Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: 27aHI3E5NswuPJjVuxUap1j68bYBONhnw5BKy21g2GY=
Subject key identifier: 24:BC:57:6C:42:44:36:6F:F3:C6:B9:A1:F3:A0:AD:65:14:B7:95:4B
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 019773768F6C629C62204595342B3C047D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 1591
Signing time: Sun 15 Jun 2025 12:00:39 +0000
Manifest this update: Sun 15 Jun 2025 12:00:39 +0000
Manifest next update: Mon 16 Jun 2025 12:00:39 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: IRwsds1tatRrqZcFD+KHIh9GeepK6Gk0pczPE/7qxIQ=)
2: 4mphuMGYKre7KcVIZklqvnEwe9w.roa (hash: BDdrPj5npMilCe1H11h3z51bgzRRHnfwNgW8/PXQiwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 12:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:76:8f:6c:62:9c:62:20:45:95:34:2b:3c:04:7d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Jun 15 12:00:39 2025 GMT
Not After : Jun 16 12:00:39 2025 GMT
Subject: CN=24bc576c4244366ff3c6b9a1f3a0ad6514b7954b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6a:e1:c6:a5:c4:b0:8a:58:5a:80:82:0c:33:
2d:6a:40:c4:7b:f9:12:bb:cd:1f:44:9f:fb:64:e5:
ed:9b:d3:c2:e9:d1:d6:08:8e:aa:6a:94:79:97:09:
2f:03:b9:ab:5e:a6:e6:cf:38:c2:71:98:57:42:e6:
fd:2b:f6:91:ff:ce:25:09:2a:42:6f:e7:ec:20:aa:
8b:99:ca:42:9f:05:65:4b:d7:9b:b9:64:3a:19:39:
74:56:36:16:07:fb:a6:09:a3:0d:8c:cc:20:d6:23:
61:e6:f5:7b:f5:af:57:72:47:a9:45:48:4f:54:8d:
57:6e:cb:ed:28:37:e9:9f:59:84:f7:52:49:68:1b:
dc:93:a4:d1:08:09:2b:56:21:5e:a9:d7:bb:71:6e:
9b:2a:c3:86:31:f6:98:ae:79:a6:a2:8e:23:02:22:
a8:d4:e4:cf:06:3c:aa:e0:db:68:61:a2:44:9f:2b:
74:9b:eb:57:5c:59:05:de:83:ca:6d:1a:65:b6:b9:
d0:76:6a:6d:bf:27:b7:22:2e:49:7b:7c:9e:4b:6e:
11:4f:ac:b4:09:70:15:8e:de:ac:84:4b:ca:6f:cd:
07:50:ec:45:91:fd:3e:f8:a1:a2:9f:d0:63:90:64:
d8:2f:3f:42:36:58:49:61:aa:0c:6a:3b:26:32:bc:
45:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BC:57:6C:42:44:36:6F:F3:C6:B9:A1:F3:A0:AD:65:14:B7:95:4B
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:d0:e6:32:fb:7e:2f:9c:6a:37:77:80:6a:cc:a6:a6:14:27:
b9:7f:ac:6e:e8:dd:21:0c:72:00:82:4a:15:6a:a8:07:02:a3:
79:cf:8c:59:2d:ac:5d:6a:64:82:68:a7:63:3e:6d:53:6d:d2:
d2:8a:f5:3b:cd:16:e7:f2:7b:e2:d2:ad:d0:88:7c:53:63:c8:
18:25:dc:a1:69:59:0e:4d:6e:65:e4:84:9f:69:ae:ff:71:30:
13:a0:c7:f5:ef:a7:f6:7b:35:3b:f7:4f:03:a1:d5:33:3a:63:
21:cd:91:c2:a6:a6:0e:e5:10:d4:6a:f5:93:d5:32:c6:39:64:
92:57:1d:bd:d7:70:e6:ef:38:5a:07:40:cf:3f:7d:35:36:21:
aa:e8:49:01:69:88:13:23:a3:53:8c:1b:38:f1:f1:3b:6f:6b:
14:68:79:b7:70:46:1c:1c:0b:e5:51:c0:9b:c0:5b:ab:a7:a0:
48:19:3f:23:91:92:00:4c:35:43:b3:2e:ec:36:35:02:3f:81:
17:43:db:bc:43:34:ef:5c:da:81:d2:a5:c0:9d:02:77:64:f2:
1e:ac:ba:c7:73:9c:11:bf:51:b3:43:77:ff:75:7a:35:b0:e8:
b3:20:d2:70:aa:0a:48:b6:fc:52:3a:1d:01:7e:1c:19:4a:cf:
56:87:e0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 22:06:02 2025 by rpki-client