Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: Lp/OEF8Sv0DvsmQ91gdiKBQMceEjVP68DRIdDw+CkrU=
Subject key identifier: 96:04:C6:5A:6C:92:CD:0E:19:53:16:C0:54:4E:F8:DA:2E:0B:59:66
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 01974967D536E61764CA6DCD583261A53C4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 14D5
Signing time: Sat 07 Jun 2025 08:00:30 +0000
Manifest this update: Sat 07 Jun 2025 08:00:30 +0000
Manifest next update: Sun 08 Jun 2025 08:00:30 +0000
Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: WyIOcUkjUdX9IWkmIPWkzRYRZaw3lRcLvLU5PBM4aq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:d5:36:e6:17:64:ca:6d:cd:58:32:61:a5:3c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Jun 7 08:00:30 2025 GMT
Not After : Jun 8 08:00:30 2025 GMT
Subject: CN=9604c65a6c92cd0e195316c0544ef8da2e0b5966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a2:94:0d:a4:fd:67:2b:48:5a:4a:d4:77:e4:
7d:2c:ae:57:cb:d6:16:cc:06:b3:8c:4c:fe:29:42:
de:80:60:34:2b:18:ae:fd:ba:b8:50:ca:21:19:c5:
a4:b3:b5:24:b1:68:29:f0:a3:47:93:81:fa:77:cf:
95:ea:c8:53:46:17:47:15:5c:af:11:cf:3a:d9:59:
75:25:17:de:14:77:81:d1:fe:90:a4:36:eb:16:40:
3c:66:c3:a8:e3:df:a2:d0:e6:64:2c:33:d2:0c:af:
c2:e0:02:34:ae:cc:70:40:0b:e1:92:1e:33:27:8a:
6c:71:ad:62:c5:9c:2e:59:7a:de:8d:08:22:d3:a1:
19:ee:78:ec:b1:27:4e:ca:de:eb:12:38:7b:07:9a:
3d:d8:ca:d9:b3:30:c5:11:1c:d5:c9:39:7f:62:3e:
d3:dd:62:8e:f2:5e:d8:de:52:6f:86:f1:03:80:25:
44:91:11:39:6c:b4:0f:80:b3:90:b0:1e:94:0e:bf:
eb:4d:e2:37:f4:a5:8d:d5:50:8d:a8:ee:a2:88:0c:
96:e2:72:06:16:98:fb:ba:95:6d:f3:fa:1c:2a:6f:
f3:2b:28:e0:5e:e9:2e:51:58:21:d7:6f:47:7b:14:
ce:a5:f0:65:e1:64:06:41:0a:1b:04:d6:4d:26:94:
4c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:04:C6:5A:6C:92:CD:0E:19:53:16:C0:54:4E:F8:DA:2E:0B:59:66
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:40:e5:c2:42:94:f3:62:42:75:dc:6f:33:77:73:4e:a3:d9:
4a:34:23:4d:b8:aa:fe:78:98:8d:98:28:7f:08:a0:75:7d:a7:
5d:67:28:86:e6:98:e7:ae:db:f8:8e:8b:b1:7d:56:fd:3b:4a:
a1:d0:20:03:35:5c:d2:8d:01:f6:cc:c5:b6:6d:2f:ee:74:7b:
7c:b8:58:86:f2:c5:9e:bd:91:76:af:83:7d:d7:60:6d:f1:73:
66:eb:b0:ea:4e:c5:23:e3:cf:57:8d:5a:90:5c:90:2a:dc:09:
57:00:1c:08:18:47:e9:fb:65:eb:1d:9e:94:4c:39:1e:01:b8:
35:1f:93:be:b3:d0:a0:44:6e:d3:e7:fd:cd:ef:d7:64:39:e8:
ac:79:fc:f5:3a:a7:12:92:c0:92:07:2e:b8:04:16:1d:72:ef:
0c:e2:24:eb:3a:9a:fb:09:f6:71:41:20:a8:00:5d:f5:11:57:
21:79:a2:e0:31:58:e4:17:ff:2c:5a:89:e6:00:19:bb:33:97:
f5:f6:f6:37:13:4b:ce:62:be:d4:5e:28:41:71:50:02:d0:d2:
ed:0d:57:4f:46:ff:bb:4d:12:72:59:e9:2e:9b:27:7c:1e:2d:
c8:0d:3c:4c:f8:8f:eb:08:24:af:46:e3:32:4a:45:e7:0d:5b:
b8:77:0e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:42:09 2025 by rpki-client