65:81:F6:A5:F7:65:CF:53:CC
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a8:eb:88:4e:43:4b:28:7a:ef:9d:3c:cb:25:01:6f:55:5c:
11:c3:0b:ec:22:3f:24:a5:29:2f:a1:2a:0b:50:b1:0c:eb:76:
31:9e:fa:24:c8:da:b5:1c:27:4a:ef:7f:04:73:1a:a3:09:b2:
cb:74:b0:b1:6f:28:89:59:e0:10:77:50:67:77:1d:09:9c:5a:
6e:ee:4e:12:f7:33:a1:7e:b1:c9:4a:0a:ca:f5:f4:c2:dc:ce:
35:8c:2d:e5:05:bd:1b:61:3c:ad:9a:00:14:38:8d:88:2c:7b:
91:0b:1a:9d:9f:b6:69:32:88:c0:3f:84:bf:b3:f5:f1:cd:9a:
4e:8a:bd:2f:5c:8b:9d:a8:d4:00:bf:db:e0:05:e2:92:fe:bf:
c7:20:fd:1c:67:ab:2c:ba:3e:62:d1:a7:36:d0:7b:52:4a:5c:
aa:52:e6:19:6a:eb:e2:dd:23:50:02:66:7e:3d:a9:58:c9:d4:
95:ce:30:cd:ee:d3:85:d2:4d:cb:d2:98:3f:6f:e3:45:50:95:
44:06:3d:4e:93:5f:a3:30:97:ac:f7:e6:64:c4:9e:4f:0f:6a:
9e:56:68:a0:e7:38:38:26:06:98:f0:9d:49:b9:b8:f6:3a:a6:
b9:a8:6f:d4:70:6e:a7:d5:58:69:81:63:1e:a5:91:a1:b8:73:
a5:6d:92:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 08:56:27 2025 by rpki-client