Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
File: dHWiyViPxpXSdUKD3NPRI9H3eBE.mft (raw, json)
Hash identifier: sNmSuQ+pZCTUqkDmHcwc0NSiwxichwPhzHTAHbVtZ6A=
Subject key identifier: C0:11:B7:00:1C:AD:E3:E2:2F:CA:80:76:25:EE:7F:63:BC:88:AA:DA
Authority key identifier: 74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
Certificate issuer: /CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Certificate serial: 01974779535F533905FD27DA588E280E62A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
Manifest number: 157C
Signing time: Fri 06 Jun 2025 23:00:22 +0000
Manifest this update: Fri 06 Jun 2025 23:00:22 +0000
Manifest next update: Sat 07 Jun 2025 23:00:22 +0000
Files and hashes: 1: byfAz36QPO1zWRGDAvBxGCJUgUc.roa (hash: cj5k9JTRqENUIcOxIhQN0l2jcQzpbWQBrAEBDWIt2vI=)
2: dHWiyViPxpXSdUKD3NPRI9H3eBE.crl (hash: rDIMu7gyvzRtR3ZQp0xMNAsJ7Tt7cyB+2Ooq9NGED+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:53:5f:53:39:05:fd:27:da:58:8e:28:0e:62:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Validity
Not Before: Jun 6 23:00:22 2025 GMT
Not After : Jun 7 23:00:22 2025 GMT
Subject: CN=c011b7001cade3e22fca807625ee7f63bc88aada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fc:b4:d3:58:89:40:91:c7:2f:c0:10:33:5f:
f1:02:a1:b6:18:08:ed:74:c6:b0:e8:1f:79:1e:97:
7b:05:bd:9f:e5:62:98:e6:42:cd:9d:a4:9a:a6:e0:
e7:42:c5:f1:61:23:e8:eb:0f:ed:5e:ee:47:56:9a:
69:d2:23:6c:d9:a6:2b:36:e9:f0:44:2b:2a:f6:59:
e5:25:bc:5b:71:96:bc:27:04:55:99:e8:f9:23:8d:
9e:3b:84:e4:30:06:6d:61:45:0c:29:ed:98:6a:d9:
36:a2:98:be:0f:e3:cb:93:8f:5d:c6:a4:2b:29:b9:
23:86:98:22:3d:41:2f:cd:7e:56:9e:65:79:1c:c7:
21:6e:4c:80:1f:6e:69:a3:4f:0e:0b:7c:07:d3:36:
a9:9a:12:cd:e2:74:e0:fe:25:ad:38:bb:1b:34:a9:
98:ab:a0:8d:2a:5b:57:d2:02:5d:66:ee:d7:5f:a1:
50:8f:d1:5f:80:8d:3d:07:37:22:f9:13:f9:6d:38:
61:f1:97:98:31:2a:95:16:1b:c1:1c:28:73:39:98:
4d:2b:13:4a:95:78:fa:3e:5b:30:9d:39:65:b7:bf:
58:78:bc:1a:5a:61:43:73:06:fa:ea:8c:55:7c:0f:
38:54:d3:2c:19:63:41:e8:ae:ac:73:55:04:2f:e4:
3b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:11:B7:00:1C:AD:E3:E2:2F:CA:80:76:25:EE:7F:63:BC:88:AA:DA
X509v3 Authority Key Identifier:
keyid:74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:18:f6:0f:21:d9:70:43:68:3b:16:0b:75:d6:0e:a1:b4:1b:
3e:b5:b2:b6:f2:ed:95:77:54:9a:38:c4:10:47:91:f6:13:4e:
38:f3:f2:cc:ef:35:dc:43:50:76:d0:a9:f6:4d:48:20:78:fd:
e0:8b:ec:cb:5b:93:4e:f8:13:81:f1:94:fd:63:79:f1:06:1c:
4f:6d:4d:9a:86:8b:01:54:98:ab:bb:15:e5:dc:f2:fd:70:55:
89:d6:25:79:21:3a:40:7e:55:f9:72:81:09:11:f1:b5:42:5d:
f2:d8:5c:7b:e1:28:59:44:55:29:fd:1b:00:5c:90:7a:85:8c:
59:a0:7b:37:c2:59:93:b9:3c:c1:25:3c:7d:e2:c9:ff:5d:c5:
d4:3c:9f:56:30:23:03:27:10:aa:86:75:76:fd:e7:16:f5:f4:
a1:95:7c:dc:f9:c7:c2:37:70:f7:98:6a:ee:1a:53:59:82:5e:
dc:ea:7b:06:53:93:a4:1b:70:07:da:a7:84:2d:a3:b2:0d:fb:
fe:7a:87:ee:1b:29:7c:c7:79:69:d1:90:ee:fa:30:5a:6f:56:
78:eb:74:e3:ee:ac:4d:cf:cb:5b:02:3b:84:14:4d:61:33:b5:
a2:bf:8a:77:f8:1f:11:c6:bd:5f:76:26:52:df:4a:ef:62:8f:
01:03:51:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:10:11 2025 by rpki-client