Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
File: hRwoH1drQ6HKuVPJIEHOlZknDHg.mft (raw, json)
Hash identifier: BhjwMBOXlm/QzeqfLVS2bQEZ58wGzjE+tzaEn2XxMAU=
Subject key identifier: 6C:60:30:17:E5:2B:82:E0:63:42:34:48:3F:9D:3A:63:75:1E:A5:F3
Authority key identifier: 85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
Certificate issuer: /CN=851c281f576b43a1cab953c92041ce9599270c78
Certificate serial: 01974F6A6683618FF57890302BE210B06690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
Manifest number: 1406
Signing time: Sun 08 Jun 2025 12:01:02 +0000
Manifest this update: Sun 08 Jun 2025 12:01:02 +0000
Manifest next update: Mon 09 Jun 2025 12:01:02 +0000
Files and hashes: 1: XhZd4AXcprYaSWJWAkCvII9n7bo.roa (hash: +WoaFZAXvgLhbONkinxfr9JdPcFsQuGimoN13TlQ0XQ=)
2: hRwoH1drQ6HKuVPJIEHOlZknDHg.crl (hash: K7LgA6zemCKl3gHuu2P7bND0jeQ48UdFn2JeWpCeDs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:6a:66:83:61:8f:f5:78:90:30:2b:e2:10:b0:66:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851c281f576b43a1cab953c92041ce9599270c78
Validity
Not Before: Jun 8 12:01:02 2025 GMT
Not After : Jun 9 12:01:02 2025 GMT
Subject: CN=6c603017e52b82e0634234483f9d3a63751ea5f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:2f:fb:86:d8:46:83:12:aa:ac:e4:66:c0:
a3:30:cf:a1:9a:e1:d4:0a:b6:88:fe:9d:43:05:af:
ed:d6:c8:aa:15:ae:be:cb:94:f9:1e:6e:03:bd:e8:
63:6c:5f:41:58:37:4c:af:50:fe:9d:a4:e8:f5:d9:
a3:42:40:3a:06:87:14:62:29:50:e7:99:0c:c5:dc:
98:82:86:f9:2c:67:fb:d8:ff:be:fe:d7:74:db:c4:
44:9f:27:70:81:b1:df:95:27:9b:19:46:22:c9:04:
67:7e:3d:c1:d7:8f:f2:94:01:5f:b7:28:74:7a:7e:
31:b7:de:5b:40:65:48:bd:c3:c8:d7:ec:0a:bc:86:
55:c1:e4:ac:02:2b:7e:23:da:ac:dc:9d:11:7c:35:
4a:72:86:55:49:68:ba:71:fd:64:0c:3d:04:36:6d:
df:8f:72:95:37:e4:40:7f:ff:38:9e:26:1e:14:a4:
b3:ce:9a:10:1d:1b:f4:a4:b0:c7:52:bd:29:cc:9e:
67:0f:df:79:11:9d:f4:14:29:b2:31:61:7d:52:95:
68:9a:62:f7:40:59:83:d3:cb:25:f9:a1:d7:3b:f1:
e1:01:0f:b6:52:77:6c:14:91:30:a9:c4:a4:31:7b:
ec:28:89:4d:6c:f0:cf:27:ba:b1:16:ad:17:f2:2a:
7b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:60:30:17:E5:2B:82:E0:63:42:34:48:3F:9D:3A:63:75:1E:A5:F3
X509v3 Authority Key Identifier:
keyid:85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:f2:6c:b9:9b:96:ae:e3:32:c6:37:6b:65:24:4e:34:27:6f:
8e:d5:12:c1:f5:0b:2b:8a:5a:71:c3:75:10:55:9e:20:96:66:
06:b0:31:11:2f:b5:62:b6:e1:16:83:7d:74:91:a1:a7:af:5b:
a3:cb:ed:33:e9:50:30:16:5a:cb:b9:01:1a:47:a1:91:71:ca:
0f:cd:3e:15:75:f9:91:02:76:85:e9:10:b4:f3:98:14:64:85:
a7:9d:85:0d:0c:0b:e1:2f:41:02:b3:df:2d:c9:c6:92:dd:ff:
4f:9d:9e:c4:b1:33:aa:fd:82:02:cc:c8:72:65:0d:42:f8:b8:
87:f9:af:1e:9f:a2:3f:f1:ce:2e:ac:e2:38:3b:2e:ac:66:ef:
62:e1:97:9d:00:b8:de:6c:06:ce:e6:9a:30:c4:89:b8:46:1f:
f1:a4:cc:88:e2:95:ed:4a:a5:09:e9:28:68:e6:1d:fc:26:fa:
8e:1e:c7:0d:62:62:2c:ba:45:f9:01:ca:dd:fc:3d:36:fb:ba:
15:2a:88:39:a1:27:ed:10:08:f0:79:6d:dd:27:d9:db:ac:30:
11:9b:fb:28:8a:d7:3b:05:a5:e1:3f:8c:35:e9:a0:e3:a3:11:
66:85:57:c2:65:3a:64:f2:76:e6:92:12:1a:73:d1:64:c9:70:
91:ce:c3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 19:23:43 2025 by rpki-client