Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
File: 8WmQKta3v0YB7qpecj7yPXD6dxQ.mft (raw, json)
Hash identifier: tLySB2P32lNH2Jl+DcsfCYjXoSixlt/s1fQaJyCOEAc=
Subject key identifier: E9:58:9E:97:25:82:68:D2:AC:DD:EE:A8:28:98:0B:EF:B8:12:47:1A
Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Certificate serial: 01976960CF2B85DAB2FB67EFFDA889D5CE43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
Manifest number: 158B
Signing time: Fri 13 Jun 2025 13:00:41 +0000
Manifest this update: Fri 13 Jun 2025 13:00:41 +0000
Manifest next update: Sat 14 Jun 2025 13:00:41 +0000
Files and hashes: 1: 8WmQKta3v0YB7qpecj7yPXD6dxQ.crl (hash: CAzwFNLZ6BkHVyqioWM+VI72+OOHQdlKHSYo4OFIkF4=)
2: f0RuL1swXlvp41CLCru-Mt1TNyc.roa (hash: rkjC9/AqAR3AXAOW7ubyDoWQhwKzvm+Iu5S5RZdguhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:cf:2b:85:da:b2:fb:67:ef:fd:a8:89:d5:ce:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Validity
Not Before: Jun 13 13:00:41 2025 GMT
Not After : Jun 14 13:00:41 2025 GMT
Subject: CN=e9589e97258268d2acddeea828980befb812471a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7d:cd:fe:37:cc:31:dc:08:7c:32:55:1b:65:
a6:26:27:a9:55:42:92:8f:71:a7:f1:96:ed:cf:96:
41:bc:6a:14:42:3b:fd:b3:08:6b:d8:18:8f:b7:ab:
e6:6d:55:2c:66:2e:e6:19:aa:77:e2:55:af:4a:73:
33:b9:fe:ff:ea:dc:ce:1b:22:4b:43:29:24:bc:38:
2c:22:7d:db:db:d5:61:7e:85:c9:19:a9:87:95:0a:
46:a8:66:54:bf:3c:37:d7:5b:7d:7b:29:c9:b9:e9:
60:ad:cd:b3:2a:f9:05:12:6c:02:a6:80:9a:6d:66:
60:7c:bd:2a:79:cf:8b:dc:9d:7a:ed:8e:57:c8:57:
6c:64:17:99:c0:98:7d:a1:65:a7:cf:1a:cc:e3:0b:
02:de:26:6b:e8:1a:2b:5c:0c:37:91:97:6c:68:ba:
94:79:47:cb:6f:35:f3:d8:e3:7f:c6:f8:99:a5:3a:
c3:45:d3:71:a3:66:78:b1:e6:ef:34:a0:37:fd:92:
42:68:a1:e2:e1:38:88:9f:de:fa:9e:03:7b:09:0e:
41:f9:90:1b:fb:b5:78:57:59:aa:3b:61:ac:9a:45:
75:b4:0f:94:0f:1e:a1:97:9f:33:65:06:ec:2e:7e:
2e:82:69:44:ae:7c:86:94:0d:47:45:8d:72:da:11:
6d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:58:9E:97:25:82:68:D2:AC:DD:EE:A8:28:98:0B:EF:B8:12:47:1A
X509v3 Authority Key Identifier:
keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:55:a8:25:1a:dc:da:c8:a1:55:41:51:3c:e6:bb:35:a8:ff:
90:15:5d:e7:fc:81:7d:6c:c3:af:8b:e6:89:24:98:0b:ca:e9:
c9:63:95:0b:b2:1f:8b:53:14:cb:d7:66:bd:1e:de:e9:50:0b:
d4:20:e9:e8:b2:13:8a:ac:37:09:d9:f9:07:4d:bb:55:c7:88:
56:ab:7e:35:86:fc:34:64:53:81:f3:3f:b7:25:69:5b:38:75:
1a:aa:e0:95:a7:65:61:e1:c2:71:fe:42:fb:33:25:44:3a:19:
ee:34:34:18:25:f9:ae:b0:e1:db:c8:43:e1:7e:82:ed:05:52:
f6:78:7a:1f:02:17:65:8c:9f:d9:f2:c9:2b:66:a9:79:98:a2:
27:f1:20:d9:f0:0f:97:89:2c:19:d2:8d:ef:8d:25:42:1e:7c:
0d:ea:c2:f1:9d:64:96:d6:47:c7:a4:6e:64:8c:34:de:d5:e0:
d3:76:95:57:ab:03:8b:17:76:2d:a9:8c:03:7a:2f:56:65:39:
42:ed:1a:69:21:28:92:98:99:60:9e:d7:47:c5:51:fa:52:63:
92:cd:62:ad:02:b5:92:d1:3d:dc:f5:cb:51:b2:32:ee:e6:7b:
05:a6:9c:b7:3f:1b:be:d5:49:69:1d:10:8b:37:46:a8:00:67:
51:28:5a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:27:23 2025 by rpki-client