Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: VQniEBMfKR4sXkOTkmv7l2KiSJOq97pKlBmfvFYOJ7Y=
Subject key identifier: 6D:D6:84:ED:5C:85:53:C2:F5:35:A6:2E:BD:39:81:62:44:F4:CF:44
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 0197B6A0926ECDDE9736AB51F00E15CE03BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 073B
Signing time: Sat 28 Jun 2025 13:01:05 +0000
Manifest this update: Sat 28 Jun 2025 13:01:05 +0000
Manifest next update: Sun 29 Jun 2025 13:01:05 +0000
Files and hashes: 1: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=)
2: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: 8mGCEWmceBnHqap4aS1xOdcBHRIDQAXgsZkx76E8hto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:92:6e:cd:de:97:36:ab:51:f0:0e:15:ce:03:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Jun 28 13:01:05 2025 GMT
Not After : Jun 29 13:01:05 2025 GMT
Subject: CN=6dd684ed5c8553c2f535a62ebd39816244f4cf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f1:c3:41:a7:86:45:c8:27:ee:df:c7:12:6a:
3a:48:39:75:95:ae:29:2d:de:3a:e3:c7:5c:e7:f6:
4f:07:14:77:53:6a:4c:45:0c:47:4c:a6:2e:77:38:
59:04:61:74:a4:c5:2a:29:0d:b7:92:70:47:a0:c9:
07:29:f3:b8:84:a2:84:21:28:2d:84:13:53:7a:83:
60:61:72:93:f6:26:d6:0a:53:7a:6d:ae:1d:27:0c:
f3:f2:37:80:51:3b:e6:ef:9f:24:4b:2b:5b:0b:a0:
18:8a:39:24:1f:9b:01:ed:0f:3d:a6:23:38:10:98:
a2:06:8c:c2:02:e6:3f:c4:63:92:5e:c4:e3:0e:39:
70:ee:35:4d:78:93:09:a8:4c:23:81:43:0d:8d:5d:
b9:a5:e9:11:b5:77:33:c5:4b:74:a2:da:96:0e:91:
37:8f:2e:88:a7:c7:4e:c9:4e:dd:88:e5:2f:51:59:
27:26:fe:83:a4:b1:e4:9e:6a:10:af:78:71:d6:52:
fc:69:b7:89:1a:26:5a:c0:ce:80:36:4b:4c:c3:5e:
3e:fd:33:35:48:31:34:26:b1:65:e3:2d:77:ff:c6:
38:15:7e:73:4d:c0:04:48:35:e9:54:fe:da:61:ec:
5e:9e:1b:d6:c4:ff:af:4e:78:fc:d5:35:64:63:ee:
28:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D6:84:ED:5C:85:53:C2:F5:35:A6:2E:BD:39:81:62:44:F4:CF:44
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:51:aa:36:d2:6f:6a:ef:d9:05:2b:aa:7a:ea:21:98:38:81:
45:68:fe:ff:a9:a3:b3:61:30:b3:d6:38:29:ec:bb:f0:be:7f:
07:0e:5c:ad:2c:d0:1d:23:97:ad:f1:59:60:ad:1e:69:8d:62:
b2:9f:3e:ee:c9:8f:cd:f1:d0:9a:40:09:96:14:95:5e:b9:3c:
35:ed:b6:a1:3d:18:3b:f0:88:d5:47:c7:10:b8:95:2a:e6:77:
26:75:2b:01:8e:83:64:ee:43:55:e4:6c:5d:ef:d9:59:fa:3e:
53:19:26:e5:89:ab:71:bb:c4:d6:a0:40:be:0b:7e:56:41:c5:
d5:bd:ab:61:fc:07:41:9a:ec:5d:21:97:f8:2e:ed:f9:50:1b:
8f:4b:6b:9d:8c:bd:3b:71:95:f3:15:62:1f:c5:0b:7d:8d:c6:
33:f6:e8:b1:c5:02:20:23:39:10:43:f9:fa:67:cf:9e:dc:e4:
c0:46:03:63:4b:0f:74:49:1d:ec:54:23:97:10:29:9a:80:10:
5d:bf:b2:9f:ec:69:5d:d2:7d:2a:b8:59:54:e9:0d:d2:61:da:
c3:27:3a:56:9e:f4:08:ac:1f:43:b1:c9:62:5a:ef:87:43:b5:
64:a3:28:19:a9:be:52:77:62:3f:7d:0c:d5:15:44:1d:c9:eb:
22:c1:64:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:36:40 2025 by rpki-client