Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
File: hGr1TmVYz8hiUpRuRpKrknd8DhA.mft (raw, json)
Hash identifier: Xz+ImbTkfdZyJh8Jk4qLbmZqtHbJS7uSlEVzz/okmkQ=
Subject key identifier: 15:48:CD:AD:42:C8:71:A4:A5:7C:19:3C:89:D5:2D:A5:10:71:3B:9C
Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
Certificate issuer: /CN=846af54e6558cfc86252946e4692ab92777c0e10
Certificate serial: 01974D0D9A72F386F39EDB70B1121FD9749C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
Manifest number: 11A2
Signing time: Sun 08 Jun 2025 01:00:26 +0000
Manifest this update: Sun 08 Jun 2025 01:00:26 +0000
Manifest next update: Mon 09 Jun 2025 01:00:26 +0000
Files and hashes: 1: EAjdVmmPDgRsaYdJzqxZsWJ1dtQ.roa (hash: MpPa88zI8gAyzjuIqd3qZ9dmTTo9CAG0jQ+czPWKrY0=)
2: ZpIa8d84ZFXt_ZFQqAeQWbEn8cE.roa (hash: yg+iHdLIlyvv1zJT3FKVPdTj2ezKdgH8bzRxXJFfD+M=)
3: fw-9UYbBKED3FPK1cxwcKkMCFm0.roa (hash: jRUQB1Fr5hDxlkTn2IWZrgIhUE7mB/LkFsYZT2IUhmk=)
4: hGr1TmVYz8hiUpRuRpKrknd8DhA.crl (hash: 6hMRFanX4o4DkaN80qoclBdKi34e7i5MjCvP8zkauRI=)
5: pT_R2pT5fkigCUc46LgmyNvu26w.roa (hash: f5EDq84NioAgiZfb2l0opuOPnSnHoDIa4FyPu++58Hk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:9a:72:f3:86:f3:9e:db:70:b1:12:1f:d9:74:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10
Validity
Not Before: Jun 8 01:00:26 2025 GMT
Not After : Jun 9 01:00:26 2025 GMT
Subject: CN=1548cdad42c871a4a57c193c89d52da510713b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b8:8a:ca:bd:38:38:1e:1b:b7:4b:6d:ae:df:
ff:09:4a:85:f6:8e:ea:fb:f8:49:e3:df:3b:59:39:
54:ea:f1:1a:7f:db:2d:02:b2:d1:69:26:93:17:ac:
30:cb:e4:0d:68:c9:92:dc:fd:ac:a1:ba:f6:48:e7:
32:91:75:ad:80:95:93:ff:a0:68:f1:29:a8:96:b6:
0c:33:06:0c:9b:38:5d:c6:7c:f7:bc:90:62:d8:88:
88:4a:8e:3a:28:9f:cb:79:41:cf:40:8a:7f:e9:89:
24:82:61:12:51:45:86:4a:9d:bc:50:5a:79:c9:60:
58:6a:0b:42:ac:7b:ce:3f:06:3b:98:3e:57:73:f4:
e4:11:93:ca:07:b2:19:e5:25:1c:e7:0f:4b:ea:a2:
a0:f3:69:ff:bd:7d:cf:6c:51:bb:43:1c:a1:0f:8e:
56:b3:6e:52:fe:10:eb:0a:ce:45:85:d5:62:38:c6:
86:14:ec:00:e1:1b:47:c5:4e:57:60:d3:3a:1d:ab:
a1:4f:52:d6:f6:e6:98:0b:ed:5c:5a:00:b0:1e:68:
92:fd:2f:f0:14:18:d3:52:68:b7:11:79:e8:66:be:
65:87:63:4d:0e:f9:44:3d:da:04:79:bf:9d:4f:ca:
4a:a6:ef:60:db:07:47:ab:25:4a:fd:4a:d8:c5:a8:
e1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:48:CD:AD:42:C8:71:A4:A5:7C:19:3C:89:D5:2D:A5:10:71:3B:9C
X509v3 Authority Key Identifier:
keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7e:5d:81:c8:73:30:6b:fc:35:7d:d3:5e:1c:46:b2:5e:d2:
84:2b:8f:ac:4f:cf:b6:b0:7b:04:fd:11:5c:2c:42:02:b0:65:
97:cf:0b:d2:5c:b5:bf:a9:3e:4a:c1:63:e6:48:13:72:f5:41:
08:cf:a5:8b:55:64:14:25:bf:57:71:c5:ef:44:64:41:49:d6:
b0:75:22:0a:a9:4c:1a:4d:05:b9:45:c2:38:a2:90:bd:1b:fd:
93:62:f1:a6:38:f5:be:7f:61:02:1a:81:53:8a:35:4d:0d:dd:
68:14:30:5c:80:4a:01:5b:30:e7:e3:b3:10:41:e9:ab:ee:03:
4b:3b:e9:28:c4:ab:d0:6f:fd:97:c7:a6:bf:3d:75:7f:91:ef:
1b:4e:00:7d:d6:b3:0e:7f:92:14:5d:cf:cb:46:7d:b9:3c:4f:
96:80:53:38:9f:93:51:86:ca:5a:dd:ab:91:31:f9:08:12:02:
be:e3:ef:92:8b:ee:75:13:ae:b2:54:be:a5:86:cc:8b:1f:7f:
45:a5:6b:da:ec:1c:07:f5:34:c4:6e:f3:a1:bc:e6:43:3a:2b:
ed:68:e1:32:a7:fc:69:1a:4a:ad:2a:b0:2f:a4:43:30:df:bf:
b9:d6:8a:22:93:78:a6:2a:79:34:9b:07:6c:68:54:e1:12:34:
74:22:1f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:08:22 2025 by rpki-client