
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: fvoSQrZqbgZI7MfSDw9agWpuQkioXHFa30isty9vIbg=
Subject key identifier: 42:DB:3E:29:6A:02:26:AE:C1:2D:7A:D0:71:5D:12:CF:16:F1:C6:CB
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 01976D06712C253C161C4C3FA8096765DEDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 04DD
Signing time: Sat 14 Jun 2025 06:00:27 +0000
Manifest this update: Sat 14 Jun 2025 06:00:27 +0000
Manifest next update: Sun 15 Jun 2025 06:00:27 +0000
Files and hashes: 1: 1-i_f4gNCAnPwT26M-00faBCZ1ec.roa (hash: rf9DtMiWGOZOoz1U+iRouParfUgOp6ltk1lTfbvhGLM=)
2: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: 9njRUc3BBvRBvROYt+VrX4JHJaUI2N4IfV7cDuiEcZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:71:2c:25:3c:16:1c:4c:3f:a8:09:67:65:de:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Jun 14 06:00:27 2025 GMT
Not After : Jun 15 06:00:27 2025 GMT
Subject: CN=42db3e296a0226aec12d7ad0715d12cf16f1c6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9b:bf:6c:4d:32:98:84:41:ba:63:49:3c:59:
e5:52:54:6e:8b:cd:a9:9c:d3:2a:38:58:61:b5:78:
51:5a:81:cc:22:dd:6a:bc:97:b7:c2:1a:e9:c7:4b:
03:3f:b5:a6:2e:62:c2:4c:71:3b:3c:04:73:c0:20:
dc:1e:94:47:a6:14:15:af:92:11:9b:a7:17:40:42:
61:11:f4:05:6f:bb:69:e7:21:4a:19:d9:41:24:35:
bd:cf:a6:0f:34:b5:73:05:f5:6e:d1:2c:db:5e:d0:
7c:71:f5:c8:e4:00:49:86:ba:65:2c:fe:a4:c7:7b:
5f:4b:46:b9:3d:3f:d7:c4:5b:83:c0:20:fb:3b:ff:
36:5d:ee:35:70:1a:16:f6:eb:8a:20:55:42:63:a4:
0f:cf:95:98:f2:98:de:6a:88:82:6e:a5:29:06:49:
69:f7:0f:1c:df:54:dc:ae:d5:aa:50:f2:4b:39:9b:
93:c7:f4:84:f4:db:a2:40:9f:f0:b1:1c:f1:cc:28:
f9:31:9c:86:52:ba:da:ad:4b:81:b9:9d:a9:5b:e7:
4a:02:89:3d:38:ac:b5:22:1d:7d:d9:27:81:1a:fd:
0a:ce:d5:b3:4f:73:10:ad:61:74:59:26:9f:cb:15:
48:6c:47:b0:24:c1:0a:2a:13:92:d7:18:ca:ad:10:
2a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DB:3E:29:6A:02:26:AE:C1:2D:7A:D0:71:5D:12:CF:16:F1:C6:CB
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ef:57:90:f0:db:e3:b0:5a:dc:6c:42:7b:3d:30:18:92:b0:
1c:f5:d9:d5:24:5b:59:83:6a:1d:f9:f6:7f:da:ad:c6:5b:4d:
06:46:c1:bc:ba:45:4f:01:42:54:43:69:c8:ed:0c:91:13:71:
05:1f:8e:e4:c9:3f:96:77:14:30:c4:a6:5e:db:b4:fb:b5:19:
e9:57:b1:42:fe:e2:f9:2a:db:16:2b:b2:e5:19:29:ed:fe:5d:
f2:3e:95:62:f8:9c:b2:81:30:a9:42:5e:aa:b0:51:d4:65:79:
8b:16:25:5a:26:d2:1c:86:29:fd:e3:3c:f8:3e:c9:bf:41:77:
65:a4:f1:83:71:a4:fd:7d:5e:4e:7d:16:14:aa:10:e0:f5:a7:
af:21:08:a0:c9:70:f0:ea:b5:36:bf:c6:25:c9:64:6d:03:d8:
57:c0:2f:f7:c2:11:46:b1:04:9a:7f:45:fc:91:26:de:e2:5c:
47:89:d8:5a:e3:88:56:35:68:e0:da:cf:ce:bc:97:e3:23:e9:
1a:4e:07:75:2f:96:57:2a:19:17:9b:f3:fb:19:5e:80:a3:5f:
49:65:bf:d1:7f:53:0e:59:e9:d3:19:11:b4:68:9d:00:38:02:
c5:d7:34:70:0b:8d:b2:32:ca:04:49:c2:9c:e6:c4:b2:de:5c:
09:a4:63:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:19:44 2025 by rpki-client