Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: mgD+5XsDHNSJE+5JnNoyOOlT03QMjxEzyp4sByOM170=
Subject key identifier: 7C:D0:A8:8A:A9:AB:68:88:21:A7:73:A5:F3:37:52:8A:C7:61:1B:2A
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0197500EC5D9F5A06440E8F87082745978E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 0FBC
Signing time: Sun 08 Jun 2025 15:00:34 +0000
Manifest this update: Sun 08 Jun 2025 15:00:34 +0000
Manifest next update: Mon 09 Jun 2025 15:00:34 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: /lSSwmNq3xt6NtdO/XY0/V5/rO90ufEGIqKAb8vbHU0=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:c5:d9:f5:a0:64:40:e8:f8:70:82:74:59:78:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Jun 8 15:00:34 2025 GMT
Not After : Jun 9 15:00:34 2025 GMT
Subject: CN=7cd0a88aa9ab688821a773a5f337528ac7611b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d8:78:87:08:fa:ed:18:63:3f:b1:05:ef:6c:
87:cf:9f:69:63:ac:28:2d:1e:0c:4e:53:ea:52:0f:
13:32:08:d4:fc:40:d5:97:2e:3c:3a:29:29:a2:0e:
d6:6e:6a:68:29:f1:9b:4d:0f:a5:d7:85:6f:77:ad:
44:ee:7e:ae:fe:64:c0:74:f2:7f:91:a6:57:68:4d:
cc:8e:d0:7e:38:28:d7:df:45:8f:86:bd:38:ec:a3:
ca:c8:28:62:a1:55:d7:fe:72:f0:fa:50:a3:48:3a:
1c:47:b0:d1:36:6d:99:f5:40:49:c5:34:26:d0:1a:
07:a1:f3:59:18:76:80:2c:54:c8:42:20:9f:2a:58:
03:69:40:d6:eb:06:11:68:8b:bc:b3:8e:8a:c1:7b:
8d:19:c7:3d:b8:3f:37:21:2c:2a:97:cd:65:36:17:
02:48:ff:97:e1:0f:d7:5c:b3:b2:28:c2:79:db:7f:
6c:75:79:85:da:95:23:a3:a6:69:a5:74:08:58:85:
19:e5:48:06:94:da:74:06:66:d6:ce:a6:dd:e1:63:
cb:b9:ff:1b:29:19:2a:d4:b8:ff:d8:78:2e:b2:87:
97:95:8f:09:ca:74:25:89:5b:6b:2f:7c:06:fc:55:
0f:4f:f5:55:66:a4:d0:5e:4d:6b:fd:58:65:71:c2:
e9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D0:A8:8A:A9:AB:68:88:21:A7:73:A5:F3:37:52:8A:C7:61:1B:2A
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:6e:6b:1c:a9:69:36:77:8d:cd:02:ca:65:38:b4:ea:36:f4:
90:13:ef:39:08:36:2f:73:5c:66:88:73:95:43:6c:bc:15:af:
28:80:a8:38:5c:c7:a5:bc:9c:14:02:41:f9:c0:58:13:25:3e:
94:1f:dd:2d:38:32:15:70:4d:6c:8b:a1:65:67:89:1a:81:68:
eb:88:1a:66:2e:24:db:c6:7b:af:d8:f5:d8:38:96:0a:1f:69:
52:ac:f2:6a:57:19:be:49:54:22:09:f6:b4:04:b9:74:fb:1e:
63:3c:e5:20:95:fa:a9:23:12:30:17:1f:de:08:f6:19:88:58:
10:95:11:a6:a5:d6:81:97:e1:5b:d7:88:e1:7e:03:43:d9:29:
6d:f4:58:75:bf:66:11:65:ec:93:ea:30:8c:35:5f:be:00:23:
53:7a:38:91:ec:ed:7b:05:da:03:86:fa:2f:38:ed:93:f7:78:
54:af:96:93:b2:d4:29:62:6d:d8:ee:8f:a2:4b:e5:46:ce:44:
91:46:1f:04:04:78:35:50:db:14:f8:71:fb:a6:21:9b:8b:af:
1e:b4:35:70:fe:7b:37:da:56:ca:f3:ea:36:3f:8b:78:53:48:
5f:fe:7f:8e:16:68:55:eb:35:dd:db:ea:b6:a1:ca:a0:e2:f4:
04:0b:e0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:47:29 2025 by rpki-client