Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: lbDxCG7mngpG8VFqs72TRTFkplkjbOCjbl1+AkRyIQg=
Subject key identifier: FB:1D:C5:B3:56:78:AF:11:BF:83:A2:C2:E6:6C:60:00:CE:F3:2A:17
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 01976FD0D7D45C0B5C8894147C6923341209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 0595
Signing time: Sat 14 Jun 2025 19:00:46 +0000
Manifest this update: Sat 14 Jun 2025 19:00:46 +0000
Manifest next update: Sun 15 Jun 2025 19:00:46 +0000
Files and hashes: 1: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: wU/ujABJvwxbZpg+zhJK/FoGCOXZxtC4HWYaNt3l3LY=)
2: Di0vSgAmdtxn2ZM7Al8L8Zr3oIU.roa (hash: 0Bf0l0DWLnoKx593QVoGlu2x+BD1lYWYH448tSVbn0U=)
3: Tb-8GP8qcCsPrA2Xrleo-iet2HM.roa (hash: yyhoDt89y5+7nL9lVvf4sdS/dAeJY+OT1BrhoMFwMME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:d7:d4:5c:0b:5c:88:94:14:7c:69:23:34:12:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Jun 14 19:00:46 2025 GMT
Not After : Jun 15 19:00:46 2025 GMT
Subject: CN=fb1dc5b35678af11bf83a2c2e66c6000cef32a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:c3:31:34:be:a9:65:b6:61:92:71:20:77:
f8:fe:e8:94:70:b8:8b:8e:f7:55:22:c6:e0:11:e1:
c9:af:bf:d9:f1:5e:fc:cd:a3:f9:de:03:4d:c4:9b:
0c:e3:c9:6f:51:60:a9:bc:3c:76:29:50:77:b1:11:
ba:2a:7d:c2:99:ac:b5:42:b7:97:d3:4e:ce:47:5f:
e1:ba:e1:4d:1e:98:fd:2f:c9:80:e9:75:83:86:16:
09:b8:7c:dc:54:2e:5a:7a:cd:9b:d6:2b:01:ac:69:
b6:26:fc:4e:bd:0f:f1:11:32:4f:9c:76:3f:e5:c5:
93:b4:ba:7f:f8:93:25:2d:c2:0c:cf:05:7b:bd:9b:
a3:94:f8:55:3c:e8:94:a9:4a:57:90:b0:8f:4d:c3:
1c:d3:59:6f:9e:94:65:e3:27:d7:eb:e0:a4:6e:2b:
48:68:cc:1d:00:b7:5a:78:3b:00:1b:10:09:e1:e9:
79:fc:c9:1b:03:15:99:9c:07:6a:86:19:58:a0:60:
26:0a:f8:43:95:14:eb:5c:09:70:5b:60:57:93:2e:
e0:b0:e4:82:97:d1:bc:39:42:c8:c3:8b:f3:b4:34:
a4:a3:51:e4:9e:64:45:77:9d:7b:7d:6c:b3:73:10:
20:65:52:0b:da:03:81:0a:0a:81:15:5f:a3:94:94:
0a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1D:C5:B3:56:78:AF:11:BF:83:A2:C2:E6:6C:60:00:CE:F3:2A:17
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:b6:aa:ee:4e:ca:9c:d9:d7:8f:ce:b9:8f:1c:b4:49:47:5e:
7b:4c:5d:a4:e3:90:7e:a6:59:39:b1:c5:00:4b:50:71:c7:f7:
10:1d:27:37:01:9e:5d:71:05:0e:55:26:a8:6e:90:f2:ab:cf:
4d:55:af:9b:c5:f4:a4:37:46:07:54:6e:16:72:27:db:3d:91:
b6:2d:a2:61:92:d9:14:4a:4b:a7:0b:da:2e:73:9c:da:2f:d5:
d9:44:0d:4e:24:ec:69:ff:46:e3:8e:d6:6c:eb:26:e0:06:36:
57:60:42:0d:d3:3b:99:fc:4e:97:2b:ad:3e:f9:5c:f3:4e:86:
ad:c8:39:00:5c:28:a1:b8:92:cc:17:e6:99:55:b1:79:62:25:
a9:6e:8d:e3:af:79:b2:5f:85:ba:45:89:87:69:fb:a8:3e:00:
18:ca:69:1b:11:08:f6:5b:23:62:e2:9a:ed:6a:6d:65:eb:47:
35:e7:81:07:5a:f2:7e:3b:0c:f8:59:5b:31:c4:84:e2:4f:9b:
de:c5:86:0a:ff:0b:ff:9e:ef:f0:3e:58:60:07:3b:bb:de:8e:
a5:5c:8a:f0:82:46:ec:d9:5e:90:16:54:a9:e1:60:4a:49:b6:
29:e8:1e:b6:de:0e:b9:6d:73:2d:16:07:a7:43:75:8a:96:26:
0e:a8:7b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:18:15 2025 by rpki-client