Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: l+V5nXx87x6pmkf9pCRNXDHqkXaJdyXdGGWnzB/Etx4=
Subject key identifier: 55:66:88:55:97:AD:F5:11:BC:99:5E:54:63:C4:69:3E:36:99:41:B8
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 01974D0D99272F28142A53321D2F402C904F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 03C9
Signing time: Sun 08 Jun 2025 01:00:26 +0000
Manifest this update: Sun 08 Jun 2025 01:00:26 +0000
Manifest next update: Mon 09 Jun 2025 01:00:26 +0000
Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: Mq7TtWoxe8w5z5DIEZepv6EuNn8qKgPMP1ivzNbh3Bo=)
2: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (hash: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:99:27:2f:28:14:2a:53:32:1d:2f:40:2c:90:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Jun 8 01:00:26 2025 GMT
Not After : Jun 9 01:00:26 2025 GMT
Subject: CN=5566885597adf511bc995e5463c4693e369941b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:73:b4:81:15:8e:f0:bc:16:d7:55:e9:5f:
e7:43:7d:9c:08:fd:53:51:78:48:0e:f1:6c:5c:38:
f1:18:f5:18:32:30:37:fb:e4:08:40:ff:16:dc:fa:
ab:5d:f7:82:4f:c5:45:1e:1a:b8:2d:dc:29:b9:71:
48:02:d9:5b:28:6c:5d:30:99:72:28:6b:d3:8f:cb:
b3:44:12:be:e9:02:e9:ad:19:7a:1c:6d:2b:af:24:
79:b7:39:c4:40:d2:98:a2:00:25:48:c3:0f:6c:aa:
cc:a8:55:f7:f5:17:be:01:af:e1:d9:11:10:1f:d9:
b0:3f:ec:dd:fd:fe:43:7e:d4:83:28:ad:2a:21:78:
78:a0:da:ae:12:72:8f:56:18:0c:e9:6f:96:13:43:
55:7f:68:e7:48:85:ef:6c:1a:7a:72:ab:d3:bc:39:
a9:fe:32:cd:98:bd:40:a3:57:75:16:a8:a6:f5:f1:
26:0e:72:5b:27:13:ae:00:02:00:c3:37:ee:67:8c:
22:8d:73:97:3b:f1:01:60:23:71:ac:30:ef:41:d5:
00:ed:c5:32:f4:12:5d:d0:e9:63:e1:2f:cf:5c:cb:
a8:e9:71:23:eb:26:a3:d6:80:2f:18:f5:0d:ca:f4:
8b:76:10:55:ae:af:5d:d5:03:91:5d:b8:8e:ec:12:
5a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:66:88:55:97:AD:F5:11:BC:99:5E:54:63:C4:69:3E:36:99:41:B8
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:1e:ae:49:0a:bc:dd:e3:1e:d0:8d:57:18:34:3e:f6:3a:88:
cc:c0:50:9d:4b:34:28:11:32:c4:77:f8:64:13:fb:7a:9f:93:
9b:3a:6b:5f:45:d4:d9:0b:3d:55:33:67:49:a1:0b:89:21:d5:
5a:f7:db:51:3e:43:3c:75:d7:23:92:12:5d:77:66:e8:08:33:
a5:89:7e:29:73:b8:13:ce:0a:4c:a4:2e:9e:f5:5b:4e:7e:15:
83:0c:81:c6:a4:65:e2:86:8f:3c:b4:a0:57:a4:41:b6:04:f6:
1a:d7:51:9c:fa:82:4a:7a:cd:ec:3c:b2:e2:46:b0:ab:ed:72:
77:77:56:cc:22:a7:c9:96:ff:45:06:e9:7a:c0:69:a1:50:0b:
e8:02:e2:94:5c:b4:54:9f:21:30:af:2a:76:fc:c8:93:5d:19:
dc:a9:bf:d0:42:28:7e:60:63:7a:92:fe:2a:ac:9c:a6:50:95:
7c:df:ff:f0:60:2c:69:82:f7:b8:cb:f4:cb:64:29:f0:1a:34:
f9:db:b6:a1:cc:24:06:0d:55:3d:01:45:49:6a:5d:91:92:16:
36:da:84:65:f1:c9:af:41:d4:42:ba:4a:d4:c3:d7:9e:a6:fe:
37:f6:72:c8:d7:53:dc:0f:72:04:d6:93:0b:2e:3c:59:4f:38:
32:1b:21:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:08:14 2025 by rpki-client