Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: uWkfAisYdjIl4JJ6lJlf4kyzEYuQNCyMduWJd22CnwQ=
Subject key identifier: 4B:94:6F:C5:0B:B0:D2:AA:7C:19:09:1F:26:46:D2:FA:E5:F8:55:D8
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 01974A43E9D3FF6ABD7573CF64717AC9AEF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 065D
Signing time: Sat 07 Jun 2025 12:00:54 +0000
Manifest this update: Sat 07 Jun 2025 12:00:54 +0000
Manifest next update: Sun 08 Jun 2025 12:00:54 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: ULPI2alucjvRJHPcnL2fTPnCqqqble8e3kWAc5WZcAE=)
2: ZYblDAaDwwmnrchNjFrf0zm4tO0.roa (hash: TUJh6mrSVIERTxbeRqv55tj1PiJ2BrobmYQdllbfBL8=)
3: a5ENWfgeJoTdkmkmWh2QDvelWp8.roa (hash: oka6UR7fuDvaS+P0EhzHRaWdX/8yDP3LK7DL0R3JiIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:e9:d3:ff:6a:bd:75:73:cf:64:71:7a:c9:ae:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Jun 7 12:00:54 2025 GMT
Not After : Jun 8 12:00:54 2025 GMT
Subject: CN=4b946fc50bb0d2aa7c19091f2646d2fae5f855d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:eb:70:3f:bb:d9:bd:78:ec:39:2d:51:63:48:
56:be:57:02:bf:70:08:5e:f4:70:e6:d8:b3:ef:32:
0e:dc:29:dd:32:15:4f:b7:8b:1f:1b:96:56:a5:c0:
73:01:02:c8:c9:57:5e:0e:52:2e:6f:01:78:cd:7f:
90:2b:3b:2d:23:ce:d1:aa:aa:7f:41:0b:34:61:5c:
2a:67:a5:80:c0:f9:aa:c5:32:54:02:7f:aa:51:98:
1c:bb:03:a9:fc:bd:6c:69:8e:a5:8c:31:a5:04:7b:
0b:e1:f6:22:65:cf:d2:74:83:ee:be:cf:45:15:90:
13:70:7f:07:0d:f4:1c:65:b2:11:72:17:01:ed:32:
bd:e6:5f:d3:cb:d1:71:c7:30:0c:50:3e:9e:24:f5:
96:72:a7:d4:93:e7:56:71:1d:54:d4:8a:c3:0f:0e:
2f:6f:68:9e:b4:32:a4:4f:27:25:4b:be:26:a5:aa:
12:bf:e6:44:58:3b:f1:b1:ea:0c:e4:b3:82:b5:af:
08:c3:15:db:49:a3:9f:16:49:f6:8d:64:c7:08:b8:
ef:c2:4a:c9:bc:b7:88:9a:fb:37:f5:8e:6f:bc:f6:
3a:06:b4:92:09:2a:3b:b1:e1:6f:85:2e:86:a9:b7:
48:da:66:69:5b:d1:b0:fb:de:ea:1d:23:7d:b3:d3:
b8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:94:6F:C5:0B:B0:D2:AA:7C:19:09:1F:26:46:D2:FA:E5:F8:55:D8
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:74:3b:2d:7a:31:e1:c7:18:fa:36:d9:44:f4:32:b7:c2:cb:
47:b4:93:35:d8:92:b0:fb:4b:4e:ac:c2:6c:a5:db:6d:82:3f:
59:3f:4e:2f:d7:56:b7:eb:41:0d:8a:66:25:55:b3:6d:c5:5c:
8a:b1:c8:ee:f8:32:11:14:ec:d9:96:a6:9e:4e:48:ec:d2:54:
9c:1f:1d:82:57:46:7c:36:5a:74:17:ec:a0:04:cd:29:4a:2e:
73:28:6b:27:2f:cb:3c:c0:ba:f3:96:e5:ad:42:a3:8a:a3:a9:
ba:37:21:e1:3c:31:c5:be:e2:c7:84:9d:04:7a:b4:29:bb:c4:
7d:1e:0b:8e:67:2f:58:63:e2:42:61:50:95:f0:c2:2d:9f:2b:
5d:5a:69:1a:5a:6b:2d:56:42:0b:1d:0f:f8:d2:b0:25:d9:22:
0e:ee:40:eb:17:ef:3e:74:aa:be:78:96:b5:60:3d:53:46:17:
b9:80:38:bb:05:27:eb:29:5c:7c:66:f0:a8:ae:21:e1:f8:63:
4e:00:32:12:f0:3c:0a:3e:f4:9b:7e:ff:dc:e1:77:2d:88:23:
5b:ec:6b:3d:fc:be:fe:7b:61:4e:c1:c8:04:7b:0f:fa:c3:40:
97:4a:8c:ff:59:a6:46:34:86:44:a9:7b:28:77:5e:8d:59:0c:
6d:96:78:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:57:06 2025 by rpki-client