Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json)
Hash identifier: 2U6zi2/4C301v7NVFtgmLZHTRjOXASpeZAx40dQjnZo=
Subject key identifier: 63:1D:84:77:28:FA:20:91:A2:DF:7F:F3:5A:66:33:CB:77:75:82:5D
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 01974742869320F697C1E001EC50E420F048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
Manifest number: 1221
Signing time: Fri 06 Jun 2025 22:00:31 +0000
Manifest this update: Fri 06 Jun 2025 22:00:31 +0000
Manifest next update: Sat 07 Jun 2025 22:00:31 +0000
Files and hashes: 1: OvE7gVL8MCEWJHKpQXsF4bPe3UM.roa (hash: l4/jaJLOp+Avt+TjQWwkFvtdykblfc3pi7YpMoKQxCI=)
2: gRQ4yCuvseaLE57M9fowKbjZKdc.roa (hash: 2erIoIyPnSV3Zcfsjq1qAurwTSkvBBBTKvIM2MmgiUw=)
3: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: uE8Cet1VkrDPEtCt23BmhXObf8eDlrEUCXDAKL874VA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:86:93:20:f6:97:c1:e0:01:ec:50:e4:20:f0:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Jun 6 22:00:31 2025 GMT
Not After : Jun 7 22:00:31 2025 GMT
Subject: CN=631d847728fa2091a2df7ff35a6633cb7775825d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:80:e7:02:78:14:3d:7e:d9:50:a7:83:6a:
ba:e7:c1:68:7b:9c:16:8e:3e:fc:a5:a9:c9:a6:db:
85:63:72:b0:cb:a7:c7:88:72:38:e0:9c:5b:86:1f:
6a:fc:10:08:db:d8:b5:b7:42:99:15:a5:b0:72:00:
4d:81:91:ae:50:8e:e0:83:96:1b:37:ba:ed:e8:31:
6b:86:85:22:f5:b0:fe:41:5e:15:39:4b:94:cc:73:
6c:70:e8:19:cb:c5:01:2f:14:90:ce:c7:6f:da:61:
e9:b7:a1:c3:e3:30:09:1d:e7:0f:03:5d:cb:57:8f:
b4:b8:4b:55:a5:cb:fd:a1:93:0c:7e:80:6b:70:d0:
3d:63:fe:bb:4a:be:43:0f:c4:3d:1e:49:f1:2c:0f:
87:72:3c:d2:d0:e4:60:c3:2c:31:cc:6b:9c:90:50:
a9:c1:bc:f9:3f:5b:73:3e:85:56:b8:a0:c5:83:04:
51:1e:69:41:cb:bd:2e:16:f1:90:d2:1b:07:0f:34:
d9:7e:28:2e:a6:4f:34:c4:a9:9d:16:b8:d3:f7:ac:
1c:a2:bf:b4:c2:8d:f8:f2:ca:c6:74:b3:d0:7c:f2:
94:26:f1:d6:43:ff:4f:34:97:48:3f:13:54:73:a0:
32:50:f8:97:a4:76:db:c2:47:b4:c9:9f:27:fe:33:
08:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1D:84:77:28:FA:20:91:A2:DF:7F:F3:5A:66:33:CB:77:75:82:5D
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:2d:d9:a8:bf:cd:9c:98:5a:18:7a:e0:df:1a:2b:5e:0b:66:
79:9e:e9:f8:53:aa:4d:7c:14:22:03:3e:a3:44:94:ce:8a:c7:
90:0b:19:3c:35:c2:b6:2a:7a:46:b4:db:be:a3:19:19:b7:50:
53:41:8d:22:e8:72:15:1b:4f:33:d6:52:02:9f:1a:19:df:00:
21:8e:a6:d0:37:f1:20:73:c8:1a:a3:ac:c0:cd:fd:f7:bc:ab:
d2:e2:0c:4b:3b:4f:8b:61:d0:26:0b:0d:34:00:4c:aa:a5:e8:
88:a6:bb:55:7c:3a:de:24:ea:6b:a2:e1:e3:ba:a2:a2:88:d5:
4b:c8:5f:5b:f4:01:da:8f:bd:7f:0e:81:17:0f:7f:10:db:bd:
bc:73:a6:a5:7e:07:5e:b3:da:3b:11:5c:0c:df:12:c7:3e:1b:
b2:40:73:71:a8:58:ec:67:77:cf:64:f6:c0:d6:a4:08:06:42:
9d:fd:82:08:9d:e1:18:26:41:b8:51:7f:42:74:48:fd:1f:3a:
59:6a:df:bd:e5:8d:9c:fd:b9:12:75:26:68:e4:8d:4c:92:d9:
6b:81:43:6c:f7:cf:07:ab:31:f7:a2:27:70:44:06:24:f5:dd:
a7:52:5e:06:1c:63:2d:33:5c:17:58:87:6a:0f:4c:90:dc:d3:
cc:3f:05:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:11:42 2025 by rpki-client