Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
File: HgUGRdac54HkkMDzxJle5tTmB4s.mft (raw, json)
Hash identifier: pyu+EKnDUdDVPHLHyeQjqTqbK21o6EHvgUv43M4NO+o=
Subject key identifier: 87:77:C4:DE:DA:9F:43:96:EF:68:F5:62:09:15:3E:EB:33:A0:CF:28
Authority key identifier: 1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
Certificate issuer: /CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Certificate serial: 019750B3BCF553BF29AB6DC9A0250BBA2241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
Manifest number: 075A
Signing time: Sun 08 Jun 2025 18:00:45 +0000
Manifest this update: Sun 08 Jun 2025 18:00:45 +0000
Manifest next update: Mon 09 Jun 2025 18:00:45 +0000
Files and hashes: 1: Cng8TcnIXSMG5gaf3EVbnwwbQjk.roa (hash: SlPAu0/v+q9AU8NTLPmY4PB0nlmzfGz86P4I7oW5+Ns=)
2: HgUGRdac54HkkMDzxJle5tTmB4s.crl (hash: qO6b5NG480pD3iWCYeNUSMYhxVqO2fZnKtRSQ0NAqr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:bc:f5:53:bf:29:ab:6d:c9:a0:25:0b:ba:22:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Validity
Not Before: Jun 8 18:00:45 2025 GMT
Not After : Jun 9 18:00:45 2025 GMT
Subject: CN=8777c4deda9f4396ef68f56209153eeb33a0cf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:37:1a:d9:6a:2d:4f:7a:35:8a:40:a1:ee:29:
53:6b:70:e1:6d:b1:8c:ed:45:57:43:44:4b:8b:ac:
ce:ba:7a:aa:10:aa:c4:19:8d:27:22:28:32:3a:45:
58:4d:f4:90:3e:a2:91:f4:a5:53:c6:0a:41:1f:d1:
e8:61:4e:eb:ff:d1:4e:8a:bc:ab:1d:d1:e7:22:be:
24:71:61:c9:f6:2c:dc:9c:65:ea:e4:a6:d7:e5:90:
3a:b6:6c:6b:91:29:87:39:08:59:9e:cf:d6:c1:fa:
1d:ea:17:0c:cd:a8:62:68:3f:e3:f4:d6:e0:d3:d4:
a6:98:5f:9c:e1:8f:7a:2d:63:65:a8:f4:57:a4:ef:
da:20:3c:b0:42:31:7e:81:fe:96:f6:a6:3e:80:f2:
e6:ab:3a:dc:70:6e:43:d8:fa:ba:c2:33:10:c4:cf:
cf:70:7e:03:51:07:29:03:aa:55:7c:4f:ab:0e:c1:
75:93:87:96:05:d7:75:67:26:b0:e6:62:86:de:6f:
af:d1:b4:c1:e7:f8:1f:fe:03:40:4d:7e:2d:59:76:
96:f2:6e:3b:07:1b:fb:a2:1a:f0:b6:38:21:27:e1:
c5:59:44:b5:5e:d6:a8:19:0a:52:60:01:f2:17:31:
01:2b:28:c6:9a:97:17:91:86:36:34:9e:01:17:df:
bc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:77:C4:DE:DA:9F:43:96:EF:68:F5:62:09:15:3E:EB:33:A0:CF:28
X509v3 Authority Key Identifier:
keyid:1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3f:7f:3a:10:36:08:fc:65:54:a6:3e:c9:b7:0b:86:fa:0b:
bd:fc:f3:8f:f2:cc:4b:ec:35:fc:8a:7a:bb:11:47:4a:a0:32:
71:c3:3e:eb:3b:40:7e:98:50:2d:c3:08:91:d7:46:c5:ec:62:
68:91:b4:85:72:cf:eb:43:34:a4:28:62:08:2a:a5:52:bb:22:
b6:3e:b1:1e:06:96:98:eb:4f:39:08:0e:9d:fa:34:e2:ef:f7:
2c:59:d2:88:61:95:a0:6b:9f:f9:d9:17:74:43:ea:eb:b8:93:
6b:e4:59:7a:72:2f:37:d0:26:b6:29:9f:92:11:f2:59:8b:54:
08:24:34:27:7c:26:1b:48:0a:c9:4c:3d:50:fd:36:3a:1a:9b:
9a:d6:41:26:dc:8d:ba:ea:d1:df:b0:f2:5e:27:79:0b:ff:d2:
24:93:93:9e:ca:e0:d5:1c:fb:6e:6f:62:ad:2f:61:14:af:f4:
85:4b:66:a5:7d:4c:76:63:06:ce:b0:e9:6d:24:66:4a:a0:a3:
b8:0c:33:7b:d5:9b:e0:6e:19:cf:13:aa:9c:65:93:32:77:2d:
e9:58:c9:6d:31:a1:f2:aa:18:50:08:7a:b0:f2:42:8a:ea:e4:
cf:87:21:dd:9b:bd:fe:c5:8f:34:31:df:00:ce:ee:5c:37:a1:
e1:35:23:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:19:48 2025 by rpki-client