Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: I0Urz5oQziC6x+II5/utzP3K8ZgaZx+hC3owH1yOWD8=
Subject key identifier: 10:5A:72:9B:53:EF:9E:53:2C:9D:04:47:2B:9F:10:37:41:87:94:C2
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 01974B1FDFF9AB420CC4D15A78583DBF0A56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 06A5
Signing time: Sat 07 Jun 2025 16:01:09 +0000
Manifest this update: Sat 07 Jun 2025 16:01:09 +0000
Manifest next update: Sun 08 Jun 2025 16:01:09 +0000
Files and hashes: 1: 00q_V9fiuxK8x1J5dDf6heEWqpM.roa (hash: XdV8RV4SCz2Bjb29weutw1xlx9C6MC3WoiwiAcbHJHU=)
2: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=)
3: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: q8503ODEl8a+Zos4GXWinqyBGs8IAz40MQ4vxmT4g8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:df:f9:ab:42:0c:c4:d1:5a:78:58:3d:bf:0a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Jun 7 16:01:09 2025 GMT
Not After : Jun 8 16:01:09 2025 GMT
Subject: CN=105a729b53ef9e532c9d04472b9f1037418794c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ab:c5:68:15:9a:34:1f:56:d8:2b:5e:01:e4:
c7:fd:84:83:7a:37:02:53:6f:1f:4e:33:e0:07:4c:
97:29:23:66:83:34:27:79:8c:48:ac:7e:e2:00:d3:
6c:56:a5:4f:c7:7f:28:c0:cf:fc:cf:93:50:ee:87:
d9:1b:1d:07:b8:ba:ab:98:ae:bd:ba:e1:4d:34:79:
e3:67:0a:89:cd:55:9f:73:21:f6:4f:5f:9b:7a:26:
02:83:f9:85:3b:06:ea:f7:be:45:a4:9d:35:db:f2:
df:b6:38:d7:46:ff:d6:23:32:c7:4e:34:6a:b6:d8:
d5:b7:81:4d:58:75:f4:5b:fa:10:c3:3a:15:a2:a2:
d9:59:29:f5:23:97:de:bf:f6:fc:21:4c:44:3c:29:
9f:44:d1:fd:8e:20:f1:ee:82:3c:12:d5:98:88:f5:
7e:fd:dd:8b:0b:81:7c:2a:28:54:f1:ef:7d:25:9d:
81:5c:02:d5:0b:1b:a1:02:76:cb:94:2d:42:9e:25:
b3:73:a0:de:58:2f:b3:cb:99:34:26:d8:cd:e4:5f:
9b:07:30:89:9c:43:72:8d:84:b3:63:aa:8c:b0:f6:
17:ff:a9:58:21:72:bd:15:00:ca:db:9a:46:f9:de:
9b:d0:6d:ff:bd:8e:86:98:dd:29:dd:80:e6:e0:80:
63:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5A:72:9B:53:EF:9E:53:2C:9D:04:47:2B:9F:10:37:41:87:94:C2
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:0e:e1:a8:69:67:41:59:c9:cf:47:62:f0:a6:6c:88:b0:05:
f1:42:03:03:2e:e1:1c:fe:65:c0:42:74:1c:87:db:47:d0:7b:
b5:e0:5e:e1:b0:be:07:4e:3f:13:76:c1:4e:80:3b:4f:a4:cc:
ec:57:28:f1:69:8e:71:a8:29:80:97:c5:57:53:23:d4:1b:3b:
ef:6f:96:4c:67:fd:f0:c7:d2:a4:7f:01:c2:44:27:3d:6b:ba:
b2:bc:d2:15:b7:79:ce:b8:de:da:3f:ea:c4:ed:ad:f3:9d:5b:
9f:73:60:3c:82:d8:e0:70:0d:33:28:e3:bb:cf:c0:69:c2:e7:
a7:fe:26:c3:2d:3a:e4:d5:56:c4:89:13:7e:5b:04:0c:08:8c:
22:65:eb:2b:ff:e9:cc:10:96:a7:12:86:f7:b8:13:2a:20:26:
ef:9a:d8:2d:42:0c:8c:cd:f3:37:fd:1c:8c:ea:b3:24:86:5e:
c8:c9:f3:21:80:74:42:49:65:b6:e7:44:7f:91:b6:3c:5f:1d:
05:57:90:de:03:de:7c:09:22:78:9e:71:cf:04:77:8b:9c:5f:
98:95:49:29:d3:61:8d:0c:3d:c1:8b:d1:49:ec:80:98:43:fb:
ee:18:72:82:9b:f8:a7:17:9c:02:82:5c:86:7d:de:4a:de:3f:
67:1f:52:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:25:27 2025 by rpki-client