Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: lwB9pdCM74HJzAkPwXkrIwSToStFbJFtPUm9c9M45oc=
Subject key identifier: F8:09:0A:43:4A:0D:E1:B7:7B:29:F8:20:94:FC:72:27:F1:5C:07:74
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019769615542879B32D2F051F54FFED7D67F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 13:01:15 +0000
Manifest this update: Fri 13 Jun 2025 13:01:15 +0000
Manifest next update: Sat 14 Jun 2025 13:01:15 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: 381qq2r2TZkvN0VhpVvlp+Xe69Cj5lcQ1/lcsUGwTmA=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:55:42:87:9b:32:d2:f0:51:f5:4f:fe:d7:d6:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Jun 13 13:01:15 2025 GMT
Not After : Jun 14 13:01:15 2025 GMT
Subject: CN=f8090a434a0de1b77b29f82094fc7227f15c0774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:16:8c:34:1f:72:3d:f3:b0:40:34:7a:ca:05:
5d:41:b6:b1:48:4f:e3:de:62:e1:99:86:63:ad:a5:
04:cd:a6:6c:59:60:13:ff:a0:fc:85:b5:35:23:91:
dc:e3:a0:34:df:d2:f5:58:ae:8b:de:8b:b7:ca:ac:
2f:5a:52:88:27:38:df:0b:39:52:66:da:98:e3:d0:
6d:73:16:bc:98:6d:28:af:c3:d8:8d:72:7d:5a:45:
27:d2:01:65:0c:e0:81:cf:59:7f:5d:c2:c2:81:f7:
0d:44:f4:11:3a:5c:ca:1b:ac:74:bb:26:98:c3:a4:
f0:5c:03:77:be:cc:76:52:d4:b4:bb:51:de:f1:83:
95:a9:c3:36:02:76:cf:64:6e:03:01:2b:76:ef:f6:
03:a3:b6:8f:1f:e0:ca:b7:26:2c:58:33:0d:13:21:
97:2d:43:35:38:eb:2c:cb:ba:4d:ee:88:65:6d:bf:
74:fe:cf:8f:b1:4c:75:92:f4:8b:57:db:aa:63:b9:
1a:81:04:8b:4d:0a:2b:ff:7d:ab:0e:ef:96:2a:6c:
ef:1f:10:04:2a:24:2d:86:7b:8b:1b:cc:68:ba:94:
f0:eb:76:60:21:5e:5a:2f:d9:96:25:dd:46:16:bc:
ee:cb:88:b6:b2:d9:b7:d1:31:fc:ae:40:3b:11:5c:
ca:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:09:0A:43:4A:0D:E1:B7:7B:29:F8:20:94:FC:72:27:F1:5C:07:74
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:0d:5b:39:34:10:e4:75:b8:5a:f3:09:77:ba:c1:c3:8b:8d:
ca:b4:65:f3:d7:08:91:44:b1:2d:fb:6d:d4:ef:40:94:b7:93:
68:43:c1:f0:a6:71:57:6e:8c:aa:b4:cd:73:f3:de:ed:3b:9a:
57:3e:a3:72:fa:50:bd:ff:3c:89:0a:46:f1:ed:bd:16:da:19:
69:b2:e0:14:9a:d3:5f:4d:f7:19:c9:a9:b5:ca:25:ef:2b:9a:
c8:1a:0e:3a:bc:f7:8c:29:51:f2:7c:ce:a9:f8:6d:96:35:56:
3a:15:60:4b:45:26:93:57:32:6b:52:6e:bd:52:dd:89:db:85:
d3:05:2d:91:62:ce:a9:91:ae:70:0f:d6:93:73:94:52:f7:96:
7d:05:45:6e:c6:4c:39:b7:6d:5f:77:18:c9:86:a6:3f:68:fa:
0f:4b:d6:52:d7:90:bd:bd:df:a5:99:30:c6:68:f3:1a:62:ae:
0e:3c:ca:bf:34:81:b3:2f:b6:f6:82:7a:f9:e0:65:87:a9:1c:
0e:fb:30:af:a3:26:a4:84:26:16:5a:47:d6:44:2a:95:07:6c:
62:22:93:cd:cb:fa:e6:6c:b7:05:e7:87:bf:0b:e4:4e:34:fa:
5e:d8:6a:2c:8f:78:f3:55:b1:2a:38:ab:cc:d7:8d:71:f3:12:
fb:c6:96:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:53:21 2025 by rpki-client