Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json)
Hash identifier: QI3tLkGLoqaNzHaOiroZtSXBZp09CqkLZOh5n4Gmtbw=
Subject key identifier: F5:09:6C:96:98:B0:42:D2:27:F8:27:9D:B6:FE:AA:22:DD:FC:0F:43
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 01974A43656A07950E8BA244D9962FA4128C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 12:00:20 +0000
Manifest this update: Sat 07 Jun 2025 12:00:20 +0000
Manifest next update: Sun 08 Jun 2025 12:00:20 +0000
Files and hashes: 1: 2ocBNxmBQmUkoRPjhlhWgOYgiMs.roa (hash: vHBT5RZYwMgp/JaFcd7djyz4ta6PJ5W0BzdunzoRb3k=)
2: GLrf-4476lN-mWAGatfWehKzDpo.roa (hash: UBhmVRo+40lzdmL/jOTwvI0uo4yogaRRq+nqy+WHQ4s=)
3: bAf4pYlPQH01VJAbtj0tnC5SXTs.roa (hash: Is6byuQI/ji+q5pWZ94ZQraf9joydkFIunAau5zwEaA=)
4: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: FLi6pIG3GMOGMnr6WueZ5ITc1Qhte5U2pLvTTXbMAz0=)
5: t7q0gRp_Rjm1TKofQQJGVXRxiQ4.roa (hash: 8i0M18hNbssP3r3dcfAr+F0zW7Rf4keL31Nq8c6T/TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:65:6a:07:95:0e:8b:a2:44:d9:96:2f:a4:12:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Jun 7 12:00:20 2025 GMT
Not After : Jun 8 12:00:20 2025 GMT
Subject: CN=f5096c9698b042d227f8279db6feaa22ddfc0f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5a:ae:67:48:d5:3b:44:b2:2c:4b:1b:43:89:
b1:0e:c0:e9:56:13:e6:bf:c7:ad:a2:40:a9:2e:f5:
5f:1a:ce:61:c9:de:2e:c5:ea:37:a8:4a:a2:75:ef:
bd:b4:90:16:54:45:4d:67:25:d0:e2:27:f2:bc:96:
cf:16:a0:73:e0:c8:96:ed:d1:af:f7:fd:c6:8f:75:
56:cf:1d:a2:07:33:95:7f:2d:98:51:6c:b2:9b:f0:
29:3f:37:1a:03:9f:a2:cd:d9:90:2a:0e:d6:13:b5:
26:56:48:e7:1a:9c:e3:68:93:d5:17:0a:3d:da:e1:
f2:40:ec:8a:ea:4e:9e:0c:96:81:b8:e4:7b:42:59:
65:b4:05:dc:c2:7e:d1:ef:ba:4b:68:22:e0:f7:0d:
ad:3c:5e:82:11:d5:16:0e:f9:ec:cd:70:bd:1a:2d:
52:b4:7e:d1:b4:47:72:a5:3e:0e:26:6d:7e:14:79:
b8:dc:27:12:5e:91:a8:31:c4:c4:9a:c1:58:70:91:
3b:14:00:e2:2a:24:ea:7b:ee:5a:03:7a:0e:70:bb:
da:e8:f9:ca:f7:1d:42:fe:4f:fa:78:b3:68:45:e3:
a1:02:b6:78:46:00:db:e6:ca:eb:5d:cf:6d:5f:07:
74:cd:5a:fe:e0:17:8b:1a:13:1f:4c:50:4a:db:d0:
7c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:09:6C:96:98:B0:42:D2:27:F8:27:9D:B6:FE:AA:22:DD:FC:0F:43
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:6e:97:0c:f9:01:f3:f4:26:11:0b:9d:23:60:4a:44:5c:b6:
95:40:59:37:91:7e:85:76:d8:d1:2f:69:ee:33:68:78:24:59:
0d:4a:6f:44:81:af:39:87:d1:dd:b2:b1:f2:cf:c9:a5:3f:e7:
72:8e:2d:29:10:6a:30:8d:5a:57:ac:03:9a:6a:ea:34:d3:a5:
ce:c1:e3:ff:15:5e:6e:dc:01:ba:20:d3:f1:e4:13:6f:4e:56:
1b:24:f5:6b:61:6c:dd:51:03:49:27:74:6f:ee:cb:1c:aa:b8:
0a:5b:83:0b:bc:74:11:41:74:c4:f9:c1:d7:b6:49:41:e7:eb:
d6:c1:1c:1e:4d:0b:43:ba:62:93:50:ec:2d:2d:31:80:ce:0c:
ce:92:69:81:07:5c:5a:ed:88:3a:e9:df:db:6d:80:8c:0d:ba:
5c:b8:96:1d:b1:cf:55:28:6b:44:78:86:35:b6:52:d0:09:f5:
09:44:8c:64:d0:71:28:31:1c:15:13:ab:33:41:4c:65:73:22:
fa:03:99:94:38:50:ec:c7:00:cf:32:66:71:9b:1f:57:4e:b1:
71:3e:59:78:42:d5:6a:95:6d:41:d7:4f:d8:4f:29:0a:17:f0:
d7:ae:ce:c0:29:d4:9c:79:da:01:8d:e4:dc:b1:0d:6f:7c:b2:
4b:de:57:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:26:43 2025 by rpki-client