Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: 8KCeyexf2w3oiHAcPcdYf6the/CYt4H7Izs5V9AgLfE=
Subject key identifier: 16:A1:86:4E:9A:8B:AE:1E:B3:1C:DC:00:FC:F9:18:D7:E5:3B:DB:F8
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 01975BA55CD9456562EE5474392F8986D0F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 108E
Signing time: Tue 10 Jun 2025 21:00:53 +0000
Manifest this update: Tue 10 Jun 2025 21:00:53 +0000
Manifest next update: Wed 11 Jun 2025 21:00:53 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: /BpTk0oPbbkb6WTNDWtouFELEWZzoKX4QN/3e5w31ZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a5:5c:d9:45:65:62:ee:54:74:39:2f:89:86:d0:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 10 21:00:53 2025 GMT
Not After : Jun 11 21:00:53 2025 GMT
Subject: CN=16a1864e9a8bae1eb31cdc00fcf918d7e53bdbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8c:a0:55:82:f0:92:05:e9:32:12:56:16:e6:
0c:ec:1b:ce:6f:53:5a:88:88:aa:04:c7:42:60:34:
6d:72:77:58:6c:a9:71:26:e1:3d:6d:67:56:26:95:
ff:1c:26:51:1c:2b:3f:ae:0a:90:a7:0c:e6:49:4c:
5f:24:2a:f2:72:b1:b6:8b:86:4d:5c:f5:c9:55:e0:
b9:d8:1e:fe:37:55:f0:c8:e8:d4:b3:70:41:21:83:
08:37:44:3d:9e:68:73:19:d1:3e:25:2b:71:d7:f3:
0f:6c:0a:2d:73:f6:80:5f:37:01:35:63:18:98:9e:
32:d4:28:0f:61:50:b3:83:9f:c7:55:2f:27:a6:4a:
9a:4a:7b:75:85:b1:ad:e4:09:2f:f0:89:4e:98:1f:
ce:0a:0f:e7:78:55:2f:0e:73:f8:fc:50:81:01:96:
2e:20:52:5d:ce:cb:32:2b:a9:c8:ed:50:7c:ad:01:
7b:89:20:07:1b:ab:22:89:0f:cf:63:73:48:42:59:
87:22:d5:f6:9f:ae:a0:7a:7e:7f:64:63:f8:c1:2e:
50:6d:ce:e5:87:f5:93:29:50:e9:9b:5b:89:0c:b6:
a8:59:3a:cb:52:0c:b1:7f:49:17:17:7a:8c:62:bc:
14:a3:f5:2a:2c:8b:74:11:e5:c7:7f:33:7f:0e:44:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A1:86:4E:9A:8B:AE:1E:B3:1C:DC:00:FC:F9:18:D7:E5:3B:DB:F8
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:60:96:73:f1:f3:f0:cf:44:78:4b:0a:ba:37:fc:9a:dd:ed:
4a:ad:3a:32:18:2b:f4:26:e0:3e:4b:be:a7:3c:47:27:7c:5f:
94:85:24:fa:8c:83:79:f2:c9:7e:70:73:4c:56:80:34:73:2a:
2f:be:64:17:2c:b5:1e:a9:4f:84:c2:9a:e1:ee:a5:a3:21:27:
08:6e:5c:1b:38:36:ab:af:b7:17:d7:0c:96:4f:a9:21:ab:87:
e0:5a:ab:c6:b7:0f:86:5d:49:e1:1e:ea:d3:33:6b:bc:3d:0d:
7d:eb:5a:5c:f7:94:a3:60:f8:4e:70:c6:1f:f5:93:df:17:16:
3f:cd:dd:ff:9a:e2:d6:51:fd:fd:c3:7a:9c:47:ac:fe:d1:c4:
25:58:e1:e7:5a:d9:cf:db:23:b4:1b:d6:2f:78:e0:84:b8:da:
7d:b5:37:ed:6d:39:08:85:5e:f6:6c:c1:39:31:bd:98:ec:2d:
54:ca:d0:7b:3d:e0:dc:62:a9:a9:67:a8:04:01:93:35:47:ed:
f4:20:fc:83:52:7c:94:67:6d:14:bf:d8:23:e0:7f:10:2e:36:
60:a3:eb:96:74:0d:d3:6e:87:8d:a6:ba:99:e2:e6:f5:1e:d6:
87:04:d9:85:e9:de:e9:b2:a2:17:bd:4a:c5:d2:52:78:ad:31:
cc:9f:7b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:43:50 2025 by rpki-client