Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json)
Hash identifier: bu4l1nWpbGT/auEZxu+Z6YxadL2nS6v+OVw1Kd3TEkQ=
Subject key identifier: AC:FC:82:D3:4D:0D:60:45:8E:7E:CD:E1:FF:CF:02:BE:B6:66:0D:BD
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 01974D7BB1056044F17683B80D41145D2DEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
Manifest number: 0E00
Signing time: Sun 08 Jun 2025 03:00:41 +0000
Manifest this update: Sun 08 Jun 2025 03:00:41 +0000
Manifest next update: Mon 09 Jun 2025 03:00:41 +0000
Files and hashes: 1: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: DBXC9S+y9ph9utbd5WyUu+0oyDansLxczRJwRKrxu1A=)
2: pkoA1nbX0r8lwiVwxbfu80R8kOU.roa (hash: dAPrEkvaKQk5s5Z7WHpV1G3F1Sw4lOg/QTiasC7ZX1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:b1:05:60:44:f1:76:83:b8:0d:41:14:5d:2d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Jun 8 03:00:41 2025 GMT
Not After : Jun 9 03:00:41 2025 GMT
Subject: CN=acfc82d34d0d60458e7ecde1ffcf02beb6660dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d9:1b:da:70:09:bc:29:8f:5b:9b:0f:c7:83:
b9:ef:83:c9:6c:80:2a:ff:66:ce:66:07:b8:a2:4d:
6a:b2:b7:c9:55:69:d6:f1:c7:1c:de:cc:af:30:94:
1f:87:85:37:cd:d3:ca:b8:0c:5d:57:7c:29:9f:94:
ce:e5:f4:0a:99:c7:ba:d2:65:59:e7:04:88:5d:09:
4f:02:28:c5:20:42:f7:35:35:f8:ed:0e:ec:64:2a:
7e:48:21:dc:9c:84:bb:8f:60:96:d5:3d:0a:8c:b9:
e8:97:52:fa:3a:ac:8e:81:c4:29:bd:81:1a:32:f0:
0d:98:12:f4:4d:3d:14:ef:a6:5a:5c:5f:bc:a5:c7:
5b:c7:bf:4e:b9:ee:ef:af:64:23:fd:23:55:b2:c2:
61:9a:74:f2:e1:8d:14:00:03:3d:34:ab:a6:27:4a:
92:e7:81:87:55:81:ef:c0:18:ec:74:d0:df:1d:69:
f7:35:5c:30:a2:13:7a:ef:fe:a4:7f:b2:9b:d5:1c:
82:a4:f4:68:fa:eb:c6:2b:e3:56:6f:d6:b9:77:07:
98:54:74:23:00:fa:1e:95:f9:1a:4f:c6:1a:73:5e:
9c:e9:9c:39:b8:e6:71:ee:8b:a8:5b:45:9f:eb:1d:
74:d6:af:26:58:df:a0:57:e7:94:e2:0e:ea:11:25:
5e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FC:82:D3:4D:0D:60:45:8E:7E:CD:E1:FF:CF:02:BE:B6:66:0D:BD
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:3b:a6:f1:80:a2:27:8b:80:1b:96:93:15:9b:e8:ed:a5:0d:
56:e0:ad:a9:21:e6:8b:da:cb:3b:d2:0f:86:21:fe:07:ba:28:
a8:73:e3:8e:48:92:65:9e:aa:c5:7c:d5:4c:fd:09:83:c4:6d:
c5:aa:a8:9b:65:8d:e3:2a:fd:d0:83:e2:a5:a1:b5:4f:b9:b7:
73:53:2c:42:b3:51:38:3c:63:42:88:3e:62:55:67:b2:66:0e:
36:e5:65:df:91:d8:4d:51:88:c8:e7:20:22:53:bc:fb:10:1a:
0d:e9:92:10:73:e7:a8:09:0b:31:e8:c6:e7:b9:ee:e8:5c:e5:
69:4d:25:61:5c:15:ea:bd:8e:a4:80:8b:a8:c2:a3:0a:06:62:
5a:bd:10:21:84:c5:83:bd:92:dd:36:49:ac:7d:97:8c:28:41:
d5:a1:f0:0c:34:77:9d:09:c5:ad:fb:46:c2:d6:bb:11:2e:68:
73:a0:f3:4f:b5:e7:5a:70:b0:67:3a:af:81:8d:2f:3f:0e:96:
91:cd:bd:6a:0d:6e:6e:db:a0:9a:ab:9e:39:2a:ce:5d:8d:6f:
cd:ea:d8:21:23:b6:03:0a:14:78:df:58:a6:fa:05:57:76:9c:
a0:d1:fc:cb:78:cf:14:70:68:dd:c9:92:e3:7c:64:8c:17:d7:
60:45:91:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:29:13 2025 by rpki-client