
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: kJNhbBfB2Z4EMdTwsVxp2BWP/VDeQhAHBfGNut/xS0g=
Subject key identifier: 0F:C2:37:52:40:C6:03:A5:E8:EA:DB:D5:09:17:86:A2:B0:F2:36:F8
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 01975F81B69450C4216ABBC7AC5EF349C968
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 04D6
Signing time: Wed 11 Jun 2025 15:00:25 +0000
Manifest this update: Wed 11 Jun 2025 15:00:25 +0000
Manifest next update: Thu 12 Jun 2025 15:00:25 +0000
Files and hashes: 1: 1-i_f4gNCAnPwT26M-00faBCZ1ec.roa (hash: rf9DtMiWGOZOoz1U+iRouParfUgOp6ltk1lTfbvhGLM=)
2: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: txwS0ODzfbEo8ZSF8S5GACBNOMlDx3zzAIeElVuc7GQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:81:b6:94:50:c4:21:6a:bb:c7:ac:5e:f3:49:c9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Jun 11 15:00:25 2025 GMT
Not After : Jun 12 15:00:25 2025 GMT
Subject: CN=0fc2375240c603a5e8eadbd5091786a2b0f236f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:41:c9:f4:6e:68:1d:18:2d:e8:fa:54:66:58:
72:68:dc:03:78:a9:8f:95:93:2d:7b:4c:1e:0c:34:
bd:84:ff:04:62:70:7d:7b:20:50:5c:08:b2:30:8b:
7f:7b:d7:b3:ab:fe:da:b1:e9:2b:52:77:eb:85:91:
2b:4a:12:f9:eb:91:76:1e:c7:ed:c3:75:dd:54:a2:
77:e6:ee:2e:a6:74:2e:0a:98:28:bc:2b:dd:aa:23:
67:5d:eb:06:6c:74:e2:88:bf:8e:b0:a5:cd:f5:45:
4d:33:d3:e7:70:f0:55:df:53:07:4b:a6:21:f5:15:
76:85:cd:c2:fd:06:fd:b6:63:29:82:7e:8e:ee:3a:
b0:b7:cd:84:99:a3:2d:bc:dc:1c:0b:6f:d7:a0:d2:
f5:71:26:a3:c0:77:33:f3:92:98:c6:9d:ca:01:22:
1f:22:25:bf:bf:e4:7e:6e:3b:1b:e5:89:9a:27:24:
4b:4c:9b:2a:76:1f:a6:47:6c:31:f8:47:40:3a:1b:
bf:5f:5a:ce:61:37:91:94:a6:96:86:93:b8:64:1d:
cb:70:8f:46:30:fd:9e:b7:71:d8:f2:4f:44:30:44:
7d:b9:f9:01:a0:f1:49:15:da:50:f4:e1:64:20:05:
15:6b:08:30:b9:9d:80:23:26:71:45:24:c6:67:6b:
5b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C2:37:52:40:C6:03:A5:E8:EA:DB:D5:09:17:86:A2:B0:F2:36:F8
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:de:39:88:50:a6:73:69:89:e6:88:56:b1:3c:f3:0f:42:1b:
6f:da:1d:d5:cb:a1:2b:6f:f2:ba:81:e9:49:01:7e:d3:34:92:
27:f4:98:9b:e2:eb:86:d9:9d:50:cc:91:f4:57:f1:46:7b:ec:
3f:87:81:ff:77:40:53:aa:1f:9a:da:01:f1:12:46:5c:b5:48:
77:2f:c4:6c:04:2c:0e:fd:15:0b:c2:12:a9:db:c6:d4:38:c2:
61:ac:ad:98:32:1f:e7:39:c2:8c:c8:76:eb:c7:7f:84:d3:c8:
41:37:e2:bb:ae:4a:8c:17:f5:9e:1c:41:df:bd:7d:37:eb:2b:
bb:e1:a9:ab:31:31:3d:50:b4:ca:e5:18:78:24:f6:d6:e9:f5:
12:e4:49:96:04:18:23:9a:a1:9f:59:37:54:5f:43:b7:62:1d:
4b:57:23:43:ef:0e:cc:ef:be:3d:f2:b0:e6:eb:31:86:1b:e0:
e3:15:70:4e:f5:fd:f4:c0:87:66:5f:2d:c3:91:a3:07:51:1d:
0e:9e:b0:1d:b7:6f:64:57:dd:77:db:a6:92:6d:99:47:73:a3:
6f:ae:5c:6b:0b:37:aa:23:7d:29:12:a5:38:ef:55:b6:4b:6c:
d4:bd:c7:b7:2c:0c:d1:29:2d:13:f3:95:0e:14:54:3e:9a:7c:
6f:1f:5f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 23:08:37 2025 by rpki-client