Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: yjI3ZDiva1+pN7Y24pjJMt7wdSFH000LmnV4H9DtrDo=
Subject key identifier: 28:A8:F0:23:AE:9D:81:84:F1:DD:BC:46:BC:4C:3F:7B:72:66:7D:97
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 019751C66BB3CBDEFA1BE72522B31CE4C830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 1585
Signing time: Sun 08 Jun 2025 23:00:47 +0000
Manifest this update: Sun 08 Jun 2025 23:00:47 +0000
Manifest next update: Mon 09 Jun 2025 23:00:47 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: fPZpRak2J0CtoECtnia08eCi/tKxqZMMz1Jjkl0NB8U=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 23:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:c6:6b:b3:cb:de:fa:1b:e7:25:22:b3:1c:e4:c8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Jun 8 23:00:47 2025 GMT
Not After : Jun 9 23:00:47 2025 GMT
Subject: CN=28a8f023ae9d8184f1ddbc46bc4c3f7b72667d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:13:e4:17:d8:62:80:e4:51:ad:7c:16:a7:36:
d0:04:65:92:de:b0:18:1b:cd:3d:35:0e:0c:21:d9:
9c:cd:f7:45:94:1b:0b:89:6a:2a:34:95:78:35:2e:
69:e9:bf:f0:ed:4e:4a:57:c7:03:71:7d:e5:2c:c5:
a6:9e:c6:e7:66:43:ff:09:96:32:a4:54:4e:bd:25:
18:31:b9:f1:8f:86:a7:e8:7f:56:6f:02:a4:79:7c:
c4:2c:5d:8b:86:b2:d1:c6:a2:69:19:52:b8:1a:87:
23:1a:95:49:04:53:a6:65:9b:ed:26:00:2b:f3:1d:
54:44:63:85:b3:d5:e6:2c:40:e7:e4:bc:35:1f:c6:
9a:56:2b:60:3e:4f:aa:83:50:81:e7:43:7e:1d:7e:
bc:c8:49:28:2f:25:52:a5:9d:f8:b3:36:d5:45:a4:
aa:86:20:8e:1b:df:2d:d1:eb:04:85:ad:c3:a1:5b:
78:b6:1f:fb:b0:2c:cd:4e:0d:f9:e7:b3:2f:53:0b:
02:38:56:99:78:ea:4e:26:f9:5f:6c:39:66:01:40:
1f:32:e2:bb:06:6c:e2:55:a6:59:a0:89:a1:38:b1:
a9:6a:bb:75:46:0f:76:cb:54:02:c7:a6:19:b9:fc:
7d:23:9d:07:8d:c8:b2:55:ba:5f:46:6b:de:2a:be:
dc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A8:F0:23:AE:9D:81:84:F1:DD:BC:46:BC:4C:3F:7B:72:66:7D:97
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:fe:e7:11:0a:9f:7f:cc:30:10:a1:a0:35:c2:3b:13:68:48:
46:0d:20:45:48:34:c5:5e:8b:3c:21:c8:89:ed:82:96:e3:07:
cb:1d:01:71:f8:39:a0:c0:9b:47:48:d5:ab:a2:00:e1:26:d8:
43:64:9a:3a:c1:f8:1f:ff:75:ec:25:be:7c:56:05:2e:8b:57:
e8:96:06:cd:44:e2:ee:9f:cd:8c:e7:b8:36:08:72:49:f5:31:
f1:36:43:53:8e:33:71:ff:34:16:e0:33:52:c1:8d:ea:32:b8:
07:d2:c9:81:dc:bf:37:d5:62:f6:cb:9c:c8:62:19:a3:95:cc:
21:15:3a:b6:06:fc:53:d2:61:bb:09:31:51:c1:56:bb:7b:b2:
75:c6:fe:01:ae:a0:8e:cc:f5:30:a0:8b:3d:bf:04:45:32:48:
95:1f:5d:5d:3b:8a:c3:d2:3d:9e:14:73:1e:3e:d8:7f:65:3e:
9d:d3:4e:db:4a:d4:30:af:88:67:c8:48:0a:d3:15:83:59:ac:
44:3f:a4:23:74:12:b5:e5:34:1f:5e:77:02:c2:10:fa:76:99:
66:75:9e:93:73:4c:6e:e4:ab:e1:9c:41:91:b0:79:12:f1:07:
a9:fb:9e:1a:ab:fd:c9:34:34:61:b6:0c:85:65:dc:7e:14:0e:
55:d0:17:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:08:29 2025 by rpki-client