Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: 3j0whXgjyxJihhu3eqza/uz9Si8MMhqOTBbXCDp8tDU=
Subject key identifier: 79:AF:77:63:C6:5D:C7:24:F9:25:97:80:03:12:B1:C2:58:0F:29:FA
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 0197C94B7EAB82791E06D2E503EA459FBAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 0D4F
Signing time: Wed 02 Jul 2025 04:00:57 +0000
Manifest this update: Wed 02 Jul 2025 04:00:57 +0000
Manifest next update: Thu 03 Jul 2025 04:00:57 +0000
Files and hashes: 1: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: 2ym8YwnC5HOmDkLY3ukjpunYYlrVzabxZdy7pg05zhg=)
2: tpGVDM97XGpA5ofHLGA9otQIFM8.roa (hash: aWl1cnx2HDb3renuM7Fi/tYunaPtkTPWaRgrB19Lp4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:4b:7e:ab:82:79:1e:06:d2:e5:03:ea:45:9f:ba:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Jul 2 04:00:57 2025 GMT
Not After : Jul 3 04:00:57 2025 GMT
Subject: CN=79af7763c65dc724f92597800312b1c2580f29fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d9:d1:71:47:18:76:77:77:1c:2f:e6:a5:6c:
07:cd:1d:8c:b3:65:47:56:84:46:5e:69:58:aa:4b:
d3:d9:82:f1:22:64:4f:3a:ab:d8:42:2d:c8:78:ae:
bb:14:db:ac:37:a2:11:ab:05:e9:86:76:31:4e:c5:
b9:e0:3a:d8:31:88:9e:68:59:3f:9b:66:e2:3d:94:
b6:c3:12:b0:07:53:0d:6c:fb:62:6f:f5:fc:47:32:
c8:96:5f:3d:fa:11:8a:61:12:08:c0:b9:66:cb:d6:
b1:25:0b:59:82:f3:8c:a6:4a:73:35:29:f4:31:10:
83:03:9b:dc:d6:66:c6:d9:33:6e:4a:03:56:84:9c:
8d:95:7b:98:0f:6b:38:81:12:71:0d:8a:fb:9b:af:
4f:77:57:83:c2:3f:00:d0:1f:30:43:49:84:57:f1:
ad:f6:70:53:2d:e7:37:cc:55:9d:3c:2a:3b:ff:df:
8c:0c:bf:23:45:0f:9a:b1:8d:4f:13:fc:98:88:ab:
eb:fa:30:c2:71:59:b4:e1:26:e6:ed:74:85:56:1d:
14:6f:82:d5:0f:91:8d:5a:aa:d8:0f:a6:c5:63:78:
bf:ef:69:ce:f9:f7:49:28:94:02:0a:fa:37:a7:74:
06:22:f3:a6:d6:30:cb:b2:38:83:7c:57:4b:cf:36:
34:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AF:77:63:C6:5D:C7:24:F9:25:97:80:03:12:B1:C2:58:0F:29:FA
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:0b:f1:81:55:09:b8:b5:1a:80:72:db:9c:c1:0a:d4:2a:b4:
8a:2a:6d:8f:b5:09:c0:ea:f9:92:e0:ac:e1:65:ce:f3:5d:da:
23:91:f8:a0:ee:fb:95:8b:d5:27:88:4b:82:f1:c2:d3:63:2f:
24:b5:67:a9:1a:01:0f:e5:e0:8c:3d:f2:8a:0e:48:0e:91:f3:
b5:30:c9:47:64:21:dc:d7:d2:b3:79:c7:da:51:36:6f:0c:80:
64:ad:46:5d:39:d4:ff:f6:85:42:bb:2c:e6:8f:8f:df:30:57:
a3:9a:bf:2f:64:21:d0:73:3a:df:54:ba:a7:df:dd:3a:91:49:
f3:6c:8c:3d:4c:0e:4a:f3:2e:ef:0c:d1:fa:74:7c:b1:a1:58:
60:1a:4b:07:e6:fe:b0:8a:24:14:d6:30:47:2a:c6:73:6f:32:
8b:c0:8a:77:63:bc:95:5d:b8:ce:3b:f4:f8:8d:25:39:2d:e8:
0b:37:97:64:05:7d:65:6d:13:69:06:4a:0e:c2:83:ba:96:37:
46:6a:c5:e1:67:1f:e0:ca:0b:26:e1:70:73:56:11:55:6e:d4:
ce:17:fd:29:93:92:06:ab:17:a7:39:81:46:31:84:08:ff:9d:
71:bd:92:e2:c0:20:48:39:4c:11:97:ae:69:51:d5:68:d2:a0:
7a:7c:eb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:03:58 2025 by rpki-client