Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json)
Hash identifier: 8qWWtPxAF8sYRhOqnNQMfC7bGUAgb8AQrTtlDndU2Rg=
Subject key identifier: 60:C1:54:9F:82:60:E5:EF:B8:BC:E9:2E:03:7C:7A:44:D2:49:B9:EF
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 01974666D17141661ADE1385947687FADDE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
Manifest number: 157C
Signing time: Fri 06 Jun 2025 18:00:32 +0000
Manifest this update: Fri 06 Jun 2025 18:00:32 +0000
Manifest next update: Sat 07 Jun 2025 18:00:32 +0000
Files and hashes: 1: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: aej1wBZA+xouVNkTJ3SVqZPOpXMYiM57q69W6YZE6+g=)
2: uiT-f1UkP8u3VtHM1H2WjnfclYk.roa (hash: tX+V4MHF7T2iULGYZ2/cXlHTKSsA+WHHf7K/tt0Vdcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:d1:71:41:66:1a:de:13:85:94:76:87:fa:dd:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Jun 6 18:00:32 2025 GMT
Not After : Jun 7 18:00:32 2025 GMT
Subject: CN=60c1549f8260e5efb8bce92e037c7a44d249b9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:69:ed:76:38:a1:0f:94:01:25:a4:bf:5b:88:
c5:fc:d3:45:6e:82:23:41:2b:dc:96:f4:ae:1d:60:
45:a2:8e:26:c9:ff:15:b3:eb:6d:77:18:62:0b:1a:
49:24:3f:e7:34:74:2d:e3:0b:d3:a4:0a:00:a9:7a:
e1:93:94:db:6e:f7:2f:83:c7:27:0e:e2:a5:45:ae:
cb:90:23:66:79:ae:68:8f:39:36:80:da:76:46:ed:
cb:6d:b8:56:62:0b:c9:11:11:49:03:54:29:39:e0:
94:4a:a5:a3:d3:7e:b3:16:6b:e0:d0:a4:10:fd:2c:
53:59:ee:8e:39:61:86:71:d7:50:99:1b:a1:70:79:
b7:25:99:35:a2:29:cd:9a:20:36:09:b9:3a:97:96:
98:dd:51:16:23:bf:54:70:5c:08:e0:60:cd:d2:4a:
1c:8f:aa:f0:04:b2:3d:fa:91:73:3b:55:f0:87:de:
e9:37:cf:43:db:a9:a6:a8:c8:55:ca:c5:07:45:19:
68:73:29:d0:bd:42:6d:3e:ef:c9:70:bc:08:81:f1:
22:d6:4d:6d:7c:bf:88:00:8c:3f:41:34:84:4d:bb:
7e:4a:49:34:06:4e:46:a2:6c:9b:bf:a9:a9:3e:a7:
f6:48:f5:01:95:06:23:c9:5e:bd:ad:99:4a:5b:63:
2d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C1:54:9F:82:60:E5:EF:B8:BC:E9:2E:03:7C:7A:44:D2:49:B9:EF
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:0a:fb:51:a5:ea:01:aa:95:fa:15:4b:66:f8:f2:50:4c:6a:
fb:3f:28:9f:1f:e4:44:d0:73:bf:28:83:d1:35:ec:29:a7:5b:
39:13:b7:d9:0a:38:58:d6:97:eb:30:f7:6c:10:ea:3a:29:66:
db:a7:8d:01:cf:3e:09:0d:fd:0a:9c:67:95:fe:95:79:df:f1:
a9:9f:1a:6b:df:c7:0e:9e:c3:fb:d3:06:9b:86:b0:9c:78:7f:
d9:41:14:cb:46:87:f4:c3:bc:5f:0f:61:58:ff:e2:87:04:c4:
47:11:af:cb:c4:7f:97:99:b8:2b:74:74:2d:16:35:27:ef:6e:
c2:56:60:62:21:8f:81:89:77:86:4d:c6:b0:75:b2:7a:26:dd:
25:f7:10:95:24:80:a9:c8:f7:b2:a1:6f:9d:4d:88:51:89:5e:
e7:b8:be:49:be:4a:86:db:84:20:ea:b1:ed:e4:e3:1a:41:3f:
eb:3d:79:ed:0f:61:9b:46:6c:ce:f2:af:68:8a:f6:1e:63:72:
15:b4:04:76:fe:da:5a:da:7a:e9:d7:4e:30:54:c3:82:fc:65:
9f:db:8e:87:20:a1:28:89:9e:9f:cc:e9:3d:be:7b:fd:40:0b:
c3:20:02:54:75:a7:60:34:48:d0:01:1a:05:41:e0:40:f5:14:
c7:29:c6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:57:16 2025 by rpki-client