Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json)
Hash identifier: 7UvgAtlYkAjFa4VrMXqQPDY4jtn6mSUu5G0i/Aznp2M=
Subject key identifier: F5:EC:68:CB:1F:D9:4E:4A:DC:64:D2:0E:04:CB:5D:46:DF:86:FB:81
Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Certificate serial: 01974C321088CBB146103E453C404E5759F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
Manifest number: 0AD8
Signing time: Sat 07 Jun 2025 21:00:38 +0000
Manifest this update: Sat 07 Jun 2025 21:00:38 +0000
Manifest next update: Sun 08 Jun 2025 21:00:38 +0000
Files and hashes: 1: Bh5IC48JAR5FB63v2dnakNOTX34.roa (hash: FMLGNxpZDrf8rppZSMEnpJR9pt6oa5eJBxowJrkMq7o=)
2: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: lxrbu59vH57iTtphWS9U8upg+bpw2055ogedWBlg3JA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:10:88:cb:b1:46:10:3e:45:3c:40:4e:57:59:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Validity
Not Before: Jun 7 21:00:38 2025 GMT
Not After : Jun 8 21:00:38 2025 GMT
Subject: CN=f5ec68cb1fd94e4adc64d20e04cb5d46df86fb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:07:54:92:9c:dd:ce:8c:7a:be:d8:6a:33:
69:b7:ba:3b:9c:5c:2d:f7:90:2d:0d:cd:48:32:5a:
b4:aa:ca:63:84:77:b2:28:26:3f:12:90:02:8e:3f:
f6:d7:f6:fc:e6:c2:52:46:f0:a2:4d:e6:f6:e6:6f:
80:40:43:9d:de:9d:e9:56:b1:da:06:a7:91:77:20:
f5:73:98:3f:07:39:75:d8:07:b4:94:a1:b6:3b:f1:
70:29:92:27:35:b9:07:96:35:fe:79:60:55:53:32:
18:ae:e4:86:b3:45:2c:d8:2a:5b:95:96:62:e1:a7:
2c:87:33:f2:d6:28:d1:1c:c9:fd:dd:9f:7a:86:62:
a2:a5:b6:ed:f5:b0:ac:09:ea:c0:85:b3:bc:30:52:
39:34:5e:8a:cc:a0:b4:b8:90:36:60:31:c5:ad:28:
2a:19:01:3b:1c:e3:d4:21:18:69:51:98:4c:42:30:
df:bb:69:d3:c0:8b:cd:7c:af:14:53:24:a6:4e:b7:
0f:bf:c5:0e:1f:9f:94:f4:fa:24:6e:1e:63:7e:8d:
4b:fa:ce:f0:05:45:0d:85:72:8c:0b:3e:cc:28:50:
6a:19:a4:62:de:39:d2:a8:75:b3:96:08:b8:29:ac:
ad:5c:59:d3:d4:a2:ed:1c:02:82:73:c2:9a:46:d9:
4e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EC:68:CB:1F:D9:4E:4A:DC:64:D2:0E:04:CB:5D:46:DF:86:FB:81
X509v3 Authority Key Identifier:
keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:a0:e4:e8:a5:3d:1b:0e:9a:f9:4b:21:f7:46:3e:c4:38:4e:
7e:5d:7a:53:56:36:09:3b:f3:1f:9f:53:1e:4e:5a:0b:53:5d:
f4:4f:28:31:c1:63:33:38:6f:88:68:e2:39:e5:b9:23:99:bd:
38:97:86:ae:70:4e:cf:02:33:6b:9b:69:65:89:7f:9a:a5:7f:
d9:fe:ef:2f:51:cf:ea:3a:6a:fc:dd:53:c8:08:c4:2c:9d:51:
88:8c:e5:10:d1:70:a4:79:b9:5b:65:e2:0b:f4:a9:45:74:79:
4d:5f:4d:57:b9:6d:80:83:64:24:b9:cf:19:c5:1f:31:13:15:
0b:52:6e:27:2a:be:f4:67:3f:90:20:7f:1e:cd:08:81:b8:33:
bc:8e:ee:85:7b:2d:0f:ae:52:67:3b:66:6f:22:52:66:91:f8:
d5:ed:30:63:9f:66:17:f1:3a:0d:3c:59:38:b1:f0:78:39:e5:
e5:c4:27:da:4d:d2:43:a1:ff:f5:40:56:f0:ec:bd:14:00:f9:
7f:2c:e4:5a:c7:97:0a:71:4f:4b:cb:96:c1:b6:1a:bf:de:47:
bd:4c:a7:fc:2e:aa:5e:68:16:df:b7:f4:12:aa:cd:ab:b6:25:
5b:7f:6e:16:9a:59:33:06:4d:48:cf:13:62:94:5b:32:2b:c4:
0e:61:22:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:06:46 2025 by rpki-client