Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: bx3JcNgxIyjhcIbR9+S2ytl6TzlNh4PamnHZ4NM7Xy8=
Subject key identifier: 47:4A:C3:2E:75:85:DF:7E:31:96:D8:C2:3A:84:B8:CB:A0:4A:5F:E9
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 0197523437D5D76A715E0530E425C52F4C11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 1580
Signing time: Mon 09 Jun 2025 01:00:43 +0000
Manifest this update: Mon 09 Jun 2025 01:00:43 +0000
Manifest next update: Tue 10 Jun 2025 01:00:43 +0000
Files and hashes: 1: 1hbevT8gwbMVGXnU3oslqDok4xQ.roa (hash: PvOSpkQG3GMAcOSv9DP0juXGFg1PxvMowO3npVuSH5E=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: PtsuYNLSJgrFP/RR9n6KybAIr4euB3ldz1Gnis1GFzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:37:d5:d7:6a:71:5e:05:30:e4:25:c5:2f:4c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Jun 9 01:00:43 2025 GMT
Not After : Jun 10 01:00:43 2025 GMT
Subject: CN=474ac32e7585df7e3196d8c23a84b8cba04a5fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:53:42:9b:88:5b:dc:59:9b:b5:82:d6:e1:35:
ed:b1:82:13:41:b9:ac:6f:76:e1:6c:a8:7d:62:b4:
d2:f6:01:82:e0:d1:92:bc:51:71:14:0e:b5:99:ca:
8e:5c:f7:ec:c3:d4:dd:42:14:2f:93:72:c0:92:e4:
48:42:8d:6c:5b:64:a5:d1:02:e7:2c:94:11:11:80:
79:cb:e3:47:ac:ce:95:17:90:40:bd:f0:10:fc:23:
75:ae:55:a5:cb:07:15:e2:d2:f5:df:a7:e0:aa:bd:
0e:a2:b0:f5:51:da:d0:ad:47:1a:58:b9:54:f7:8d:
8f:f8:48:12:d9:8f:48:d0:ba:0a:45:19:4b:b3:3b:
d8:67:85:16:fd:b8:77:4e:a9:67:d1:15:de:8f:9d:
9b:c2:73:12:e0:45:95:18:27:87:b4:fe:8d:40:13:
b5:fe:5c:45:a5:b5:5a:0b:fd:51:8d:08:44:1e:b7:
a2:1c:2d:ba:75:6f:f2:d9:59:ec:31:28:2f:ae:04:
26:53:9b:82:c0:af:91:b3:40:b1:a9:05:bf:bc:b2:
43:98:c6:23:b3:2a:9e:37:9f:a5:db:87:9d:82:08:
26:9f:1f:b9:c2:6a:e3:99:e0:e3:70:4b:30:33:b9:
d9:42:70:9a:82:68:ff:33:3c:32:1f:50:fb:a8:6b:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:4A:C3:2E:75:85:DF:7E:31:96:D8:C2:3A:84:B8:CB:A0:4A:5F:E9
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:65:5b:9a:4b:da:49:df:84:de:84:89:0b:83:0e:54:10:9b:
1f:44:eb:db:f3:d0:35:0e:2c:83:9e:a1:e0:82:1b:d6:58:03:
01:27:12:7a:3a:a1:f2:6c:61:d4:e4:1f:e1:96:6a:f9:2b:2e:
4d:28:99:e4:b9:97:4e:d7:ba:fb:fd:da:b7:fe:8a:a8:25:93:
af:6b:1c:d1:4d:4c:9d:f2:41:92:f5:61:cb:d2:a5:f5:04:10:
fb:d3:73:72:e6:8d:c7:76:a4:d3:4d:7e:00:65:6c:31:f2:7c:
17:a6:e0:d1:c1:5d:d9:8e:cf:c4:3c:d6:bc:46:be:12:88:c1:
93:b0:05:b4:b6:4d:d4:28:b3:d3:06:76:01:5c:8c:84:cf:cc:
ba:9b:12:d3:42:4a:7f:79:10:ac:88:f9:93:2b:96:e1:e7:d4:
33:24:62:28:3c:e3:9c:9c:43:fc:f5:db:a3:c0:45:ce:6c:61:
9c:62:f0:15:2d:c8:a9:1e:35:53:e7:fb:9e:02:e7:73:00:cf:
b0:a0:e5:01:47:88:c7:dd:a0:c5:fb:c8:69:21:00:cc:94:b7:
9f:0a:2e:f1:79:45:a7:87:76:93:9f:be:1f:b6:26:5b:45:fb:
bd:e3:60:91:08:db:ee:f3:f1:92:8d:d4:df:76:27:b7:b3:61:
eb:fb:16:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:19:04 2025 by rpki-client