Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
File: hEoXkcsH8dhhI8Y9w63P11TbEBs.mft (raw, json)
Hash identifier: vweBrQOEtqbnb1MRjTDXjiqWFRaYril/zWGTs8sHrlo=
Subject key identifier: 45:11:E1:81:1F:B9:9D:65:68:D1:F7:ED:A7:F5:C3:39:DB:2D:2B:D4
Authority key identifier: 84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B
Certificate issuer: /CN=844a1791cb07f1d86123c63dc3adcfd754db101b
Certificate serial: 019750B40DD0F1ACF2766E50FBCE4E65B666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
Manifest number: 0991
Signing time: Sun 08 Jun 2025 18:01:06 +0000
Manifest this update: Sun 08 Jun 2025 18:01:06 +0000
Manifest next update: Mon 09 Jun 2025 18:01:06 +0000
Files and hashes: 1: Ihp0VP8oRNeTGrBSGwpts6D1JhE.roa (hash: Qldf3LszJ2g2XwaE6LEoxPc+aR59tijRa50IN/mT6PY=)
2: gi2zaUr2ngLXfM8NV7jNPdt_PFI.roa (hash: pPPLz9b8ntu+6vKYV+GHcDLfS03p/6Pt+aGjIk5ADdw=)
3: hEoXkcsH8dhhI8Y9w63P11TbEBs.crl (hash: dZXgJadhgHhyPk/GPJ0VJnb5o2qAdUGQYgo4RsVdiaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:0d:d0:f1:ac:f2:76:6e:50:fb:ce:4e:65:b6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844a1791cb07f1d86123c63dc3adcfd754db101b
Validity
Not Before: Jun 8 18:01:06 2025 GMT
Not After : Jun 9 18:01:06 2025 GMT
Subject: CN=4511e1811fb99d6568d1f7eda7f5c339db2d2bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:f2:1f:1e:65:58:99:c5:e6:83:81:e6:30:
c4:20:ef:18:ef:82:aa:e4:a8:54:9e:14:7f:aa:98:
7e:a8:fa:6f:98:8e:26:5d:a8:b4:7d:a4:0d:fd:a1:
2c:32:e6:fd:98:6f:ac:44:b9:ad:de:42:5a:c8:fe:
45:7e:d1:8c:cf:2d:df:25:10:0a:ad:4f:b7:62:66:
92:3f:3a:1a:01:d8:1e:85:22:09:0f:83:d4:b8:86:
fd:8e:b9:8d:56:79:11:42:1e:44:8e:e3:b5:62:b9:
c0:cd:73:58:84:43:e9:a4:30:10:56:e0:f1:fe:b1:
9b:77:e8:cb:e0:fa:70:bd:fa:62:3d:58:64:43:6c:
56:ca:0b:4d:5c:ea:d5:48:a1:af:0e:d8:b1:00:f0:
34:59:e3:48:2f:e8:85:00:72:d7:0e:f8:81:2f:dc:
2b:87:f4:0e:ec:a0:c7:a6:56:87:6b:16:ed:63:e3:
d7:17:ba:f1:24:bb:db:99:6f:b8:aa:a1:cb:14:03:
2e:85:6e:20:c4:8e:5e:fb:5a:89:7f:05:9b:ec:8f:
93:8b:96:6e:d2:03:3f:eb:95:a7:87:0f:3f:92:45:
cc:66:48:d6:31:c0:f7:a5:90:de:60:50:3e:25:6f:
26:42:46:3d:e6:24:2f:5d:86:45:ed:ef:af:36:6c:
16:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:11:E1:81:1F:B9:9D:65:68:D1:F7:ED:A7:F5:C3:39:DB:2D:2B:D4
X509v3 Authority Key Identifier:
keyid:84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:e3:8c:81:36:5c:dd:91:01:0a:2c:5e:78:42:70:f2:17:32:
55:3f:6e:23:e9:64:b9:c6:f4:d3:ee:14:74:d9:31:3c:67:f1:
d1:36:1a:be:96:33:86:56:f2:bb:8a:35:92:1a:c5:32:06:e7:
bd:e3:25:bb:57:9e:c3:65:0e:50:4b:2c:b8:25:26:f3:bd:a8:
40:5d:eb:50:b2:33:83:c3:63:f7:a0:78:81:5d:c4:d4:5b:09:
69:08:29:99:d0:b6:8e:bb:c5:3b:69:7f:89:2c:47:ff:67:27:
c5:b2:d9:23:79:a4:6a:e6:99:33:f8:bd:cb:45:78:34:e3:98:
66:b4:f1:d3:74:9e:98:56:34:38:28:a2:ee:0d:52:cb:31:20:
e1:52:14:87:31:dc:a1:94:67:b9:73:b7:57:b7:3f:e4:7e:7d:
85:84:ac:ce:6c:c4:a1:6a:c6:c2:da:80:df:67:0b:65:c0:13:
e3:1d:b7:02:6c:78:64:e8:3c:bb:85:00:9a:cc:f9:3f:7b:5a:
72:e6:39:d6:32:62:a5:1f:33:aa:2f:ae:98:b5:37:80:84:c2:
6b:aa:ae:de:1b:0c:9e:71:84:41:76:aa:31:b9:d7:01:b3:ec:
86:e0:57:60:44:67:41:e6:65:cc:28:37:61:92:9d:3f:e0:b5:
58:7d:3f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:20:05 2025 by rpki-client