
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: 9grZCM9sirpUk2iBKvX05s8XQIv13QxJu2X5WH8H+vA=
Subject key identifier: CB:E7:AA:27:04:64:11:24:A1:80:46:9D:D1:F0:70:97:E3:CB:C1:C4
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 019759B6E8D06E7F3088F1052ACB3E8CAAB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 108D
Signing time: Tue 10 Jun 2025 12:00:48 +0000
Manifest this update: Tue 10 Jun 2025 12:00:48 +0000
Manifest next update: Wed 11 Jun 2025 12:00:48 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: PPsA4NdGjnZBFIhmbGuO9df8VTjzk+6r6/40eYxpyOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:b6:e8:d0:6e:7f:30:88:f1:05:2a:cb:3e:8c:aa:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 10 12:00:48 2025 GMT
Not After : Jun 11 12:00:48 2025 GMT
Subject: CN=cbe7aa2704641124a180469dd1f07097e3cbc1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:88:48:42:f7:9a:4e:37:a9:17:33:69:9a:a8:
75:bc:4a:48:e5:47:ad:2b:ff:0c:6f:34:90:57:3a:
eb:34:1f:38:03:1d:7b:c7:fd:9a:c7:24:a6:b1:81:
68:d4:56:75:19:c5:03:68:95:0c:87:b2:54:b3:7b:
20:39:a5:d3:bd:79:10:1f:27:f8:ca:78:2b:ec:41:
d4:a2:ff:2f:3b:1b:d1:91:d5:f0:ed:d6:0d:22:98:
29:23:fb:6e:63:48:1b:48:e2:92:36:bf:c8:34:c8:
a2:76:89:50:16:0c:53:01:ed:8b:f3:ad:38:c6:8e:
c9:42:b0:8f:97:94:51:92:ba:41:7f:1a:80:c6:09:
95:19:ed:21:60:98:7c:52:cf:18:79:9e:d7:ef:39:
7b:66:d8:6a:c1:cb:7a:d7:33:60:35:2b:18:53:61:
ec:5c:f1:4b:7e:c5:c2:c7:38:b8:db:78:59:b1:96:
b8:17:76:5f:bc:9c:af:96:a4:dc:22:1d:86:f3:5b:
d8:b5:87:1e:72:f4:3e:95:69:42:db:94:fc:ce:6c:
8e:94:78:a2:a3:fa:88:53:43:0a:8b:49:04:6c:72:
1d:e5:fc:10:0a:dc:13:2f:31:96:ac:11:40:65:82:
9e:f6:a5:9e:97:d4:ce:7c:9b:12:69:c8:93:f1:6e:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E7:AA:27:04:64:11:24:A1:80:46:9D:D1:F0:70:97:E3:CB:C1:C4
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:1a:3f:21:8b:bb:cc:05:e4:38:c8:0e:58:97:bc:dd:27:71:
27:bb:0c:c1:9b:9d:8a:15:ea:57:ee:38:4c:5c:0d:7e:9f:7a:
12:31:1c:8c:f9:48:65:79:27:f8:5a:04:74:9e:8e:85:fe:15:
4e:c4:b4:a6:46:dc:b2:1d:0b:33:62:fc:63:6c:54:05:fc:7e:
b9:2b:66:ff:46:29:b4:8c:e9:7c:d6:95:c3:b8:66:af:ed:09:
8b:5c:cf:b6:0b:53:67:5a:f8:9f:45:61:1c:e4:9b:ee:25:90:
e2:76:31:7d:f6:fd:4d:6b:3b:24:a7:0d:09:40:f1:72:11:c7:
bc:b8:bf:01:dd:d2:de:a6:6a:bc:fd:ca:4e:57:cf:2e:62:80:
83:82:a1:e4:77:4e:cf:4e:ac:6c:69:0a:e2:96:1d:5b:d0:a0:
89:50:dd:ef:4c:44:ff:ef:de:e4:19:b5:4b:31:00:02:87:23:
60:08:9b:4f:f5:a6:8f:26:da:4e:6f:e1:60:b6:01:e3:49:13:
f6:f7:85:02:79:a5:09:6b:e6:d9:93:00:9a:9f:a6:49:e4:33:
a9:f2:f3:fc:db:bb:4d:b9:2c:6d:6f:52:f3:60:e0:36:1c:b3:
ee:a2:ae:49:0b:40:3f:70:73:b9:b9:ef:07:48:ff:4d:09:9c:
33:ec:8a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 18:40:49 2025 by rpki-client