Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
File: hcNSXWi2ERZWThbh3U5WywNcnIU.mft (raw, json)
Hash identifier: DnSc93yot87oPBFYJhEEKiZMgG6uU9epjMM+Hd3PJ7k=
Subject key identifier: 7A:FB:9C:E2:68:3D:50:45:A2:E5:30:1F:0E:C7:F2:A4:3A:71:6E:76
Authority key identifier: 85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
Certificate issuer: /CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Certificate serial: 0197462FD3A9FE58572EDA8EAD737EB18F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
Manifest number: 1581
Signing time: Fri 06 Jun 2025 17:00:28 +0000
Manifest this update: Fri 06 Jun 2025 17:00:28 +0000
Manifest next update: Sat 07 Jun 2025 17:00:28 +0000
Files and hashes: 1: hEPXQgU_4RM48GU6YHvdaeu2Uew.roa (hash: Y8wvnBW02yBGPfnw7ReZF8CB9IAoGOhz+Y/sJITIMzc=)
2: hcNSXWi2ERZWThbh3U5WywNcnIU.crl (hash: bqI5PzX+pNLyvPzsrLckW1LJ/YLZrP4waK9HfWWh3MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:d3:a9:fe:58:57:2e:da:8e:ad:73:7e:b1:8f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Validity
Not Before: Jun 6 17:00:28 2025 GMT
Not After : Jun 7 17:00:28 2025 GMT
Subject: CN=7afb9ce2683d5045a2e5301f0ec7f2a43a716e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:19:c3:c3:59:8e:c4:be:e0:91:f2:b4:e7:3d:
f7:69:64:74:f5:c5:8f:52:cb:62:83:59:40:47:ac:
d2:76:fe:f1:f4:a1:83:c6:cf:a8:aa:ee:3d:7f:24:
c7:0c:77:49:24:8a:30:06:ef:85:e9:26:d5:9d:bb:
87:d2:a7:d0:45:49:06:07:75:3a:ca:a2:60:3b:75:
75:05:24:a7:fa:fd:13:92:2d:d1:af:8b:10:bd:30:
8d:ab:c0:50:63:ba:ae:06:b4:a3:c2:c9:1c:ad:ee:
5c:06:d4:4f:b0:49:58:0b:d0:ba:03:ef:b8:53:a1:
cd:b3:13:cb:ba:3f:d6:f4:40:2e:79:98:13:74:10:
cf:90:07:0a:d5:cf:44:18:97:bd:37:c5:ee:fa:2d:
6b:d1:77:77:86:f9:19:fc:5c:42:63:03:b9:fb:af:
3b:96:25:f8:65:b0:f5:59:64:f5:51:f1:c4:78:1c:
21:f8:01:e3:13:5b:8a:c4:ca:4e:2e:37:b4:d7:e1:
b2:60:70:11:90:df:58:3d:49:20:d3:a0:ca:d0:94:
11:4b:87:cf:ee:87:05:77:ce:a1:a2:bb:28:d7:7e:
3e:a7:b2:ec:81:17:f4:d7:99:83:1e:83:88:80:86:
46:cd:0f:ed:73:ea:61:33:d1:6a:ba:fe:3b:0e:94:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FB:9C:E2:68:3D:50:45:A2:E5:30:1F:0E:C7:F2:A4:3A:71:6E:76
X509v3 Authority Key Identifier:
keyid:85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:73:81:37:cb:a7:64:7d:67:89:34:04:46:11:cd:34:bb:57:
e0:74:d6:93:58:a3:11:f6:f0:fb:f8:77:14:36:93:07:dd:91:
31:71:cf:6b:b6:ce:07:16:6c:0d:fa:4c:7b:7d:b4:80:15:b8:
91:5a:a6:84:6c:99:9d:73:ec:63:ea:18:6e:5c:32:eb:68:c0:
fc:47:8e:a9:0a:14:42:1c:0e:58:4c:85:53:53:8b:80:50:34:
4b:ae:58:ca:e1:a5:f8:07:8a:65:5f:62:94:c5:c5:14:b1:ab:
37:58:e4:4c:7b:d2:0c:51:df:6c:87:84:19:38:7b:86:1a:67:
45:0e:11:c1:6e:ab:71:af:85:f7:24:52:5c:6d:ef:19:c3:9f:
63:4a:39:d3:61:01:56:67:98:c3:6f:cd:e5:8e:9e:5d:59:87:
d6:93:dc:f0:50:45:76:61:8d:19:38:fb:b6:e2:a6:63:2a:30:
d7:08:06:6e:9a:87:e4:47:d6:42:98:b2:34:77:65:f4:f4:83:
4f:ff:9b:9b:a7:f3:a2:d1:6f:22:80:99:dc:6c:1f:c7:37:bb:
74:21:df:66:70:e2:a5:39:0b:ca:3f:c8:76:68:3a:4b:dc:a8:
42:31:93:40:24:a8:bd:7c:23:dc:db:6b:dc:d0:f2:4b:81:c7:
a1:e6:82:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:14:56 2025 by rpki-client