Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: 3kDiA6kntAA/vCMj3xgD9OaQ+7niNO0Dq85sun2Waxw=
Subject key identifier: C6:F1:A5:97:79:3E:21:86:2B:CD:41:97:89:9C:AB:17:A3:50:3D:49
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019847ADDDC47C8AE399582930B40844020B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1591
Signing time: Sat 26 Jul 2025 17:00:33 +0000
Manifest this update: Sat 26 Jul 2025 17:00:33 +0000
Manifest next update: Sun 27 Jul 2025 17:00:33 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: UZHTg+r9/7duCTKj9WcOtMux/4d+5CgCq+Fd4hVTUcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:ad:dd:c4:7c:8a:e3:99:58:29:30:b4:08:44:02:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Jul 26 17:00:33 2025 GMT
Not After : Jul 27 17:00:33 2025 GMT
Subject: CN=c6f1a597793e21862bcd4197899cab17a3503d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:79:c1:ce:08:b7:d8:a7:3a:45:59:50:c2:05:
20:be:40:6e:98:7d:ab:47:51:c3:d2:b4:cb:d8:29:
9e:21:1d:72:7a:43:eb:25:4b:5f:33:9b:70:37:84:
dc:4f:1f:1b:34:3f:87:58:5a:f4:7b:68:b4:b1:e2:
32:b8:7a:66:7a:81:93:5a:fe:5c:c1:da:25:81:1a:
f8:24:e3:0e:c5:cd:e1:6f:df:d5:60:59:ea:76:23:
44:12:83:56:6e:7b:3c:da:3f:f2:3b:51:d8:8c:b9:
ab:73:41:ca:05:89:5d:9e:71:1a:84:73:d2:ea:8f:
44:44:c8:3b:e3:db:cd:fc:7c:89:49:09:75:5a:a7:
a0:98:54:22:03:96:04:df:cc:d3:b3:7d:6a:33:30:
14:97:ee:68:16:34:12:1d:56:e1:9a:d7:69:c2:4d:
e9:7f:3b:c2:15:b0:9d:24:04:0d:22:69:df:f6:12:
db:01:9e:65:2e:a3:56:b5:19:fb:55:ae:e8:50:38:
5f:20:f2:ee:7f:8b:a6:57:34:96:da:4d:32:66:3f:
ae:e0:3d:05:ef:0d:63:76:06:b4:3a:04:f1:bd:0a:
37:13:d8:bc:52:70:05:04:96:34:c7:f8:62:f0:18:
ef:05:64:96:f7:d2:7d:82:01:2d:7f:3d:aa:cd:e4:
d6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F1:A5:97:79:3E:21:86:2B:CD:41:97:89:9C:AB:17:A3:50:3D:49
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a8:a3:9c:3e:24:5c:46:e4:ea:05:50:e7:d7:58:43:a5:5f:
2f:cd:92:3a:84:89:5d:02:86:59:39:05:a3:d8:8d:b6:a1:79:
c9:a5:cc:3b:11:0b:43:79:3a:89:75:40:3a:fc:21:b0:20:d2:
01:b0:ea:f2:49:a7:da:ad:32:f5:da:f5:c4:27:77:5b:b0:5c:
62:02:94:b5:1b:dd:3a:f7:9a:88:f7:39:9f:ce:fb:d2:77:54:
bf:6b:ef:5c:05:f8:eb:38:e0:0a:e9:de:dd:a7:fb:00:30:ca:
ea:03:04:0f:b8:98:0c:40:57:12:36:dd:69:07:f2:d3:9f:2f:
97:da:2c:67:f2:80:b2:b8:1f:20:e3:10:6e:4c:fc:6c:69:89:
f8:8f:f6:5f:e0:f7:31:a3:9d:04:59:45:94:90:83:c6:2b:61:
5b:4f:d9:59:81:16:42:a9:8c:a0:ca:e1:ac:b6:0a:83:7e:a5:
05:60:f6:a0:58:56:0a:2c:4d:dc:f1:3d:04:26:18:1d:af:ed:
43:f2:1b:c6:9b:38:91:3d:95:e9:34:93:48:57:97:b5:b8:8c:
a1:b7:09:39:c8:13:ea:2c:3c:2f:b3:8d:60:6d:3b:f9:3c:31:
45:1f:18:b6:bf:be:f5:cf:90:89:44:97:1a:cf:06:2c:65:d4:
f4:bb:e3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:45:54 2025 by rpki-client