Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
File: Heds5TXPuOIW7A0k3rV50aTKDgY.mft (raw, json)
Hash identifier: FfIo5tCoGLsTv4urYwV67uptVUQTfPWJT65leRs+6j8=
Subject key identifier: 63:2E:4C:60:1C:63:F4:1E:E3:F7:B2:95:DE:16:A8:FF:22:CD:16:F9
Authority key identifier: 1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
Certificate issuer: /CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Certificate serial: 0197B7B323255E6FE096A2574D35295FC7DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
Manifest number: 02E7
Signing time: Sat 28 Jun 2025 18:00:59 +0000
Manifest this update: Sat 28 Jun 2025 18:00:59 +0000
Manifest next update: Sun 29 Jun 2025 18:00:59 +0000
Files and hashes: 1: Heds5TXPuOIW7A0k3rV50aTKDgY.crl (hash: IYeydn85NmyYdkTxFd0qQ2gDtVmgTduoyIXG4v1cTBo=)
2: Xrjd26KSD1TzQLdbZ0iBnuMSgeo.roa (hash: EiQGdbjr/bLCsj+VsiQM91wVnJzTPBjoFf00fG7D2D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:23:25:5e:6f:e0:96:a2:57:4d:35:29:5f:c7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Validity
Not Before: Jun 28 18:00:59 2025 GMT
Not After : Jun 29 18:00:59 2025 GMT
Subject: CN=632e4c601c63f41ee3f7b295de16a8ff22cd16f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:23:bd:06:68:9e:82:e8:93:6e:1f:dc:b3:
11:93:d2:4b:58:a7:77:87:61:98:35:94:3f:b0:a7:
74:b7:02:b4:79:68:2e:0d:ab:31:be:fd:f7:26:00:
e8:df:38:03:f2:8d:ce:5c:a8:95:12:5f:90:6f:89:
f8:33:a1:7e:a4:06:d9:35:51:ec:42:43:d2:7c:ab:
27:1b:9a:cf:0a:47:75:d0:3b:dd:5e:b9:f5:20:4b:
22:b6:8e:f8:d0:77:e5:83:17:5e:51:ce:a4:4c:32:
1b:2d:16:14:39:b9:43:f6:c7:7d:cb:cb:53:2e:a1:
b6:4c:96:b5:55:1e:b9:d1:27:ae:0c:18:b5:40:78:
42:4c:fc:42:c1:a8:3f:2e:51:64:ec:6f:f4:ea:dc:
2f:2a:e3:1a:0d:83:f3:a2:cb:ba:c4:90:21:e6:a9:
8a:b0:9c:86:e2:61:85:f2:d6:91:c5:36:dc:c2:e3:
e2:ac:57:e8:81:19:2a:64:ff:d0:8e:cd:0b:c7:1e:
b9:47:bc:a8:ff:f4:2d:b0:23:fe:fe:97:a0:1c:21:
f2:bb:43:76:28:bf:48:7d:02:47:cc:28:c1:7b:3f:
33:46:79:64:ee:35:a5:76:47:19:84:9d:19:88:3c:
29:32:62:66:bc:eb:d6:dc:46:9d:cb:f3:d2:5a:4d:
bc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:2E:4C:60:1C:63:F4:1E:E3:F7:B2:95:DE:16:A8:FF:22:CD:16:F9
X509v3 Authority Key Identifier:
keyid:1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a8:a3:c2:75:0a:10:29:c0:6a:ef:a3:5c:41:6f:2a:be:76:
78:0f:de:c8:50:b6:86:d5:4d:60:48:73:3f:43:60:76:04:c1:
f2:f0:fe:8d:2e:13:8a:51:48:79:65:9a:75:74:86:4d:78:99:
3e:8e:9f:7a:e0:06:7e:50:48:d7:2b:14:ee:79:ad:af:e5:bc:
e7:55:36:0b:c0:20:1a:1d:bb:23:12:4f:97:2b:b7:5d:d3:fd:
af:49:b5:45:eb:e2:5f:bf:72:75:2e:9c:de:1c:e8:ff:10:f2:
01:af:6e:2c:1f:79:66:dd:79:e1:eb:fa:2c:47:68:69:21:1d:
5c:4c:37:2a:7d:e9:5a:01:36:9c:6e:c0:d1:48:ba:4d:10:c9:
9c:c9:4d:af:16:0a:86:7f:e1:2d:db:2a:69:9f:94:67:50:8e:
7b:c6:c0:d4:43:0b:3d:40:ed:27:bf:99:57:39:8b:29:5c:aa:
7a:1d:2b:c3:94:02:49:9a:7b:e7:b8:5b:ce:41:35:56:62:ef:
64:e3:df:3f:8c:4a:a6:1d:83:67:76:f9:53:6e:4a:e4:a3:66:
81:a8:ae:db:8e:3a:30:22:01:32:71:88:84:21:8c:49:30:3a:
18:b1:35:64:73:d5:e8:ca:52:69:db:15:b8:57:03:9f:1f:47:
01:08:51:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:24 2025 by rpki-client