Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json)
Hash identifier: 7N1Hp+sUBtJ3TpriXox2qDH5HCSnqV7ibA7dZJKDD5U=
Subject key identifier: DF:5F:D5:E9:B6:C3:3E:08:13:DD:2D:ED:EA:0E:FA:C4:6B:C5:91:64
Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Certificate serial: 01984B5504900957522B2DC4A6D9B1E44629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
Manifest number: 0B5C
Signing time: Sun 27 Jul 2025 10:01:59 +0000
Manifest this update: Sun 27 Jul 2025 10:01:59 +0000
Manifest next update: Mon 28 Jul 2025 10:01:59 +0000
Files and hashes: 1: Bh5IC48JAR5FB63v2dnakNOTX34.roa (hash: FMLGNxpZDrf8rppZSMEnpJR9pt6oa5eJBxowJrkMq7o=)
2: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: I8LMHn4U1kxXA0MIAPq5DGV193yXgeDWjF6KUOKRtgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:55:04:90:09:57:52:2b:2d:c4:a6:d9:b1:e4:46:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Validity
Not Before: Jul 27 10:01:59 2025 GMT
Not After : Jul 28 10:01:59 2025 GMT
Subject: CN=df5fd5e9b6c33e0813dd2dedea0efac46bc59164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:13:a8:8f:9c:e6:1e:5e:ed:9a:e7:a8:28:02:
7d:1a:c8:2e:ae:4e:2c:56:b9:57:fb:4d:f1:75:d7:
f7:4b:87:f2:75:e8:44:87:74:76:47:b8:aa:7b:dc:
f4:18:80:68:78:e5:4a:39:ee:2b:40:57:0a:ce:87:
71:03:e3:92:10:37:87:4f:a5:ae:14:70:89:b0:06:
85:4d:c5:d7:c8:93:ac:45:6d:e9:4f:ba:d1:ea:44:
27:89:4c:57:f8:f9:e1:9e:34:08:e7:8a:6e:a9:98:
b0:19:b4:90:31:29:d3:26:57:09:c5:9c:80:1f:c8:
b9:b3:74:96:de:2b:4d:12:fd:dc:44:7a:85:0b:5c:
19:1f:11:be:bb:7e:8a:20:68:ed:3b:f2:0a:4f:02:
f8:07:6f:0e:90:48:c8:c1:41:2b:43:ad:04:7a:93:
57:d3:45:5f:45:4d:0e:b1:83:d0:6f:7d:2d:8e:a5:
ed:b5:f4:ac:55:05:43:82:a6:af:32:92:60:23:50:
36:81:07:12:77:28:5d:3b:97:65:e4:77:1d:ab:6d:
2e:82:cb:d7:fa:c1:98:51:fe:d7:ab:3b:ee:2b:db:
f9:7c:0a:ab:82:4c:57:e1:cc:f3:fb:93:d1:b4:00:
38:10:65:4d:2d:74:b8:81:59:ac:8c:11:3c:45:8e:
15:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5F:D5:E9:B6:C3:3E:08:13:DD:2D:ED:EA:0E:FA:C4:6B:C5:91:64
X509v3 Authority Key Identifier:
keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:0f:c0:0d:d4:2f:2b:c7:d4:f6:bc:eb:16:9c:52:53:7f:17:
b0:b8:b3:5b:2b:8b:4e:dd:b5:52:a6:67:75:5e:b2:93:48:46:
7d:a4:83:d3:0c:9d:78:2f:e3:78:51:c6:9e:e3:e6:90:d0:25:
46:0d:b2:86:9f:c3:ce:e0:95:26:a8:29:2f:f4:fe:0a:ed:a6:
4f:ac:cc:ed:7f:3f:b8:49:5f:2f:22:ff:0b:4b:7a:40:2e:c6:
ad:51:90:dc:29:0f:0b:29:94:ca:af:c4:8b:d9:59:e1:e6:4d:
e6:a3:53:6a:0f:21:9e:7c:fe:ea:35:e8:f0:25:37:69:c5:4a:
28:15:82:25:c7:40:7d:1a:36:92:87:62:76:b7:4a:73:79:d5:
7d:fe:c9:55:e2:4b:d4:d0:48:72:ce:40:a5:cd:10:37:85:a8:
d7:83:90:4b:e5:61:f1:6b:d2:cb:39:3d:20:7c:03:07:c0:49:
bf:9a:05:73:95:23:ca:0e:dc:af:df:67:a2:13:1e:18:49:23:
86:c0:9e:fa:03:08:59:78:59:3e:4a:de:51:73:cf:2a:61:54:
6d:3c:0f:fd:17:da:90:9a:63:7e:11:ea:87:e5:2a:7c:f2:22:
0a:5e:77:3b:bb:aa:4d:b2:51:f7:4c:de:4f:b8:6a:5b:c9:ef:
d0:16:86:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:01:11 2025 by rpki-client