Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: zaBBA7c/3/L/TGC6JVS8wkFwN4lSJVCIZ/iRu3ZkKDY=
Subject key identifier: D0:F9:E8:10:4B:3A:B5:4E:65:85:8C:45:20:99:98:60:68:09:3E:20
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 01974779656CD400688A2B4178601762DA9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 158C
Signing time: Fri 06 Jun 2025 23:00:27 +0000
Manifest this update: Fri 06 Jun 2025 23:00:27 +0000
Manifest next update: Sat 07 Jun 2025 23:00:27 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
3: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: /OC2Yh4J23EmSZ3FB24R59us8aXcBzUOC70jnyI/eG4=)
4: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:65:6c:d4:00:68:8a:2b:41:78:60:17:62:da:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Jun 6 23:00:27 2025 GMT
Not After : Jun 7 23:00:27 2025 GMT
Subject: CN=d0f9e8104b3ab54e65858c452099986068093e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ff:68:d3:8f:41:18:68:44:bc:ff:d9:ed:5f:
54:93:f0:a3:21:77:ee:24:4a:41:e0:73:a3:42:e6:
29:5f:c4:f0:d5:4c:63:0d:0e:e2:c7:38:a8:9e:d9:
49:88:63:02:51:c6:27:54:0f:1b:cb:bd:5c:29:7c:
ff:6d:09:a7:e8:e5:de:dc:e0:fc:72:2e:04:3e:55:
68:e5:0e:6e:74:b7:ae:c7:ef:2e:7b:6d:c7:65:fc:
82:23:93:c6:99:2e:f5:32:19:19:e7:18:3f:a5:1b:
99:a4:f0:03:0c:06:60:43:93:3b:e3:fd:b3:45:5d:
5a:87:cf:bd:a9:ed:bd:da:e0:95:bc:c5:84:a8:ad:
8a:76:fc:94:69:f1:3c:6f:e8:73:e6:c8:2d:a1:7a:
70:6c:6b:d5:52:93:f8:b1:59:b6:c4:9a:b0:4a:1c:
66:dd:4e:68:af:a3:3f:56:8f:c0:83:e2:a6:50:85:
7e:ab:70:b4:a5:6f:7a:97:2e:b0:74:79:35:c4:cc:
ad:84:81:b3:84:1f:9a:6c:af:e1:62:6e:3d:e4:af:
4a:63:3c:ca:c2:1b:cf:95:48:30:39:d6:62:0a:d2:
ce:7f:87:7d:ef:69:fe:2b:bd:78:06:2e:71:53:07:
c3:14:6b:cf:52:04:23:d7:ac:4a:d5:95:78:ed:a6:
16:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F9:E8:10:4B:3A:B5:4E:65:85:8C:45:20:99:98:60:68:09:3E:20
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:50:19:59:24:c6:3e:c3:0e:d3:a3:aa:a4:00:30:7d:00:d8:
4c:c9:82:3e:fa:e1:ae:4c:23:59:dd:ff:76:69:0b:8a:36:d4:
67:80:43:72:67:a5:d9:58:b3:eb:51:63:56:1c:56:dd:9d:0a:
75:b3:6f:28:5a:a9:0f:e9:e3:d1:cc:f8:59:ee:14:2f:0c:4c:
7f:14:21:2c:5e:c1:35:f9:76:9c:a7:8a:e2:1f:ce:bb:c9:9e:
17:d2:ed:6f:d0:c5:de:d6:1c:8c:95:a8:b1:87:7b:80:57:38:
f3:78:78:70:67:c0:57:4f:82:12:8b:b2:16:05:86:c6:a9:91:
fe:37:36:4e:b8:06:d9:a5:78:67:61:66:46:18:4d:da:d2:c6:
36:90:f5:92:08:d4:a1:86:ac:e9:21:68:38:50:b3:6a:5d:6b:
8a:f6:e7:59:e6:f0:8b:85:e9:ec:05:17:68:8b:9e:02:52:bb:
98:69:18:38:aa:ec:31:82:ec:c6:8d:1b:9d:a6:26:15:2f:c7:
d1:28:42:33:e7:ae:26:77:9d:c7:c8:58:f0:5e:05:8f:71:6e:
c2:ac:f0:68:3a:eb:c1:4c:e2:c2:91:a0:a5:38:01:ce:4a:b9:
35:d0:a8:f7:27:e6:73:10:48:16:f5:8b:7f:d2:c9:b8:71:bc:
5b:38:b6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:41:44 2025 by rpki-client