Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json)
Hash identifier: u0s0XkI5DQrBqsu93+6YI4/yXgOv/SM+mguxSimm2Hw=
Subject key identifier: BF:9B:42:65:99:67:13:70:BF:84:F6:A3:65:06:0E:52:18:0A:5A:E1
Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62
Certificate serial: 0197462FACD14AEC7204E85FF5A2BBCBC7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
Manifest number: 150A
Signing time: Fri 06 Jun 2025 17:00:18 +0000
Manifest this update: Fri 06 Jun 2025 17:00:18 +0000
Manifest next update: Sat 07 Jun 2025 17:00:18 +0000
Files and hashes: 1: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: NmOH9YoEcnKi4qwyf+b8aT9XcjirtXSwFqA78nEoGvM=)
2: w-uN_1VCR8_SOj5bY-QHNqktijQ.roa (hash: 0MkMfXtYvuQQQ2rI12rE9KqS+DI9qKcacxegwXpKbvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:ac:d1:4a:ec:72:04:e8:5f:f5:a2:bb:cb:c7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62
Validity
Not Before: Jun 6 17:00:18 2025 GMT
Not After : Jun 7 17:00:18 2025 GMT
Subject: CN=bf9b426599671370bf84f6a365060e52180a5ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c2:75:4c:ba:88:9b:a4:20:2b:07:6d:e3:8f:
a2:14:ee:52:65:a6:b4:96:a3:6d:3c:4a:b8:ac:da:
06:ca:04:e2:9a:14:df:95:83:5b:57:ec:f0:52:0e:
36:71:7d:13:7a:b5:3d:b4:fe:31:25:ac:a1:5c:a5:
25:13:63:73:b6:43:69:f6:2f:05:89:b0:d0:04:2b:
07:db:ce:2e:81:9b:ec:42:4f:04:94:26:79:b1:8b:
f5:61:4c:4f:fb:d9:0f:b2:70:68:59:23:0c:35:45:
0b:61:a1:69:63:a2:a3:76:87:4f:98:03:23:02:bb:
41:17:46:31:79:72:ba:1b:ba:e1:93:db:09:d9:27:
6b:a9:c3:16:ed:df:1f:17:4b:ee:35:1b:15:c8:98:
56:dd:5d:8c:76:b5:1c:0f:ff:d8:e8:9e:6f:1b:78:
d3:2c:9f:72:a3:93:8d:b5:e3:b2:22:aa:b9:33:cf:
17:6d:81:62:20:09:5f:46:f2:5a:00:c4:46:a3:36:
60:e6:47:94:86:ff:b1:a8:a1:f9:82:bc:f3:df:c9:
46:04:5c:e6:9b:ed:48:de:05:b6:34:46:dc:78:00:
0f:0b:8f:38:77:bf:e6:0d:aa:f4:ac:38:4b:b3:7a:
ae:29:70:fa:6a:44:39:8c:e9:98:1d:d2:83:85:4c:
c0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9B:42:65:99:67:13:70:BF:84:F6:A3:65:06:0E:52:18:0A:5A:E1
X509v3 Authority Key Identifier:
keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:03:f1:26:9d:2d:d7:87:51:b6:92:9f:b2:7f:63:77:55:d5:
35:30:fd:93:f4:96:36:f3:46:65:b0:1c:4e:78:c8:c0:e9:ae:
72:0a:39:1d:a9:3b:1e:e7:5a:12:df:4b:ba:16:e7:3f:b6:b3:
f4:d6:79:d8:5a:64:2d:c1:1e:95:88:01:de:07:f8:b1:28:55:
bf:a6:8e:24:68:81:f4:49:1b:44:33:44:2c:1d:19:89:74:a5:
aa:bf:62:89:2e:bc:96:34:59:52:da:14:3e:8e:13:62:7f:4a:
de:0f:59:c6:87:29:25:06:03:11:af:2a:7f:75:91:b8:4c:b4:
b2:4f:cf:5e:76:3c:71:d8:2c:cc:1f:3d:35:8f:34:ff:d8:e3:
fb:00:cb:98:03:32:1c:88:fe:2f:c0:c9:3c:1f:73:6a:07:88:
7b:f6:bb:50:68:de:07:9e:30:52:14:08:82:f4:96:69:de:c8:
89:c6:b1:dd:9c:91:f6:d1:4b:65:a2:30:49:54:03:69:db:87:
fd:b4:44:71:7c:f5:b2:e4:e4:69:e5:f5:0c:a4:a7:0d:be:37:
47:20:8a:31:32:9c:1f:34:2c:63:4f:e0:43:24:c0:4f:4b:c4:
46:9d:73:a9:a2:2a:ad:95:2e:72:67:f3:00:a4:81:f6:2d:50:
b8:db:1e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:29 2025 by rpki-client