Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: SSk+ZB6JBgezQ2+whjWqBb71+swiLUj6zHKEzq2ul24=
Subject key identifier: D3:E3:11:19:B1:85:34:EA:98:1A:5C:3D:F3:1E:EA:B2:96:DB:04:68
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 0197B6D7B003665AACCAF914FE208B5CD0DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1546
Signing time: Sat 28 Jun 2025 14:01:17 +0000
Manifest this update: Sat 28 Jun 2025 14:01:17 +0000
Manifest next update: Sun 29 Jun 2025 14:01:17 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: vYrVxujVwMPipmrjHKkiiUIw9F3Eb8aeFSnxAoHuRbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b0:03:66:5a:ac:ca:f9:14:fe:20:8b:5c:d0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Jun 28 14:01:17 2025 GMT
Not After : Jun 29 14:01:17 2025 GMT
Subject: CN=d3e31119b18534ea981a5c3df31eeab296db0468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:8a:da:31:ca:c8:0c:89:78:ca:e7:c8:bf:
ba:8a:89:c2:b9:2b:b0:58:f7:0d:62:6c:a7:63:a4:
02:a0:aa:90:1c:e4:65:49:f2:8e:7e:94:f6:f9:3c:
14:df:cb:82:05:2d:23:97:8d:c6:fb:b3:aa:f1:59:
97:38:02:05:10:23:77:7b:1b:f9:d5:3b:0a:10:5d:
af:95:17:cd:2d:ff:b6:e2:f7:b7:2f:ca:c8:04:a7:
c0:1d:db:03:b6:2c:e3:20:9d:32:24:42:bf:06:28:
8d:e0:23:4c:6d:3e:46:1e:66:19:d6:b5:6a:8a:56:
d0:b8:a0:f6:ca:60:77:ca:60:cf:0a:15:56:7b:bd:
52:10:56:9a:cb:8c:ad:34:46:d2:61:5b:e8:ff:4f:
04:43:be:ea:2e:85:d1:00:bc:f2:5c:1c:9f:4c:27:
53:41:2d:0e:ba:09:1a:96:23:90:13:eb:d6:9f:8d:
46:dc:1d:e5:38:b5:2a:ab:3a:8b:48:7d:ff:a9:4b:
3c:cc:03:65:3b:54:bc:54:9d:90:78:d7:7e:14:8b:
4f:66:9e:3f:f7:dd:5b:3d:b7:2d:08:0d:a5:e9:03:
02:e4:35:1d:76:26:7e:88:c8:bb:21:dc:a5:78:45:
4e:97:9a:cf:4e:aa:9e:b0:66:ea:fa:47:c5:79:e6:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E3:11:19:B1:85:34:EA:98:1A:5C:3D:F3:1E:EA:B2:96:DB:04:68
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d0:82:46:c1:64:b7:0b:ba:02:fd:a0:49:6a:71:21:3b:23:
68:59:ec:c9:bd:98:95:8f:e0:8c:0f:50:26:dc:ef:61:50:2b:
16:e8:76:6e:6f:e5:c1:6e:dc:bc:d1:2f:42:30:6c:b5:72:07:
d5:a3:c7:ca:3a:74:67:e6:18:d3:56:71:36:cf:03:f4:dc:ab:
9a:90:10:2d:dc:3a:fc:86:e2:4f:e0:69:86:f9:40:7b:fb:10:
0f:97:2d:c5:ef:f4:b6:75:4c:ec:ff:47:b2:71:e8:f9:d5:37:
a3:15:9a:a7:ac:48:2e:02:6b:36:69:4f:12:d3:66:09:6c:f2:
ec:14:c0:f7:08:09:6e:55:30:0c:f3:52:0f:bc:1e:71:74:7b:
97:02:fb:cd:bb:c8:dc:18:bb:08:95:e0:51:e2:30:65:0f:09:
39:75:a3:3c:9c:e4:9a:12:63:c8:98:aa:db:b1:77:35:1f:a4:
44:54:2b:02:77:cf:c3:54:da:8e:49:61:46:07:7d:6d:27:df:
a3:92:b0:0f:21:2b:93:27:cd:04:be:7c:b6:7a:3f:9e:0e:7e:
f2:b0:1c:b9:48:01:c2:ab:ac:0f:0b:5b:2f:ab:ca:bd:86:4e:
c7:27:09:2b:bd:fe:29:41:c4:87:23:d5:f8:10:29:1a:57:ea:
9f:f5:32:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:26 2025 by rpki-client