Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: bASdW/4SVlZJHIwBoJZi3rDX7402OmFhTFJWpHID6IU=
Subject key identifier: A5:E5:73:96:27:96:14:42:BD:52:A6:06:F9:DC:7C:FF:FF:64:0A:B3
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 01976929A565878D89043F0FA0F2AD8081A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 1095
Signing time: Fri 13 Jun 2025 12:00:26 +0000
Manifest this update: Fri 13 Jun 2025 12:00:26 +0000
Manifest next update: Sat 14 Jun 2025 12:00:26 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: 6jjS3Ow7S7D4tIynLN/jPmHwFt9k7S523E/pf36NHt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:a5:65:87:8d:89:04:3f:0f:a0:f2:ad:80:81:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 13 12:00:26 2025 GMT
Not After : Jun 14 12:00:26 2025 GMT
Subject: CN=a5e5739627961442bd52a606f9dc7cffff640ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:de:c2:ec:b8:e0:59:d8:38:33:70:66:0a:01:
a5:7b:58:72:e5:44:cf:d9:4a:fa:96:a5:60:7c:8b:
ee:8a:f0:b4:4f:fa:08:01:9b:7b:1e:1c:ff:67:00:
06:59:b8:58:2a:0a:bb:fe:cb:11:3b:30:62:6a:ea:
d0:4a:90:30:b2:64:d6:64:37:23:df:af:21:3d:4d:
31:47:bb:9a:a1:82:a9:35:fb:61:96:8c:0e:6e:e1:
84:60:43:76:b8:44:5c:c1:e7:c5:f7:2a:ca:a7:94:
0f:64:34:41:ce:59:d7:fa:62:08:30:ea:63:80:44:
57:65:ae:37:df:56:b4:6b:bf:78:cb:84:a2:7a:a0:
fe:22:3e:e5:23:a6:7b:3a:b3:a9:7a:3f:21:5e:6c:
09:29:81:ce:47:a8:92:62:0e:5e:90:01:1b:76:32:
ff:87:0a:ea:09:fc:a4:c2:f0:e0:70:da:ad:f6:be:
79:d9:3f:ec:e8:32:71:cd:06:5c:30:0e:aa:2a:0e:
e7:24:27:6c:b3:b4:2b:cd:12:82:ce:47:6c:90:5a:
8b:62:30:b5:d9:b0:41:3f:d8:ef:a9:6a:6a:9e:06:
f1:d5:06:e3:fa:9e:ff:13:4b:96:46:5f:9b:99:22:
8e:62:8c:57:13:eb:c6:70:6f:51:ef:dc:c2:78:8c:
db:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E5:73:96:27:96:14:42:BD:52:A6:06:F9:DC:7C:FF:FF:64:0A:B3
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:99:a2:6f:f1:4b:dd:e8:48:86:b2:d6:f5:0c:7e:44:bb:2a:
21:7d:f3:46:87:87:75:e0:ac:c2:b8:3a:5c:12:a0:4c:15:99:
37:c3:c7:cb:57:8f:a0:7a:fe:6b:95:92:2a:af:d0:be:96:85:
53:c3:d6:3d:df:1f:f9:76:8a:2c:f5:b0:e1:14:81:85:ab:23:
c4:17:6c:03:4b:2b:0a:93:c0:b7:50:e3:26:4d:79:ba:ed:c0:
1e:b6:31:a6:06:c7:c5:e8:e3:d0:8b:e8:03:d6:98:94:bd:9c:
c7:d7:bb:d5:31:ca:b3:97:0b:a9:5c:fc:02:b6:4a:33:03:87:
24:df:73:af:81:f3:d5:21:ba:92:27:3b:4d:26:f7:ac:c8:d5:
ac:62:fe:b8:6d:b2:11:3a:c5:fc:5b:68:ad:e6:da:b2:a4:13:
58:9f:e4:63:5d:43:4f:f8:f2:3f:97:97:9d:a1:87:ca:ea:c9:
52:0c:d6:8c:81:a4:a5:4e:fc:78:d8:39:59:80:ae:22:fc:ca:
7c:c9:a0:b3:71:9f:7b:66:b6:88:e7:f0:f7:ce:c1:75:37:9b:
0f:3a:46:77:fe:a0:a6:c9:fe:0a:a9:7e:6c:1c:4c:48:0e:4a:
dc:08:99:3c:11:f4:7a:0e:ff:43:e6:36:1b:02:c2:1d:e6:c1:
b8:ae:80:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:53:54 2025 by rpki-client