Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: 5CUiJaErpWtzqGsmw3pgJOUv3ompaByRwUSTr84CB4Q=
Subject key identifier: 18:55:8A:24:29:1C:3E:B3:32:B5:89:EB:7E:E7:AA:AA:38:DF:01:7A
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 01974CD74EDD681EE04DE9512B114F2A7E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 1589
Signing time: Sun 08 Jun 2025 00:01:08 +0000
Manifest this update: Sun 08 Jun 2025 00:01:08 +0000
Manifest next update: Mon 09 Jun 2025 00:01:08 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: 3DBftvwt7HFBmret3YtSku5RHb+sM187iFlZjGY5kWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:4e:dd:68:1e:e0:4d:e9:51:2b:11:4f:2a:7e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jun 8 00:01:08 2025 GMT
Not After : Jun 9 00:01:08 2025 GMT
Subject: CN=18558a24291c3eb332b589eb7ee7aaaa38df017a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:44:04:f8:f2:9d:4d:f7:52:d5:e1:3b:46:e6:
ef:ff:b8:51:0e:59:97:8d:18:88:0c:2c:40:32:15:
29:26:32:9e:36:69:c9:3c:fd:83:e1:9e:2c:0e:a4:
e0:dd:f4:d2:11:f0:87:a5:31:15:50:88:2f:8d:c0:
60:f8:a6:74:ac:00:70:bb:f9:c5:82:a8:84:e9:3e:
9e:35:e2:29:c6:66:cb:85:bf:05:cb:ac:8d:b4:c8:
a2:3b:43:a7:f7:03:58:4c:7c:58:7f:8f:c6:21:01:
ac:bd:38:18:64:c9:1e:fb:9f:32:c3:c6:42:a2:c2:
6b:c1:8a:41:38:8e:e2:c2:d3:53:96:a6:79:4d:d6:
f6:f4:5e:be:f9:f7:45:eb:9b:05:de:a4:ee:2e:57:
4c:d8:13:9a:91:b4:c5:c7:95:fb:95:0d:93:28:e8:
78:f9:f5:a8:73:39:c9:8a:85:59:68:20:75:85:22:
43:b2:52:65:59:93:63:67:45:bc:7a:23:dc:62:86:
41:38:21:4e:43:cb:56:17:27:fa:c9:6c:68:5a:97:
e4:aa:91:6d:36:86:d5:bf:c5:e9:0e:28:18:53:1c:
7e:43:f8:42:70:11:1b:74:dc:0a:52:59:ba:e0:7b:
7a:ad:5b:22:f4:93:15:90:bf:ba:92:17:42:37:c2:
a9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:55:8A:24:29:1C:3E:B3:32:B5:89:EB:7E:E7:AA:AA:38:DF:01:7A
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:19:27:87:a5:f1:02:09:5d:ee:b8:88:0a:85:b0:dd:34:1f:
07:ef:22:8d:0a:50:43:1a:ed:4e:e1:25:49:a3:2d:84:50:3d:
65:44:30:d6:90:67:6e:3d:5f:34:69:81:87:be:59:a3:67:96:
c4:0c:b6:1f:74:6b:34:24:1a:4b:3c:c2:9c:c6:12:42:6d:11:
1d:db:c5:04:a6:63:cc:d9:6a:24:03:1a:ed:07:eb:10:a4:37:
96:36:a9:7e:e3:05:45:7d:29:0d:02:b1:8f:0c:85:9e:71:b6:
0d:f8:c0:cb:42:ae:d4:02:ec:6b:1f:f1:81:96:6a:6b:08:6c:
9f:ac:e5:09:27:b2:0f:d3:1c:b2:ec:b9:8f:a7:98:d0:84:2b:
e9:21:49:71:8e:50:1f:5f:8b:28:5d:e7:c4:15:99:fb:c0:3b:
39:71:32:f0:f6:78:d3:50:08:a7:87:df:5b:17:44:24:65:84:
3d:12:85:13:43:3c:7a:18:2e:b9:31:eb:d4:cc:a4:3c:31:a8:
f4:d0:44:ae:c9:8f:57:a2:4e:94:a8:38:ff:9e:67:07:89:5d:
8b:d3:3a:94:5a:3f:a5:e4:fc:e9:13:c3:d5:1e:cd:60:ec:39:
35:2f:1d:2d:63:af:ee:9d:36:77:f2:7d:39:06:be:b0:99:f7:
63:c0:72:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:09:54 2025 by rpki-client