Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: sfMx5LJZ3b/PZtE8fGnzIGtDfa6WFQWlmDIf/Ssr6oE=
Subject key identifier: E3:36:27:DE:F7:24:DB:98:1A:28:FA:BE:C7:3C:FB:AC:25:A2:54:BF
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 0198D4A8022FC347E7E11FF9BAD8A9641EC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 15DA
Signing time: Sat 23 Aug 2025 02:00:37 +0000
Manifest this update: Sat 23 Aug 2025 02:00:37 +0000
Manifest next update: Sun 24 Aug 2025 02:00:37 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: mATCdUptODNMIYrxcZhMWtEjHcsriVNvZZ8n39Y+5wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:02:2f:c3:47:e7:e1:1f:f9:ba:d8:a9:64:1e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Aug 23 02:00:37 2025 GMT
Not After : Aug 24 02:00:37 2025 GMT
Subject: CN=e33627def724db981a28fabec73cfbac25a254bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f8:6a:ce:4b:30:94:69:7f:2c:bd:a6:ad:04:
58:9f:74:dd:94:53:65:5a:41:db:5f:05:71:f0:9f:
d4:f8:5c:21:a8:98:6a:bf:0d:dc:c4:65:ed:be:1d:
ac:7c:5a:ab:92:f3:dc:f2:01:79:64:c1:61:52:48:
e9:98:f4:14:25:4a:c8:2a:c6:47:8e:e9:96:94:6c:
52:0e:00:fc:ec:91:dd:92:4c:73:c2:b3:12:a6:9c:
eb:d7:da:06:c7:9d:31:bb:d7:1f:e4:68:5e:5b:b4:
4f:fa:6e:4c:aa:c0:26:ab:54:1b:58:5c:41:e2:33:
29:85:53:1c:41:e8:72:3e:d1:64:ae:dd:92:c5:c2:
30:98:f2:b9:09:3e:c3:55:3e:2d:0b:84:e4:6c:74:
d1:d1:b0:a6:7b:84:97:ec:ec:fe:c9:e4:39:3b:3e:
52:d0:e0:4b:b8:58:cf:d6:33:4c:0b:7a:d8:b8:2f:
1d:14:d9:e4:41:ba:00:d8:bf:f2:85:07:a3:79:de:
0f:cd:cb:c3:76:69:2c:38:01:1a:85:2f:fd:15:d0:
dd:40:77:a1:08:fc:3e:28:49:e4:53:46:24:a7:67:
24:35:3c:b5:90:9a:57:6a:08:12:25:2d:37:49:9a:
e7:42:0d:aa:6b:bf:67:a3:cb:98:11:1a:86:8c:e1:
68:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:36:27:DE:F7:24:DB:98:1A:28:FA:BE:C7:3C:FB:AC:25:A2:54:BF
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:64:d8:fa:5f:23:1a:2c:46:05:97:bc:2e:13:6a:8e:63:c3:
78:fd:9a:a4:e1:79:30:b6:21:f3:51:50:a4:36:c4:c6:5d:c4:
e0:6d:5e:39:8c:f5:02:64:0b:1f:4d:d0:a9:38:23:23:02:13:
5e:ca:d8:7e:41:05:d3:23:b8:75:32:35:4e:d0:f6:7c:da:c4:
62:6d:4a:5a:6a:54:62:13:ab:05:f0:02:df:c0:4a:59:dc:b3:
5c:c9:a5:51:41:73:0c:74:f7:93:37:7d:11:a9:05:1a:59:a4:
3b:d6:6d:7c:f6:55:03:b9:f5:2b:6b:14:41:4d:09:3b:4d:3d:
4c:2f:90:aa:69:63:70:7d:98:65:44:7b:e5:51:e4:24:89:ed:
a6:24:ee:c3:03:c3:bb:4f:d6:ed:01:c2:87:3d:9c:dd:52:a1:
a4:bf:53:82:93:68:40:62:43:cb:e6:12:b0:1d:b6:b0:ea:71:
8f:bb:c0:31:b3:69:8f:e8:6a:96:0f:b1:2d:61:22:b2:1b:33:
67:d8:84:24:6d:0f:49:72:9b:c9:f1:a9:76:4a:e2:b3:98:93:
0b:fe:0a:b6:35:0f:6c:a1:26:dd:28:47:1e:d0:dc:83:27:6e:
bb:43:56:87:56:16:79:95:d3:fb:4c:f1:05:65:39:a1:7f:2f:
bc:ee:09:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:11 2025 by rpki-client