Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: akqQ8/R0IjrR1rPXpuS8Sw/I2a1pKd2/W9wRPFT1PLQ=
Subject key identifier: 14:C9:EE:14:7E:E6:0F:00:60:36:1A:15:48:CF:0A:30:93:6D:D1:F1
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 01974B8D798E87DDF98BD30E1210A67950D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0E8A
Signing time: Sat 07 Jun 2025 18:00:52 +0000
Manifest this update: Sat 07 Jun 2025 18:00:52 +0000
Manifest next update: Sun 08 Jun 2025 18:00:52 +0000
Files and hashes: 1: IVTm7Sk0HOhJBNyed6XFY_Z2R94.roa (hash: i1RGEeFc6A0tWd9gQ48945gkWc6E43q8yFMFeZXbGTI=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: +Kl4rgI5TsTOHV1H/7TjqFMj0AH+4PzKBLVBkricBqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:79:8e:87:dd:f9:8b:d3:0e:12:10:a6:79:50:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Jun 7 18:00:52 2025 GMT
Not After : Jun 8 18:00:52 2025 GMT
Subject: CN=14c9ee147ee60f0060361a1548cf0a30936dd1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:d4:a9:ae:89:8a:c1:09:6f:23:25:2c:91:
61:37:ec:61:00:11:8d:0c:52:e8:eb:24:db:a1:95:
6b:ff:4b:b2:e7:2e:c4:eb:2c:40:a0:d0:9b:9f:5f:
d3:f6:5b:87:59:7e:35:26:80:8b:99:79:d3:80:16:
62:b2:a7:30:1b:41:b4:b5:6d:c1:0c:89:f8:e3:a1:
8e:c2:52:54:bd:76:e2:15:38:a8:ca:32:9b:2f:80:
4e:bf:e9:10:7a:c4:96:26:81:57:ed:e2:06:a1:ca:
17:d9:25:fa:f6:0a:db:70:8b:a1:3f:e6:f2:63:48:
06:b0:1e:e7:07:95:7b:5e:e0:99:5e:77:8f:ba:62:
f9:fd:c0:3d:6e:ea:38:62:b6:27:64:ac:60:24:ae:
7d:e3:fb:bc:f7:09:9d:86:80:df:db:3e:0f:2c:20:
cb:19:21:35:9b:b1:69:ff:59:04:5b:53:a0:4b:8e:
a5:4e:71:a6:46:46:66:1b:e0:1f:9e:26:52:b0:56:
37:62:06:89:b7:b2:b4:db:65:8b:94:5c:d2:b8:5b:
9e:f9:0a:04:3f:50:e1:c8:ba:27:7a:bc:73:5e:08:
a1:f8:1a:a0:ba:c0:f4:81:f3:0d:7a:31:06:bf:b5:
e0:87:51:3e:1f:24:e7:43:8c:9a:f1:86:21:68:f8:
4f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C9:EE:14:7E:E6:0F:00:60:36:1A:15:48:CF:0A:30:93:6D:D1:F1
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:23:39:ac:6a:28:85:f6:eb:f2:47:75:21:d3:3a:4a:48:46:
77:d8:49:c6:1a:81:25:7c:b2:54:c3:5d:1d:2b:78:56:a2:bf:
ba:74:c3:e7:ae:33:fc:c8:41:e3:fc:35:d9:ff:65:89:7b:71:
b7:f8:c2:1e:2c:7f:89:5d:cb:fb:4d:6c:ba:a8:d3:7a:26:63:
30:9d:be:d3:12:97:f9:8c:26:04:0f:3c:a5:34:b1:38:c9:16:
00:fb:3c:41:2d:46:de:d1:e7:f1:d9:7e:e0:8e:71:7a:1f:d9:
db:58:5f:60:ad:19:79:c5:5a:0c:cd:a2:c7:d6:2c:e2:ca:cd:
8b:5a:dd:72:f9:d0:87:22:73:c3:97:fd:70:10:21:18:3c:0f:
76:bc:5f:af:0a:a6:6c:e6:2e:44:6a:ae:31:97:92:3e:86:cf:
3f:f9:58:56:10:54:25:18:6c:3e:91:1d:ce:26:e6:e2:e1:5d:
68:03:22:49:c7:25:33:8d:82:fd:4c:00:06:88:33:1d:eb:59:
e8:2d:9a:89:44:64:83:8a:8d:03:e1:ad:cc:54:f0:2e:d8:52:
f8:a7:12:2c:fd:4e:f9:7e:1a:4c:99:2d:75:6d:48:ee:b7:a3:
e9:e9:54:34:a4:2c:c6:d7:66:bd:51:d0:ef:30:cc:53:61:5c:
f7:68:95:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:11:27 2025 by rpki-client