Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
File: hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft (raw, json)
Hash identifier: IfVzIvDojSccLu4JbWuhTAApH1ELSXPzJGZfujpF270=
Subject key identifier: C5:D7:D7:74:ED:49:1C:3A:F8:FD:EF:2D:23:69:96:B1:69:89:52:5E
Authority key identifier: 85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
Certificate issuer: /CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Certificate serial: 0197469E26B8A6C3525FAE393DD6F99D3127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
Manifest number: 157E
Signing time: Fri 06 Jun 2025 19:00:59 +0000
Manifest this update: Fri 06 Jun 2025 19:00:59 +0000
Manifest next update: Sat 07 Jun 2025 19:00:59 +0000
Files and hashes: 1: KUCsTzvnwNnMm7Jeca6aVL9k1f0.roa (hash: 08CBdTpQIdxpgYISvMqyNDiM+ICQK0H520OtR31swUg=)
2: hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl (hash: ThRTOXulzSiSi6C9b4C6aSCcVNz3mHvDR1UEEjNOeMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:26:b8:a6:c3:52:5f:ae:39:3d:d6:f9:9d:31:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Validity
Not Before: Jun 6 19:00:59 2025 GMT
Not After : Jun 7 19:00:59 2025 GMT
Subject: CN=c5d7d774ed491c3af8fdef2d236996b16989525e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:fc:53:83:2b:ea:44:fb:58:b1:b8:d6:df:
1b:d2:cc:84:bd:a3:84:f9:01:bb:56:d7:66:5d:85:
e7:88:40:f8:f1:6b:b2:34:04:e8:dd:1d:9a:56:8f:
3f:36:19:0b:3a:9e:7b:61:96:5b:2a:39:7d:29:11:
61:b5:6a:4c:02:ef:dc:41:71:53:9f:7f:63:ea:52:
76:a9:e5:4c:ab:5f:c3:e0:3d:a8:a4:6a:24:5d:75:
c6:3b:a2:a2:5e:2c:dc:8a:31:e7:45:6f:10:5d:1c:
e5:f2:3e:02:d2:c5:d1:e0:c8:83:5d:9d:3c:27:05:
aa:32:87:cf:52:11:a0:e5:bf:83:1b:c9:b7:fc:7c:
42:e5:5b:a2:c7:8a:e9:03:13:9d:dc:a6:04:b6:de:
65:b5:68:15:06:12:0c:44:b4:cb:44:cd:6d:07:06:
05:64:c2:f2:bc:a7:5c:a7:dc:45:e1:6e:4d:01:22:
15:88:1e:97:f5:c7:31:be:44:2c:9f:5c:13:41:03:
5a:5f:3c:18:6e:c1:a4:d9:6c:d8:52:c1:c1:7b:38:
ca:68:45:af:f1:9e:f7:7f:94:b2:ab:c5:45:d6:24:
91:d6:dd:f5:d8:4f:1d:2c:bc:d1:cd:29:91:ee:2f:
36:8e:9c:04:d3:b9:4d:fd:83:61:c4:70:a6:fd:e3:
42:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D7:D7:74:ED:49:1C:3A:F8:FD:EF:2D:23:69:96:B1:69:89:52:5E
X509v3 Authority Key Identifier:
keyid:85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:46:a5:a8:99:21:d9:d6:c5:00:e9:3a:06:06:97:23:47:dc:
79:f7:35:76:0e:d5:5a:3d:ac:3c:c5:11:76:b6:65:3b:3e:7c:
ca:06:a7:8d:4a:40:40:51:7f:31:3d:35:ed:bc:d5:47:ac:03:
77:1f:ca:95:3a:78:66:f0:c5:71:d2:f4:fa:93:49:da:ca:9a:
9a:90:87:08:fa:52:c2:f5:50:1d:fc:3e:7f:c5:02:4e:bc:38:
a7:c4:3a:0c:2a:be:80:f2:40:fc:bb:b9:72:3f:f5:14:3b:7e:
f2:d7:81:49:81:cc:8f:a5:f0:2b:00:63:2f:49:13:dd:a9:0f:
b7:a4:7e:12:f5:e2:6f:26:01:f2:f1:54:0b:9f:ea:8d:9e:d3:
50:81:e8:cf:f4:4f:90:34:00:d4:d7:43:cc:3f:3c:3a:ec:de:
8c:87:08:b6:0e:4e:f2:86:89:8d:00:ee:1b:de:e5:e3:3f:d6:
75:86:d6:b1:7c:07:e3:8e:14:2b:cc:3b:be:8b:0a:e8:54:e8:
59:b5:9c:cf:58:62:95:1d:ab:ed:64:37:34:43:4f:46:9a:88:
a4:0a:06:99:ab:cf:59:b6:45:dc:94:94:73:82:cc:b2:15:7a:
cc:2c:97:24:b1:45:45:e2:2c:92:f8:49:e0:91:d9:8c:64:52:
76:b0:7c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:25 2025 by rpki-client