Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: +l8I7+7vzKFcR4bh3Ux7qPznlHFDgRSAuHFnhMx5O3c=
Subject key identifier: D9:DC:33:B2:43:F4:48:44:F2:5E:16:2C:34:C6:5D:CD:A5:A2:38:12
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 01987DF7A37229CF5F94E1BA65284C2E8D58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 161B
Signing time: Wed 06 Aug 2025 06:00:37 +0000
Manifest this update: Wed 06 Aug 2025 06:00:37 +0000
Manifest next update: Thu 07 Aug 2025 06:00:37 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: lD8wfgvt/UDdScFrhmUxldSjxvcsgz7M346LmVXVPmU=)
2: 4mphuMGYKre7KcVIZklqvnEwe9w.roa (hash: BDdrPj5npMilCe1H11h3z51bgzRRHnfwNgW8/PXQiwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:a3:72:29:cf:5f:94:e1:ba:65:28:4c:2e:8d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Aug 6 06:00:37 2025 GMT
Not After : Aug 7 06:00:37 2025 GMT
Subject: CN=d9dc33b243f44844f25e162c34c65dcda5a23812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:7e:1e:f6:43:28:15:7e:40:68:4b:7d:a0:
d6:3a:7a:68:bd:86:25:90:f7:65:fa:14:14:1c:44:
1f:a9:55:c5:ab:e8:09:70:1e:0e:b6:48:16:42:96:
ba:4d:56:c5:9d:f4:cd:83:4e:10:38:c1:d8:c1:b8:
5a:f1:c9:b8:77:c6:f5:04:89:de:e1:df:84:e6:74:
4f:19:59:81:ae:34:01:66:5b:7e:f2:3e:22:ff:9a:
a0:6c:af:67:c1:68:f8:56:40:2f:fd:ff:5d:52:ac:
fc:90:68:1c:16:89:e3:3f:68:c0:6a:d4:78:11:83:
1e:31:76:d6:33:74:07:c8:bb:62:58:24:52:f7:6d:
6e:01:45:06:74:ba:62:61:f9:1c:bb:c5:9e:0b:b9:
e6:c0:52:c3:b0:77:c1:5b:be:51:10:5b:42:7b:af:
ea:a9:30:19:d9:35:c5:20:c4:4a:96:a0:3c:98:8d:
01:a3:27:9b:76:4a:f2:32:71:bc:f4:f4:ba:66:75:
25:37:24:a5:41:0e:61:bd:a1:67:4f:27:3d:1b:64:
24:3e:c5:e0:9b:8e:d0:62:a2:29:75:9f:79:e9:75:
b5:1f:1a:54:21:4b:e0:49:49:03:70:dc:a9:1b:1a:
16:6a:a0:45:c6:1d:73:4f:cc:3e:de:d5:af:41:14:
db:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:DC:33:B2:43:F4:48:44:F2:5E:16:2C:34:C6:5D:CD:A5:A2:38:12
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:63:36:bb:cc:c2:65:c0:41:46:5a:19:b2:f0:c2:36:ee:75:
ce:91:b0:f4:77:85:34:cc:96:f5:df:54:a4:2f:67:cd:83:43:
32:50:4d:e9:10:2b:cd:15:9c:ee:45:3f:b9:b6:09:ae:82:1b:
b6:f2:5a:b8:39:68:19:39:2c:15:2b:30:af:1f:1c:d4:c8:45:
b4:d2:07:45:61:a1:d3:c5:66:21:85:51:4d:5e:c1:e5:fc:fd:
c7:a7:c0:9b:fd:35:88:65:1e:e8:79:62:09:75:e1:23:a6:b4:
9c:99:0e:1e:f3:ce:23:dc:51:00:f3:bd:08:56:68:6a:08:b7:
dc:b7:aa:1b:83:7b:d4:33:d4:8b:b7:e1:be:c3:30:bd:b1:1b:
4f:d0:94:fb:8a:30:5b:7e:f6:30:16:fb:63:f3:46:0e:7e:0e:
d3:6d:f4:d4:f2:ca:e7:a7:f4:68:e4:fd:bc:cc:aa:e8:50:5d:
6d:e1:83:74:87:86:18:38:8f:8f:d5:66:6c:83:a0:98:00:f2:
3c:6f:c4:37:f9:f2:f4:ac:c3:7c:d3:ff:cf:77:6d:fd:d2:44:
4b:38:d8:33:7a:a2:20:b6:97:30:e9:00:a1:9c:f0:81:df:23:
91:9a:a9:e0:a4:4a:56:b1:e3:ad:de:cc:be:0e:49:99:3d:79:
2a:22:fa:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:38:05 2025 by rpki-client