Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: MdAdo4GT2lsTJyrB3/cI7qvwRdIjSKqrOnhS/VvKf14=
Subject key identifier: DE:17:A3:26:4F:C7:C9:65:7D:71:86:18:8E:95:E7:A7:A3:2B:71:C7
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 019748FA7D6B0040D6B36B068907E1D2D98B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:01:05 +0000
Manifest this update: Sat 07 Jun 2025 06:01:05 +0000
Manifest next update: Sun 08 Jun 2025 06:01:05 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: uTHgMDPUg/sRE+/cJRNYBJSHtPCof4JqpfrOXus7rn8=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:7d:6b:00:40:d6:b3:6b:06:89:07:e1:d2:d9:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Jun 7 06:01:05 2025 GMT
Not After : Jun 8 06:01:05 2025 GMT
Subject: CN=de17a3264fc7c9657d7186188e95e7a7a32b71c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c5:20:4d:79:5c:a2:4c:c3:af:93:74:dd:e4:
cf:ca:e3:08:14:10:52:fe:c2:69:05:a5:da:c6:00:
89:15:22:43:52:3e:82:41:8f:74:e7:7e:05:5f:e3:
de:2f:30:58:43:b9:36:12:51:8f:f5:88:41:f3:72:
c5:bf:4c:7d:5c:ab:8e:5c:2f:50:1b:5e:b4:19:c6:
14:07:18:b4:f4:c8:7a:7b:3c:74:6c:a6:6c:56:c1:
2d:dd:51:44:06:66:9c:83:d7:9d:43:19:ad:32:66:
26:8a:2f:55:2d:f0:14:c9:99:60:3f:4a:45:fd:fa:
7d:17:74:b3:63:7c:6e:72:69:4b:83:c2:25:f9:fb:
ab:1a:08:15:54:f9:d4:ad:97:9b:a7:69:b7:41:11:
72:09:60:7b:5f:44:89:aa:e2:f5:9d:7b:d0:ba:89:
94:36:9e:fd:ed:99:4e:0d:10:f5:00:65:81:68:18:
86:0d:9c:ec:1a:b2:30:cb:d3:1c:88:b5:d3:b1:b7:
f1:ce:cc:f2:36:69:0f:ae:7e:c2:f5:88:b6:66:22:
cb:57:18:c5:e0:c7:bc:83:83:db:1c:eb:1c:c6:cc:
65:4b:d3:39:25:ef:d2:14:35:95:d4:ed:d7:42:d5:
d9:e6:01:af:0d:7a:5a:06:cd:7c:56:fb:a4:fb:cd:
f6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:17:A3:26:4F:C7:C9:65:7D:71:86:18:8E:95:E7:A7:A3:2B:71:C7
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:6c:53:9d:83:dc:63:ab:d4:e4:b2:b6:e8:0d:86:8b:0d:c1:
3e:25:40:26:88:7a:af:50:1c:eb:d1:1c:12:e2:05:d8:29:9c:
36:fb:18:62:fe:d3:41:d9:56:94:d9:a3:dd:1b:37:82:64:35:
90:6d:34:7e:d1:b0:9c:dd:63:fc:d6:14:28:eb:19:2e:7d:e0:
4c:6d:c5:34:03:52:ba:b3:1b:b3:34:4d:fc:8e:2d:9c:f8:57:
16:2e:5b:42:ab:35:b1:60:77:66:8e:2e:d3:96:7f:34:00:8d:
8e:c0:7e:c4:37:54:ec:43:58:0d:7f:c3:74:c7:b1:21:5d:ad:
f7:72:99:63:7a:65:c3:37:ec:2f:fe:a4:1a:1a:16:9f:3f:93:
38:b2:61:98:4a:1c:a1:63:6e:b9:ae:3c:2e:49:58:23:d9:9e:
70:9b:27:95:bf:eb:0e:db:51:1f:1c:bc:8e:78:cd:7b:d0:e1:
c3:84:c6:39:31:79:76:c3:0b:c2:92:77:96:ed:a5:d6:ca:24:
81:48:e0:58:16:4f:ce:46:e6:ad:99:46:0c:59:9c:76:a4:bb:
ec:e5:3a:3f:89:c6:0a:00:cd:a0:a0:f0:b6:7e:1f:f1:b0:90:
f5:fb:a1:dc:34:11:7d:f6:cd:e9:74:f0:88:f8:1f:f5:81:7a:
30:89:82:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:28:54 2025 by rpki-client