Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: +f1VMAkpNLaY5VvJA9AwXvXvu6Vv8Mfs9+R9kdvl8ms=
Subject key identifier: E5:B3:7C:E0:EA:B2:51:91:8A:D9:BE:48:8F:9D:BC:9F:D5:9B:29:59
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 01974C32390D691D9C9A503AB80D0E3EECCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 0704
Signing time: Sat 07 Jun 2025 21:00:49 +0000
Manifest this update: Sat 07 Jun 2025 21:00:49 +0000
Manifest next update: Sun 08 Jun 2025 21:00:49 +0000
Files and hashes: 1: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=)
2: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: bMp/NGVwbFErMYxyQicLnEBcDZgVr37RcrukFuSRqFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:39:0d:69:1d:9c:9a:50:3a:b8:0d:0e:3e:ec:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Jun 7 21:00:49 2025 GMT
Not After : Jun 8 21:00:49 2025 GMT
Subject: CN=e5b37ce0eab251918ad9be488f9dbc9fd59b2959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6e:5d:0a:3f:f0:8b:e8:0f:5d:e8:1c:13:74:
c3:d1:8c:e8:6b:82:2e:19:34:32:c0:a1:4b:e9:fe:
9c:68:ba:e1:5c:48:b5:6c:65:88:c8:57:97:2e:25:
00:16:a6:cc:5d:5f:93:6d:62:ef:ab:53:a6:7b:80:
1b:20:fe:af:7f:dd:39:e9:76:4e:ad:84:ee:7f:7b:
a6:48:c9:cd:77:a6:18:62:d3:7b:e9:e5:0b:24:fb:
c4:10:b2:e3:c4:2d:c2:a4:ed:fb:c6:7f:df:b4:a6:
16:b0:ee:22:37:a2:1e:87:75:2e:99:7e:bb:76:42:
4d:1f:6a:72:6b:17:c3:d0:b8:c3:32:7c:6f:0f:01:
c8:71:23:6a:ab:e3:f4:d9:2e:cd:74:26:ce:c6:e6:
b6:d8:a3:62:97:f2:ff:16:27:9f:8c:18:9f:63:75:
63:85:aa:66:61:3b:31:a6:bb:43:98:c2:68:b5:2c:
47:30:f3:ec:b1:30:46:88:3c:e0:a1:81:1e:98:f3:
31:24:d8:03:8f:36:24:41:77:a2:9f:4e:50:0f:13:
5e:a7:94:6f:c9:73:b3:f8:58:26:85:54:16:fe:11:
66:13:f7:bb:f5:98:e6:0d:c2:e6:1e:2e:68:e5:20:
f0:ca:c5:41:37:78:fe:83:f3:2c:51:fd:e7:d9:c9:
3d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B3:7C:E0:EA:B2:51:91:8A:D9:BE:48:8F:9D:BC:9F:D5:9B:29:59
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:51:0b:a1:84:c9:7d:d1:3f:1f:58:0c:05:86:f0:85:9b:74:
2d:ec:ce:9e:2a:af:5c:4b:b5:61:7d:2a:93:a9:79:83:4d:a0:
b4:55:f2:ea:13:19:7c:e4:f5:4b:2f:86:25:8b:4c:42:8d:24:
b4:1b:43:0e:b6:b5:0c:98:39:d8:bb:52:b0:f2:03:a4:01:a5:
79:3d:0d:9a:40:ef:28:8c:d0:73:d5:43:8f:39:c8:3f:82:cc:
d0:4b:58:14:68:57:05:0b:53:fc:a1:69:a2:be:32:e1:c0:07:
31:87:7c:df:60:25:51:48:b2:0c:1e:8d:f2:f0:61:e5:3f:0b:
70:cf:95:58:50:98:09:26:8a:d0:ba:09:54:35:47:3e:8c:8f:
6e:50:46:78:f7:e1:a0:a0:c8:56:64:70:66:f2:d6:a5:cc:de:
46:78:32:17:c7:8a:76:cb:09:86:8b:50:71:6f:6e:dc:c3:51:
56:7f:29:c2:c4:fa:8c:5d:2f:c6:5c:62:e4:ad:d3:32:87:5a:
63:76:50:d4:57:18:a9:7c:b6:34:8a:e4:39:6c:6a:50:8a:2e:
d7:30:c7:14:6a:ec:19:6e:ac:c7:97:29:4d:09:ff:01:4e:ec:
40:e3:1a:1d:76:d9:ef:3d:a4:81:47:ee:cf:67:cf:b1:69:f6:
79:23:d4:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:19:06 2025 by rpki-client