Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: 6aebYkX9Z9NBVEq7Yi+8wHdlxgVSltmTqkegs8X4GD0=
Subject key identifier: FB:4A:4E:F9:DE:B5:A3:73:7C:A2:07:6D:B5:89:A1:5F:89:A3:2D:AF
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 019767728236AB184C126E060A9332D160AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 158B
Signing time: Fri 13 Jun 2025 04:00:46 +0000
Manifest this update: Fri 13 Jun 2025 04:00:46 +0000
Manifest next update: Sat 14 Jun 2025 04:00:46 +0000
Files and hashes: 1: 1hbevT8gwbMVGXnU3oslqDok4xQ.roa (hash: PvOSpkQG3GMAcOSv9DP0juXGFg1PxvMowO3npVuSH5E=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: UJXmHzbvt/PMoHnFxaMfuHjhqHPKBbmZV2Ckh7KY0+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:72:82:36:ab:18:4c:12:6e:06:0a:93:32:d1:60:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Jun 13 04:00:46 2025 GMT
Not After : Jun 14 04:00:46 2025 GMT
Subject: CN=fb4a4ef9deb5a3737ca2076db589a15f89a32daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:aa:f0:ce:1e:90:51:96:44:ed:a4:cd:eb:
3d:c1:30:aa:5c:56:8f:80:4d:4f:16:ea:37:b9:89:
a2:f8:92:e0:77:95:28:a9:30:a4:85:72:7e:82:ac:
22:24:99:4c:f0:86:0b:66:16:3d:d0:72:29:81:a1:
1c:72:ef:46:a4:ca:16:7f:84:2c:d9:1e:48:05:33:
57:86:3e:c3:7f:57:5b:9d:13:1e:71:cb:d0:1c:c8:
7b:52:31:07:ea:81:55:69:75:73:12:1a:48:63:89:
01:cc:5f:a8:30:81:56:8d:f7:b6:8e:26:bd:3e:27:
be:60:d8:75:33:ba:38:19:a7:69:54:e4:95:0c:28:
47:22:8e:53:f7:d0:74:7c:69:4e:23:03:5a:59:13:
a7:02:7a:13:23:23:75:0e:61:5d:c9:f5:3e:fa:56:
4e:20:c6:cb:52:50:dd:69:f0:33:41:53:e1:98:18:
76:19:21:fb:a8:83:6f:cb:cf:db:25:33:35:5a:42:
f3:66:86:89:2b:33:e1:8b:10:40:f7:f5:cb:e8:cd:
bd:a8:aa:d7:dc:22:25:36:d5:62:90:74:bc:f5:d8:
92:70:56:d4:aa:e2:e8:7e:65:67:68:b2:98:80:78:
50:52:33:09:f6:28:e5:a6:46:77:83:ac:c2:51:dd:
c1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4A:4E:F9:DE:B5:A3:73:7C:A2:07:6D:B5:89:A1:5F:89:A3:2D:AF
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:3b:35:ad:67:1d:ac:c5:c8:41:5b:9b:db:aa:ab:d9:a8:ae:
3c:1b:0c:5d:aa:c2:da:87:74:da:9e:12:c6:0e:67:1a:3c:43:
f5:14:45:26:87:52:f7:22:93:26:1e:ba:82:b1:d9:45:81:ce:
2c:44:64:2e:e0:39:ee:08:e0:2d:24:fd:a2:fd:f7:2c:4d:08:
f1:a0:20:ce:ef:3c:80:1c:aa:93:e3:c9:06:d8:02:c5:68:22:
f1:6c:02:59:22:26:20:08:c8:fb:dd:f6:99:32:84:e1:76:56:
0a:a6:08:03:fb:7f:e6:50:80:22:a5:35:19:11:f2:25:f6:6a:
33:31:df:e5:21:1c:2f:31:09:e1:90:8c:e7:03:fe:13:9f:45:
8f:a8:fc:f1:b6:5b:3a:3a:98:b3:eb:7c:cd:8a:84:0a:61:56:
bc:aa:63:cf:65:22:ec:10:69:a9:ab:1b:76:d6:a9:2e:ee:fa:
38:ff:80:87:d6:3d:06:9d:3d:d6:b6:68:ef:08:e9:dd:a2:8d:
72:2a:ef:4b:9c:4b:9a:49:d8:0a:a7:ee:f1:8c:79:f5:fa:7b:
eb:8a:ea:7f:dc:0f:9a:71:63:f6:12:24:0a:77:23:e8:b0:ad:
e2:e0:b5:52:5d:72:1f:f3:9a:00:5c:a4:f4:5a:e1:26:11:00:
ca:d7:1b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:51:30 2025 by rpki-client