Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
File: hGhM2vJd5AvvwejkIoWo1ew4kEc.mft (raw, json)
Hash identifier: ZeBcSGXQIAy6WNMjF2H0LlbX929ABmXUyedJ8nTRbwQ=
Subject key identifier: 12:3F:E9:9B:8F:C1:68:F7:B1:78:2E:E2:D6:70:6A:FD:A4:3F:5E:68
Authority key identifier: 84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
Certificate issuer: /CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Certificate serial: 01974D0E0EBC02B499EE5CD57820B54F9723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
Manifest number: 039C
Signing time: Sun 08 Jun 2025 01:00:56 +0000
Manifest this update: Sun 08 Jun 2025 01:00:56 +0000
Manifest next update: Mon 09 Jun 2025 01:00:56 +0000
Files and hashes: 1: hGhM2vJd5AvvwejkIoWo1ew4kEc.crl (hash: cy2iJ/RQOLrgmN5qcoigU8QhobSjntvuDqbYE+NX1RY=)
2: oidwYZW8G2o74OS_a_nCcJCpjCg.roa (hash: ogxgsB9YER6I/w+iNtW/Wqu1gf3XIhY2x4sxgGoaIJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:0e:bc:02:b4:99:ee:5c:d5:78:20:b5:4f:97:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Validity
Not Before: Jun 8 01:00:56 2025 GMT
Not After : Jun 9 01:00:56 2025 GMT
Subject: CN=123fe99b8fc168f7b1782ee2d6706afda43f5e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1a:3f:ce:90:28:e7:ec:d9:87:24:39:a9:8c:
dd:df:0a:11:a8:3e:68:3e:a3:93:79:d3:eb:87:7a:
bb:e4:04:7e:64:ff:92:46:6c:2a:6b:17:8d:98:8c:
16:88:c7:ed:5c:38:57:e4:42:59:c2:16:04:12:50:
14:21:af:ae:82:fe:7b:a2:74:40:4a:39:5e:42:ae:
36:b8:fe:15:e6:13:bc:10:1a:51:cd:99:82:a5:50:
26:fd:ea:6f:d2:d6:86:c2:46:94:d9:5b:57:03:9a:
f2:56:a5:9b:20:08:c2:7e:49:fc:4f:70:55:7e:5c:
ab:22:27:6b:99:73:dc:d9:55:19:16:5b:cc:1c:8f:
f0:9c:11:93:e9:82:44:8e:a4:27:30:3a:44:ea:20:
d0:be:36:06:76:22:c5:9c:8c:9a:be:ae:c6:51:37:
b9:fc:43:88:3e:c4:dd:30:12:0c:01:2c:89:3a:a2:
a2:3f:01:4a:db:3c:9b:4c:64:42:77:60:31:29:74:
4d:d4:32:16:16:ae:39:88:8b:e2:bd:56:5c:e5:fb:
6b:1a:69:97:bc:0a:0d:c1:cf:97:86:92:d6:ab:ff:
4b:3d:d2:4f:4d:ec:2e:09:85:f4:83:78:df:69:1a:
9b:1e:52:e5:d7:ac:81:2c:e8:a2:c0:6c:5e:1d:74:
7c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3F:E9:9B:8F:C1:68:F7:B1:78:2E:E2:D6:70:6A:FD:A4:3F:5E:68
X509v3 Authority Key Identifier:
keyid:84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e0:c3:63:6d:25:59:c7:46:6b:5f:a4:05:84:79:d7:5f:11:
4a:c0:63:80:d8:77:eb:5f:b5:31:5f:5b:df:8c:c3:c1:da:d5:
cb:a0:a0:a9:4e:9f:5d:7b:fa:1c:08:69:f0:9d:f0:2d:f8:00:
d7:c1:ae:32:e6:38:95:b0:f0:b0:3a:4e:91:4d:16:96:1b:f6:
a8:f5:a1:57:fc:b4:2e:08:80:3f:43:b8:31:9e:f4:51:11:42:
53:49:b6:70:3e:63:68:a3:4b:9f:0a:42:a9:63:3a:51:f6:10:
b4:6f:c6:56:0f:e7:62:49:af:7a:c2:52:76:08:6e:f9:9a:ec:
6e:2e:eb:cd:99:2f:83:f6:ee:70:b6:7c:9b:c6:1c:7f:75:a8:
ba:91:4b:8f:9c:2e:d3:c1:c8:bc:43:7f:b1:8c:dc:7e:82:b2:
b6:bc:83:e1:f8:7b:7e:7b:25:f1:74:2b:4c:57:7f:fe:37:93:
07:8e:c1:6d:4c:0d:e2:b1:9f:a3:22:3c:a7:e8:e2:24:e4:08:
b7:47:df:77:b3:30:52:7e:c3:81:b2:db:f8:68:90:a8:fe:8d:
4e:71:a8:07:0d:1f:1b:69:c2:32:2e:9d:52:10:e3:cd:f3:70:
22:d6:e4:75:63:e8:af:06:7a:95:23:b8:cc:63:43:9a:08:0b:
63:b5:9d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:14:11 2025 by rpki-client