Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
File: 5hbHsgGVYH8nsT2I-Svx0Os45g8.mft (raw, json)
Hash identifier: SLHAd18xCY8dsF81u2mVNH1WcJAQWzBSVRmzKzqNey0=
Subject key identifier: C8:0C:DF:C0:49:25:CE:14:79:82:0B:05:68:E4:05:38:CC:9D:9F:96
Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Certificate serial: 019763279861046DC99AF97C5E136913D603
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
Manifest number: 3E
Signing time: Thu 12 Jun 2025 08:00:28 +0000
Manifest this update: Thu 12 Jun 2025 08:00:28 +0000
Manifest next update: Fri 13 Jun 2025 08:00:28 +0000
Files and hashes: 1: 5hbHsgGVYH8nsT2I-Svx0Os45g8.crl (hash: 0wRHWCZxbRyMS8xnnYJSWzhX0PPgz8mP6+XzBe3Rdcc=)
2: kGI3GYIY0x4KUvkaQBv3fV9ynWg.roa (hash: gmJPfaxRI83koFjZWztv8K0vXqe3xOaLvXeiVBQz3Ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:27:98:61:04:6d:c9:9a:f9:7c:5e:13:69:13:d6:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Validity
Not Before: Jun 12 08:00:28 2025 GMT
Not After : Jun 13 08:00:28 2025 GMT
Subject: CN=c80cdfc04925ce1479820b0568e40538cc9d9f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:b3:a3:aa:24:51:ed:7f:e3:34:82:13:7e:
2c:79:20:aa:8c:02:07:bf:b7:7a:82:59:49:63:b9:
45:59:a3:18:3b:aa:c2:74:f5:fc:93:3c:45:c0:0b:
7d:5e:8d:0e:c5:c9:82:e0:ef:ae:fd:31:67:68:63:
65:84:cc:c1:6c:47:75:da:40:99:53:25:19:6d:15:
49:f0:04:3a:4b:bb:a1:2d:5f:ea:07:8d:dd:78:9f:
03:fd:20:22:91:ec:1b:31:aa:d1:1a:d8:19:51:90:
30:7a:d8:48:eb:84:19:ca:91:93:2e:e7:9e:c0:b9:
39:0c:df:3a:d8:01:10:0e:e6:cb:32:10:8a:69:f3:
3d:2e:d6:b1:ef:9e:51:44:78:02:28:5b:d5:c1:13:
a6:c5:32:bd:92:b8:f6:08:bc:05:78:f5:8f:cc:c7:
4d:f7:27:50:2f:9b:a1:b2:d0:7e:52:da:38:79:e0:
8e:8d:fb:b4:b9:c4:84:d9:ce:76:ae:dd:6e:14:62:
c2:ac:e2:5e:69:fd:82:33:5e:b4:bc:86:a1:19:bf:
cd:d5:eb:22:3c:3a:b3:17:fd:79:52:7b:81:8b:24:
86:d7:65:3a:eb:e3:f3:16:ae:9f:ec:ce:bd:0b:d6:
7e:8f:83:28:d4:66:38:9c:21:e1:26:9a:aa:fa:e1:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:0C:DF:C0:49:25:CE:14:79:82:0B:05:68:E4:05:38:CC:9D:9F:96
X509v3 Authority Key Identifier:
keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ce:ef:9a:12:27:22:43:51:e0:0f:4b:05:85:3f:1e:52:78:
71:7e:ed:b8:f1:aa:03:ca:fb:7c:14:0a:07:b2:c4:c3:7a:cb:
7e:b0:6b:9b:49:eb:c9:b0:f0:62:64:fe:00:09:b3:59:fd:b2:
a1:ff:88:3a:de:8c:3c:44:a8:d5:4a:14:63:61:1d:78:30:1e:
7e:06:08:aa:77:11:ed:a9:88:6d:8a:d9:1f:bf:c5:05:19:60:
21:60:70:40:4a:cc:8a:02:09:7e:21:60:1d:e8:a6:9a:f9:e1:
d2:cc:44:ab:81:5a:c3:7e:54:4b:8f:fe:9e:de:51:dd:e4:ab:
51:fb:48:cf:5f:9e:b3:da:88:da:29:18:17:75:51:e6:29:03:
1d:90:77:61:33:9c:16:d6:6d:d8:af:92:a8:61:a1:16:62:96:
dd:46:62:13:8a:df:0a:4d:eb:e6:2d:a8:ad:18:11:cd:42:51:
22:7b:64:7c:15:25:1e:7a:36:fc:a3:09:2b:bc:49:67:21:d7:
00:37:46:c6:f3:44:17:a8:a4:27:38:56:af:fa:e4:28:57:27:
5f:d7:0d:4b:e3:98:32:93:79:7d:e4:09:46:7c:95:08:ef:80:
12:fd:83:12:e0:0a:4e:e1:45:39:2a:da:c9:31:2a:40:30:a0:
e2:87:e6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 11:17:40 2025 by rpki-client