Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: twlzGHr8sCZC1fDfHRTVbyTfecdWINsZbEFibLBTU/U=
Subject key identifier: 2A:4A:E7:A0:24:73:34:6D:14:C5:71:85:6D:8F:7A:60:59:0A:EB:B4
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 01974779C6D4C66C92B4E7E15610940B8D09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 02CC
Signing time: Fri 06 Jun 2025 23:00:52 +0000
Manifest this update: Fri 06 Jun 2025 23:00:52 +0000
Manifest next update: Sat 07 Jun 2025 23:00:52 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: Na8UVuMsbcVOs1aCamkSjIQaYfV52FHnuvxLf4nfBE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:c6:d4:c6:6c:92:b4:e7:e1:56:10:94:0b:8d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Jun 6 23:00:52 2025 GMT
Not After : Jun 7 23:00:52 2025 GMT
Subject: CN=2a4ae7a02473346d14c571856d8f7a60590aebb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:32:b7:86:9e:97:4e:22:a7:22:32:4d:2f:07:
7e:fa:f6:d4:58:70:25:c4:4c:17:bd:5b:73:c8:1d:
78:a0:f9:b9:7f:32:04:ae:6f:95:5c:6f:df:97:30:
7d:d9:a3:0a:a8:b3:67:0d:4d:ce:28:6a:42:9e:a7:
fe:51:29:56:00:4d:9b:53:a1:d4:92:ab:7f:b1:30:
b0:c5:16:61:a3:1e:14:4e:9e:d2:90:86:e5:00:6b:
f9:15:47:2b:c4:81:c9:4f:7e:cc:f0:47:76:d8:8d:
57:2f:71:2b:6c:ae:38:21:61:79:d5:0a:6b:b1:83:
50:33:cc:39:e5:46:38:89:eb:18:b3:e0:66:a6:20:
15:5f:24:06:52:21:3d:42:f8:c7:a3:80:ca:2b:99:
7c:63:5a:96:14:6e:99:2d:0f:d9:5d:c7:46:30:65:
07:29:d5:55:a7:e0:9d:f5:dd:0e:c2:0c:b9:9c:01:
f0:48:82:41:75:4d:9c:79:9d:17:c6:a4:9c:09:1e:
26:6d:a6:6f:15:9d:66:30:00:05:c1:52:1a:4f:59:
aa:5b:8b:ba:f1:7b:ff:71:f2:08:5d:a7:03:81:74:
e6:5e:af:d5:1c:f0:ea:8b:91:70:da:a5:41:1b:27:
79:61:ab:8b:b5:c8:7b:d5:20:ff:21:fd:21:16:24:
05:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4A:E7:A0:24:73:34:6D:14:C5:71:85:6D:8F:7A:60:59:0A:EB:B4
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:06:5e:4c:8b:cd:3a:7b:f5:6d:8d:bb:95:3c:b1:d1:d4:e0:
16:eb:8f:46:bb:a7:ee:bf:75:a9:67:18:61:d7:be:5e:10:ab:
f4:13:ba:43:28:98:75:34:ef:87:c5:51:18:9f:f7:a8:d4:28:
56:0a:e3:da:8e:5d:73:bc:41:2c:0d:f6:b7:d3:53:ae:e6:bc:
c5:65:2f:73:0e:25:32:ce:73:f8:e0:85:8f:66:e4:be:ed:bb:
39:ef:28:c3:be:63:51:ba:2e:8e:2b:92:b9:e5:69:b3:19:7c:
a0:41:fd:4a:d3:0d:37:68:25:6a:53:ad:86:2a:bc:a2:68:4d:
ec:00:96:51:61:56:66:49:61:83:6c:28:cf:08:4a:e1:fe:57:
42:d2:dc:51:1a:e5:96:2a:79:bc:b4:45:b1:7d:16:6c:d1:76:
d8:f7:67:27:17:81:a6:0b:08:d5:e1:a9:6f:50:6e:51:7a:f8:
c6:16:38:5b:eb:27:8d:80:c4:6e:11:b4:68:cf:04:88:5b:ef:
5b:6c:65:6b:d3:74:2f:04:4d:5f:34:01:91:ea:9c:ee:92:bf:
07:53:83:9e:ee:1e:f9:f1:0d:d7:41:59:14:46:84:ac:13:aa:
50:5b:9d:cb:c5:af:97:cd:c7:0f:99:74:3a:05:e8:08:79:58:
33:e1:b9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:20:58 2025 by rpki-client