Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
File: hbfVzNrwMwl0l0V2QgCnJydkcwo.mft (raw, json)
Hash identifier: N0A5wHv41LJdmRkFEJAqECQhxH9pFJwm4mXci0pyRAI=
Subject key identifier: 53:DB:4C:E9:EB:90:40:7B:F6:96:53:1F:F1:58:A3:88:E7:F5:7D:1C
Authority key identifier: 85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
Certificate issuer: /CN=85b7d5ccdaf03309749745764200a7272764730a
Certificate serial: 019748FA2B29409D2893938339D01C90FEFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:00:43 +0000
Manifest this update: Sat 07 Jun 2025 06:00:43 +0000
Manifest next update: Sun 08 Jun 2025 06:00:43 +0000
Files and hashes: 1: bo9Zt5WveGJLmto-uiWetgZCX7Q.roa (hash: zzs00ivzGHR02cC1o3Qz5YlQGqmECC+fSU4iyTugi54=)
2: hbfVzNrwMwl0l0V2QgCnJydkcwo.crl (hash: lI+IUjviG8yoLlw7KZnyTxofx47u9WVoVFOPg0Lvbng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:2b:29:40:9d:28:93:93:83:39:d0:1c:90:fe:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b7d5ccdaf03309749745764200a7272764730a
Validity
Not Before: Jun 7 06:00:43 2025 GMT
Not After : Jun 8 06:00:43 2025 GMT
Subject: CN=53db4ce9eb90407bf696531ff158a388e7f57d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:af:9b:8f:b9:e4:40:d1:70:cf:ab:c9:1b:7a:
06:ce:41:b0:ad:bf:66:57:07:57:92:a9:37:dc:31:
1b:43:3c:b3:16:46:6e:e9:c2:c4:94:d3:85:b6:52:
ce:51:00:36:19:ba:b2:79:c4:c6:fe:90:34:36:3c:
a3:fa:7f:b8:f9:2f:31:a1:91:88:6f:7d:51:5f:2e:
50:16:9e:75:ef:73:b2:f5:4b:d5:91:1b:53:6c:e2:
fb:49:ad:f1:f6:70:9a:50:3d:2c:9c:e0:d2:f2:30:
b0:bd:02:18:33:ce:ba:b5:fd:47:9d:e7:af:1d:63:
20:56:f9:8f:60:c1:9f:24:bc:c0:94:97:2d:5c:3a:
46:8f:00:86:5e:53:be:80:b3:98:e1:60:5a:3b:9c:
b9:b4:73:ce:a9:f9:41:76:6b:ab:84:19:5e:31:d3:
1d:12:6d:5a:df:be:fb:dc:d2:29:6f:54:26:88:82:
31:48:6c:60:bb:a4:8b:43:15:9f:de:59:a8:76:53:
3f:55:68:fd:d9:c5:a2:9a:a4:39:0c:32:1c:5b:b7:
b0:4b:42:21:79:93:16:f9:02:4a:4e:e9:38:23:07:
3a:f3:36:e0:5d:ae:4b:a2:cf:9a:b0:16:93:46:61:
18:19:d6:6b:6a:13:80:c0:9d:fd:26:fc:e7:83:58:
1c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DB:4C:E9:EB:90:40:7B:F6:96:53:1F:F1:58:A3:88:E7:F5:7D:1C
X509v3 Authority Key Identifier:
keyid:85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:4a:9c:5d:da:8d:f5:1e:85:ef:0a:37:92:42:d7:7e:f9:dd:
ca:1b:18:98:65:88:a7:3b:03:7a:06:74:7c:a4:cd:7a:83:b4:
e3:7d:6c:f9:3a:3a:63:cc:19:dd:13:9d:99:52:c2:a0:8a:5e:
63:26:ce:90:78:43:b8:30:5d:08:89:fa:44:4d:d5:f6:55:1e:
58:9c:94:09:91:18:42:54:37:82:79:c8:44:b2:4c:c1:b5:05:
07:06:a0:58:01:80:31:2e:a3:69:6c:c3:54:2d:3c:7c:36:92:
91:83:70:13:ae:78:c8:26:5a:22:f9:29:ee:4a:ed:70:a0:48:
c6:98:de:7d:5e:38:ae:11:06:be:ba:41:55:e0:23:6d:08:a4:
70:bb:09:63:d7:43:e9:50:c3:7f:64:0c:9b:c3:19:a2:26:e5:
ce:46:aa:19:d6:62:2c:83:fd:b5:8f:d7:03:91:c9:34:05:12:
84:28:0f:8b:9c:a5:4f:ba:3d:6e:9a:84:56:f6:74:2b:70:5e:
68:c8:5d:bc:ea:89:71:d2:a2:4b:7c:6a:f5:cd:8f:cf:ed:e9:
c9:cd:41:4a:d2:3e:fb:a5:0e:bc:94:9c:d0:ec:b3:4a:2e:a8:
42:a5:4d:07:8b:93:f7:2e:1b:4a:63:31:76:95:e7:39:c0:b2:
96:c8:54:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:45:03 2025 by rpki-client