Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: G7KD20eLOrNfgelm0QsQpyTg/BJenIs0NQW036iv5OM=
Subject key identifier: 70:CB:FA:F0:DA:9A:92:18:28:2E:CE:36:99:6B:B5:DF:52:72:81:90
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 01975F8207F7A2B8F5373A4910A3CF6A0427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 1090
Signing time: Wed 11 Jun 2025 15:00:46 +0000
Manifest this update: Wed 11 Jun 2025 15:00:46 +0000
Manifest next update: Thu 12 Jun 2025 15:00:46 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: Gbv//h4ilU+1Dh8+xjeoObn4AKwb6BhvFR7m1Wznxjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:82:07:f7:a2:b8:f5:37:3a:49:10:a3:cf:6a:04:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 11 15:00:46 2025 GMT
Not After : Jun 12 15:00:46 2025 GMT
Subject: CN=70cbfaf0da9a9218282ece36996bb5df52728190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:72:74:59:12:0b:bd:93:55:e8:26:ac:c4:82:
f7:1f:d6:f5:e7:25:53:6d:04:43:1b:3a:f8:e7:eb:
b2:76:9a:e7:85:e9:9c:23:09:0f:f4:30:c8:b9:16:
88:4d:98:22:d6:3a:07:2a:7e:0b:86:d7:6e:c2:23:
66:2a:ce:8c:27:a4:89:d2:55:df:57:a1:1b:70:2a:
c2:38:ff:fe:01:b9:5f:bb:f7:98:b4:fb:5d:4f:a9:
94:70:c3:b3:7b:cb:7c:de:a5:3d:4a:39:a0:4a:7b:
ab:91:37:e4:86:b1:98:00:20:bd:fc:c1:22:15:6a:
3b:9a:d9:3d:8b:fc:a5:b8:5f:dc:f8:a7:0e:26:25:
6c:56:9c:2f:6f:bb:0e:f0:cc:cb:67:e7:23:16:1d:
7a:81:01:03:2e:6a:2e:66:59:bd:f9:c1:53:9b:3f:
ab:94:c8:0e:31:15:c7:15:c0:93:dd:28:3e:ed:36:
e8:d5:0a:9e:f9:38:8f:eb:40:ab:96:0e:f1:eb:6f:
ed:56:61:fd:c2:5c:49:f8:8a:7d:c3:75:7c:47:b8:
b6:55:f9:b6:90:4b:c1:e6:8f:22:dc:00:76:df:91:
89:9e:e6:ef:b2:e7:74:1f:a3:b6:49:1f:5e:f7:37:
10:75:42:b3:51:bb:b0:80:01:55:7d:2a:b3:91:2d:
3b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CB:FA:F0:DA:9A:92:18:28:2E:CE:36:99:6B:B5:DF:52:72:81:90
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f4:c3:39:ae:c2:03:57:e4:82:29:e8:11:c3:34:1d:2f:1a:
b6:c1:a8:75:01:b1:be:ee:4b:ad:85:42:5a:9e:f9:5e:c4:b7:
7b:80:ad:64:a1:3b:96:f2:80:0d:83:0d:ae:4a:f6:19:0e:f3:
c8:70:c4:2d:1d:83:36:e3:b4:17:f6:19:b4:e3:e4:40:dd:b4:
36:2c:c1:66:38:b0:2d:f5:3a:a7:fa:80:46:65:57:f1:f4:61:
e4:33:60:67:e1:00:81:4b:ce:4d:11:80:57:fa:62:92:6e:1d:
95:5e:8c:32:12:91:87:40:18:17:d9:7e:81:c5:82:db:2a:28:
bd:af:24:7c:66:07:80:89:d6:78:22:f8:b3:5f:a2:13:00:ef:
fb:a3:9c:2b:5a:12:53:0a:23:7f:11:4f:23:8a:a1:f3:46:1d:
40:f1:e3:00:ff:9a:99:05:96:c7:8d:ef:35:d7:3d:f1:68:29:
7b:87:36:c8:02:e4:75:48:bf:b4:89:79:2d:d6:46:aa:0f:eb:
dc:a5:91:5d:7d:1e:12:eb:5f:dd:e3:8f:0a:d1:ae:ae:ba:aa:
87:f9:95:e3:e6:ff:d8:bc:f8:9b:95:9c:a7:4c:24:6f:64:e9:
bf:f9:ac:62:16:a0:34:56:38:e6:75:b3:6f:ae:56:a1:81:8f:
c8:b8:14:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:49:30 2025 by rpki-client