Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: Htgn6EY68haQq4MX8Nl4noSzyFylaHkTHcbOBU2GLzk=
Subject key identifier: B4:06:29:F4:DE:8A:52:4E:8A:BA:1C:6B:4E:A8:77:0E:7A:F2:70:62
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 01974AB1BA74746BC8960453243026C02F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 150E
Signing time: Sat 07 Jun 2025 14:00:50 +0000
Manifest this update: Sat 07 Jun 2025 14:00:50 +0000
Manifest next update: Sun 08 Jun 2025 14:00:50 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: H8pSfYXJnlnbcamaqhd25+TopI57HzXzjX6ehG4aktg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:ba:74:74:6b:c8:96:04:53:24:30:26:c0:2f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Jun 7 14:00:50 2025 GMT
Not After : Jun 8 14:00:50 2025 GMT
Subject: CN=b40629f4de8a524e8aba1c6b4ea8770e7af27062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f7:29:a3:b8:49:5f:84:51:5c:59:d4:08:33:
d8:ee:62:32:26:0b:a9:a1:15:0e:75:9b:bf:94:e2:
b1:bc:ba:90:4b:e3:61:4f:6e:6e:02:69:60:8b:8b:
c5:f1:35:e7:75:05:2a:4b:6d:62:4f:48:58:72:da:
da:b9:d7:d0:0a:1f:5f:2d:cd:01:f3:67:dd:91:17:
a9:e3:c3:fd:9f:aa:f4:61:4f:91:59:bd:dc:50:ac:
6b:e7:eb:4b:62:e0:c3:ee:88:e1:65:63:73:21:de:
75:f6:10:da:49:b9:90:38:94:ff:ad:45:af:c8:d8:
67:83:47:a5:43:1f:e5:3a:c7:b3:f1:66:04:d3:6e:
f1:2f:a6:94:09:34:df:6a:0d:45:b8:59:24:e3:eb:
6f:f4:85:01:e7:1b:85:82:8c:3e:ed:fb:86:b2:1d:
72:5a:83:e6:bb:e8:c5:79:f8:06:ca:b6:22:cf:96:
f8:ac:56:59:d1:61:4f:a0:49:80:05:ea:68:ad:5a:
e0:58:0b:52:30:f4:8b:56:a5:65:9f:ce:fd:97:d0:
84:86:82:4a:3b:f8:88:0b:54:a2:89:19:29:ca:8a:
1a:2f:43:1a:9f:bd:99:6e:02:0c:cc:ad:f3:b8:b6:
b6:a3:cf:d1:79:a6:f2:b2:11:72:5e:0c:38:73:68:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:06:29:F4:DE:8A:52:4E:8A:BA:1C:6B:4E:A8:77:0E:7A:F2:70:62
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:36:db:8f:a3:4c:f9:4a:f7:8e:b3:ec:79:36:1c:67:62:6a:
c2:e0:81:54:b9:34:cb:a5:a8:7c:08:67:4c:7c:0a:da:90:f0:
df:d8:db:06:77:63:0c:4d:7c:3e:de:de:73:c8:a1:fc:1a:76:
a8:c4:72:7b:d3:b3:3a:30:87:d8:1a:42:09:66:75:aa:89:78:
5c:13:02:19:5f:5c:c7:e2:c5:e2:ee:36:e8:56:b7:a1:83:30:
5b:fc:f5:24:6c:05:fd:22:f0:16:52:af:6f:fb:52:60:b5:9d:
cf:29:28:55:28:51:f8:ee:09:e0:ba:28:af:46:f5:08:34:58:
34:9a:43:75:e9:8b:e1:a9:22:6c:eb:7b:2d:31:d8:92:76:20:
d1:87:da:70:ef:51:95:59:56:af:93:c7:69:58:e2:14:d4:e4:
7a:8a:01:d1:39:aa:87:a4:6b:bd:35:fe:7e:09:05:ba:8e:26:
cc:c1:8c:58:4e:2c:bb:2b:bb:23:60:d1:45:41:4c:27:60:6a:
18:19:4b:03:c5:79:2d:07:e3:0f:de:0f:75:c8:c1:02:54:0b:
1f:1f:2f:a4:a5:6d:61:83:f6:2c:33:13:6e:5f:66:6b:ef:47:
01:fa:6d:e5:86:1b:ec:ca:32:0d:9c:7a:cc:a6:9e:66:98:1c:
69:af:39:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:12:52 2025 by rpki-client