Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: ugjtfjnn+qMDHRxaMfPOUofxJ06iYatUsUWZ85Q0sm8=
Subject key identifier: 06:7B:AE:2E:F8:09:6D:82:7C:8E:A4:67:D2:F2:D3:45:64:1A:83:5D
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 01974FD7CA31EA8047A1C7AB61EE80227801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 0793
Signing time: Sun 08 Jun 2025 14:00:31 +0000
Manifest this update: Sun 08 Jun 2025 14:00:31 +0000
Manifest next update: Mon 09 Jun 2025 14:00:31 +0000
Files and hashes: 1: GrVfgYYa0s5gLsRQp5P5vAQeHlE.roa (hash: Twu1XyErZ1bzBOtE8/HK3XbggJvMpOYaRXT376BODWE=)
2: XUIGCJfhGsoP5FdVAQmT9lUNYuc.roa (hash: hjmwDLHRKf4c787nov0R6bRVLxtqmM1uwueYf+NK6fU=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: rXX+78DRItE9/Tyzv98vM0A92Z2g9A8L//lI9KZbqVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:ca:31:ea:80:47:a1:c7:ab:61:ee:80:22:78:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Jun 8 14:00:31 2025 GMT
Not After : Jun 9 14:00:31 2025 GMT
Subject: CN=067bae2ef8096d827c8ea467d2f2d345641a835d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:f1:7d:b3:1b:46:66:99:25:b7:a6:4c:66:
b8:8e:5f:dd:f8:2c:c0:a7:98:11:15:16:5b:b4:b6:
bc:3c:7c:5d:b9:cf:25:91:55:84:c8:3e:b0:89:b7:
25:6c:f7:8d:58:33:5b:7a:42:dc:d1:a9:7b:23:d2:
cb:00:85:40:61:29:aa:3f:78:65:92:bc:8a:e5:5e:
98:d4:a5:b8:15:6e:c8:50:a5:d0:d4:43:f7:90:a9:
a1:0e:16:bc:7d:7e:de:72:5c:d8:c8:12:ce:d9:06:
50:f8:aa:48:8e:a8:69:06:3a:40:37:ff:20:df:fb:
51:ae:2d:da:9f:01:fb:47:a4:8f:98:bf:07:4b:86:
be:fa:51:11:38:31:55:df:aa:b6:10:c1:52:e7:b0:
e9:60:e6:6a:d7:4c:95:34:2d:e2:45:7a:a1:64:6f:
2d:76:4f:b8:0b:a1:f8:4a:8e:3d:62:52:55:7e:7f:
21:5a:bd:5f:1b:c9:ee:14:7c:3d:76:32:e8:f7:94:
ae:1d:c2:7a:fc:e6:73:60:36:e5:89:a4:39:da:1f:
db:43:1f:05:49:27:1e:b6:a8:51:e8:69:f8:67:ba:
36:d6:be:87:b6:f5:5e:cc:2a:45:c5:f2:d6:a1:0a:
45:ea:ce:c0:8f:87:74:9b:81:b2:a6:fa:33:e6:42:
a9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7B:AE:2E:F8:09:6D:82:7C:8E:A4:67:D2:F2:D3:45:64:1A:83:5D
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:06:72:b2:ea:01:8a:9a:d6:06:3e:1b:85:00:53:42:70:4e:
ba:71:70:6b:e5:df:19:d9:e8:8a:ac:c8:cb:22:42:c3:9b:71:
53:aa:47:50:49:c8:ae:a5:d6:ed:2d:e4:f1:3f:bd:c7:41:f2:
66:56:0f:8f:04:2f:41:99:68:5e:b9:49:8b:c1:93:6a:f4:8a:
5b:7e:fb:4b:81:ac:af:09:b1:80:af:bb:10:d3:ab:78:00:0a:
e7:39:ad:e9:b8:c6:43:0e:47:c4:88:e0:d4:65:86:b9:04:97:
1a:e2:c4:92:f7:ad:26:0b:1b:c8:95:e3:7c:ca:b8:be:b4:dc:
67:1d:63:0a:85:0d:e6:8d:d4:2c:63:23:00:a9:7e:d4:b0:7f:
bd:47:b7:04:f7:e6:ee:ef:a6:61:f4:a6:0c:5c:80:52:c1:3e:
d8:33:6e:af:99:a7:90:d2:52:54:50:d9:c9:bc:46:89:1c:39:
5a:b8:eb:9d:e7:f7:3d:39:cb:d8:34:79:49:fb:03:ba:e6:31:
a3:b1:7c:35:48:8e:5f:39:9d:45:aa:0a:ac:f2:44:c7:ba:fd:
be:d1:f4:e8:f4:a4:ad:20:d7:1e:c0:97:72:bd:09:d3:80:a7:
5b:cc:90:db:ac:2b:b5:12:dc:1d:5d:4a:14:3b:21:10:a7:27:
83:90:86:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:35:27 2025 by rpki-client