
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: 3J7XoF5FLg1eLcCA8JMSP8GPka+exsPtQl9+19Fvbq4=
Subject key identifier: 41:37:E0:89:12:E8:57:CA:6A:96:53:1C:4C:AC:3E:44:A7:04:F0:49
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 0197635EBCFBE643B0F56E2542104933B106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 1092
Signing time: Thu 12 Jun 2025 09:00:42 +0000
Manifest this update: Thu 12 Jun 2025 09:00:42 +0000
Manifest next update: Fri 13 Jun 2025 09:00:42 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: GG4FMdBfp4KB+Q2pmLcV6AtHuV64KLObJqbKiFUsF9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:5e:bc:fb:e6:43:b0:f5:6e:25:42:10:49:33:b1:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 12 09:00:42 2025 GMT
Not After : Jun 13 09:00:42 2025 GMT
Subject: CN=4137e08912e857ca6a96531c4cac3e44a704f049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:aa:2a:13:5e:2f:1c:df:3d:b7:65:de:c3:78:
fd:b3:6a:e1:01:7e:71:74:17:f8:a6:64:53:73:c5:
e1:f2:66:15:5d:8a:74:cd:9d:72:9a:69:43:ac:c3:
82:a6:43:6a:fe:ff:30:fb:f6:b4:d4:8a:34:aa:6b:
a2:83:4c:97:4c:8d:59:48:fc:01:ae:66:27:41:1f:
3f:72:5e:f7:1a:79:dc:a7:ea:82:9e:65:e3:e1:ef:
06:ae:cd:0f:4c:38:e5:f1:14:d7:bc:56:ff:2f:7b:
09:8c:f4:af:d2:65:f2:73:16:af:6b:bd:c5:f0:69:
7b:10:f9:c8:73:b8:31:11:05:08:b4:ca:5b:92:31:
a0:ab:82:d3:59:74:e5:60:35:0e:5e:af:df:69:12:
08:90:6c:93:c0:b0:87:25:44:83:ee:e8:82:4b:af:
e1:72:17:45:5d:50:13:5e:c1:b9:a0:d6:bc:52:a2:
37:6a:e5:dc:7e:3b:a7:54:6f:2f:01:a5:02:2f:d0:
ab:50:02:eb:59:77:de:7a:48:54:59:20:62:4e:6a:
66:23:63:f8:99:3e:87:e9:33:36:03:82:00:9b:44:
85:fe:54:6c:25:fc:e2:2f:1e:73:2d:bc:0d:77:21:
f4:d5:0d:3f:e1:5f:4e:77:00:22:6c:f9:c2:56:45:
5f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:37:E0:89:12:E8:57:CA:6A:96:53:1C:4C:AC:3E:44:A7:04:F0:49
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ae:17:2f:40:9a:0f:83:3d:b9:a0:39:cb:d6:4b:e1:d8:12:
93:cd:8c:6a:ae:c6:b7:97:8a:27:90:2a:cb:44:b3:27:da:10:
5f:e9:81:82:54:20:4e:13:b3:06:ee:f2:f6:75:23:91:28:f0:
ff:42:13:4f:38:8f:a8:dc:a5:71:8f:c7:fd:ba:3f:2a:f2:20:
d7:cd:80:2f:f0:a7:9f:3c:75:7c:0d:71:8f:95:6c:3d:7d:ef:
ff:eb:c6:05:4c:83:4e:a9:19:c1:92:3b:dd:fa:90:11:84:0a:
95:98:28:34:78:ac:09:c6:8c:11:9c:7a:ea:79:5f:cd:f9:f9:
de:aa:8b:59:9c:a2:a0:38:5a:b7:b4:f1:5c:f5:31:1d:7b:92:
4c:b7:15:80:22:fd:25:18:d6:7c:61:e9:48:5c:5b:17:59:d8:
db:10:41:4f:72:80:d1:18:54:47:e3:ce:37:f3:01:6a:77:3c:
e5:38:ee:bc:72:e5:c4:30:de:7a:3b:ee:8c:4a:d6:57:0c:30:
5b:a2:ef:c6:25:2a:84:93:8e:a2:be:ba:8c:d9:0f:53:94:14:
34:d9:71:ba:7f:b0:46:d1:52:dc:c7:2d:44:f1:f2:9a:24:e2:
14:30:f8:28:8a:3e:bb:6e:3e:27:47:30:da:81:b5:67:e3:3a:
0a:a1:3b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:09:48 2025 by rpki-client