Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
File: HqvXZaBQUv7FmmonPV70v8ekA1o.mft (raw, json)
Hash identifier: BbLFOYcUESogwhqfXpslUx1MSR+Fc1ivB6SM/f6lECk=
Subject key identifier: 98:58:BE:2C:3F:D7:56:FB:21:FA:F4:81:BB:51:56:3B:79:BD:2F:2D
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 019748FAB070CB374148F1CD2B7FC80B6B69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 06:01:18 +0000
Manifest this update: Sat 07 Jun 2025 06:01:18 +0000
Manifest next update: Sun 08 Jun 2025 06:01:18 +0000
Files and hashes: 1: HqvXZaBQUv7FmmonPV70v8ekA1o.crl (hash: 2ICLDmVAVrw9uQjLFrBUHwbzHq3JlxBV0ywq+gayOGo=)
2: MFHqmqIi0lc_Re9PoYpL1Pw-ATg.roa (hash: iQ8gQVoAElI9FMya7NrxkBP0Xq9GVsJ7ePhe9Fu3PJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:b0:70:cb:37:41:48:f1:cd:2b:7f:c8:0b:6b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Jun 7 06:01:18 2025 GMT
Not After : Jun 8 06:01:18 2025 GMT
Subject: CN=9858be2c3fd756fb21faf481bb51563b79bd2f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1a:87:7f:f5:a4:2b:67:a3:06:83:88:27:f4:
6a:9f:ee:d8:fe:21:bf:2f:c9:62:48:cb:66:9f:2f:
0f:90:d0:10:b5:48:80:41:11:e5:79:b4:bb:7b:50:
73:31:e4:47:74:6e:82:ff:32:25:04:66:3f:8e:1e:
df:f1:40:b7:1e:22:4c:b0:3c:01:9c:a4:e4:3e:cb:
29:88:fd:63:a9:77:f8:74:2f:33:ce:05:1a:c0:2b:
a2:10:6a:98:f4:01:7a:f9:59:69:f2:b4:30:c7:3f:
51:1e:d5:56:53:8c:06:f7:30:b2:08:f8:f0:0f:d6:
1f:a1:0f:55:27:08:9b:54:ad:3d:82:fc:8c:07:69:
eb:b5:f6:fa:dc:b0:04:f3:c8:fa:6b:0c:68:61:09:
4d:50:46:2f:8b:bf:e6:cd:de:59:8a:45:79:64:5f:
97:8a:54:9b:77:17:2b:65:19:61:75:b3:c5:cf:54:
02:ed:c9:1c:f3:8f:14:b2:93:89:ce:0a:32:cb:a1:
09:29:04:ae:b3:ea:bd:81:cf:31:d3:0d:a6:f8:e3:
54:97:a6:fa:4b:48:42:35:10:10:9e:94:9d:68:30:
02:cb:63:ad:3c:8d:20:ba:e7:5e:1f:c8:f8:22:df:
13:d7:95:53:0b:50:9b:63:8f:06:b0:14:d8:ea:51:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:58:BE:2C:3F:D7:56:FB:21:FA:F4:81:BB:51:56:3B:79:BD:2F:2D
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:4e:a8:4d:7e:51:7b:63:5d:ec:60:c9:66:96:0d:64:07:d6:
c0:59:24:91:ff:f9:e8:5e:80:55:28:15:77:b4:9f:12:fa:1d:
61:ce:2d:f9:f8:41:a4:a1:e8:25:62:6f:bc:67:c1:71:fa:04:
bb:34:d4:78:05:94:e7:fd:9d:c5:8d:f6:09:d2:83:42:10:58:
37:14:20:fe:e9:21:cf:38:2a:67:36:a8:d8:67:53:7c:ee:fb:
18:cc:b8:a3:25:c6:6b:19:94:ec:75:9a:7b:75:b6:8e:d4:9c:
f9:db:10:5a:d0:8c:ac:d5:cd:7b:6d:3d:b5:b4:0d:91:58:f0:
d5:0b:af:f8:9d:fe:a7:e0:71:6c:0e:34:f3:0b:8a:b1:61:74:
53:cb:bf:a3:f6:fe:59:4e:fa:84:77:0b:08:f7:37:e6:16:4d:
d6:d1:58:a9:d8:76:8c:1a:67:8b:a6:38:95:86:b3:eb:e2:c7:
eb:25:8a:61:32:e8:bd:9a:03:d1:0c:da:b1:28:da:21:cb:e3:
10:f3:f0:92:70:94:05:b8:a8:75:f5:5d:ef:97:fa:9f:19:57:
86:c2:ef:ab:25:14:e8:fb:91:39:57:4f:3e:d3:72:31:31:dc:
d4:10:94:fd:47:d1:07:f7:c4:ac:4e:bc:73:0a:a0:62:8c:ba:
8d:7e:df:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:48:54 2025 by rpki-client