Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: Dx/M5vImB2MOcJVAk1Q9FIotPRD2cz+01IBA5c4xQlE=
Subject key identifier: AF:69:44:2B:A0:EA:DA:D3:A8:81:43:56:D2:34:33:DA:71:DB:12:F5
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019765847C0873D9B9C06B30438E59E08D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 19:01:10 +0000
Manifest this update: Thu 12 Jun 2025 19:01:10 +0000
Manifest next update: Fri 13 Jun 2025 19:01:10 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: 6zsdXmyQFadzpxkJua0cNkzI/pjUJZ/kfgJstUO64Cc=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 15:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:84:7c:08:73:d9:b9:c0:6b:30:43:8e:59:e0:8d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Jun 12 19:01:10 2025 GMT
Not After : Jun 13 19:01:10 2025 GMT
Subject: CN=af69442ba0eadad3a8814356d23433da71db12f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6e:ba:09:30:40:a9:ea:fc:d7:26:86:39:20:
6c:9b:7d:9a:9b:92:31:10:d6:cc:cb:1e:54:7b:82:
c2:70:4a:e8:38:50:44:ab:c0:18:15:a0:27:d0:eb:
2c:b4:95:ac:2e:fd:56:c7:25:d0:2b:33:cc:14:8c:
91:49:3d:05:0b:ab:c1:fc:5d:6e:04:a4:94:9a:fd:
93:39:17:87:24:44:94:c0:85:ad:89:cb:db:46:0c:
58:51:8c:98:13:81:bf:00:99:1a:3a:bd:6a:5a:a8:
eb:16:3d:0c:40:d5:cc:18:81:98:bb:ac:67:b1:4d:
e6:29:0e:13:f1:59:cb:5d:62:83:26:18:84:2b:3a:
da:01:73:a6:89:0f:29:fc:59:02:1f:3e:9e:83:89:
47:83:67:32:8e:65:56:e4:20:6d:7d:54:28:8c:91:
2e:c7:38:0d:0d:ff:16:de:17:25:76:8e:5d:b1:04:
f9:38:9b:90:52:5a:9b:4f:81:53:e4:e8:fb:bd:a4:
6b:64:19:d2:9a:14:b5:26:e5:32:cf:03:14:a1:40:
33:39:e0:2a:e0:a2:27:98:46:44:fe:d3:98:f1:af:
f4:7d:d6:dd:d9:a9:80:2f:15:49:81:a8:9f:34:b3:
5a:69:b9:f9:12:b2:42:b5:57:ff:9c:47:74:fe:fe:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:69:44:2B:A0:EA:DA:D3:A8:81:43:56:D2:34:33:DA:71:DB:12:F5
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:67:36:1b:61:2a:82:ed:64:a3:9e:30:55:96:29:d3:fb:7a:
a3:6b:cf:27:2b:13:51:76:a5:a3:e0:86:d2:58:f6:47:88:21:
65:66:29:bf:77:c7:0d:66:b4:8d:a6:c1:b8:e5:42:32:eb:92:
27:8a:34:fe:19:7a:16:0b:70:0b:b5:91:0b:6e:fd:0c:29:c7:
6f:42:07:e5:a2:44:18:be:55:05:a5:bd:d4:c7:7d:ae:f8:cf:
8b:67:11:6c:1e:33:12:dd:cc:dc:a4:5b:c6:e5:3c:88:10:58:
1e:bc:33:48:22:28:cc:b4:de:2c:6b:e6:d2:9d:be:11:6a:09:
68:8d:f4:fe:dd:54:60:86:a0:0d:3b:9c:b5:ea:d1:76:44:56:
f9:0c:0c:11:65:db:c4:d4:95:49:d5:1f:00:b8:cf:6c:51:14:
ae:f8:0b:65:81:55:f9:d9:e0:5d:89:27:34:4e:4d:43:ff:e4:
a8:01:69:9f:13:67:05:dc:20:58:e2:fe:58:2b:50:36:13:e9:
91:30:55:45:e3:65:d6:1c:00:20:32:d1:18:86:fd:9b:9a:91:
6d:c6:7e:4d:8d:d4:b1:0b:6f:ca:37:66:64:fa:2a:13:6f:ad:
d4:44:9d:34:8e:c2:56:a2:f1:8d:37:8f:45:31:60:74:16:fc:
0e:13:8a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:06:12 2025 by rpki-client