Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json)
Hash identifier: cpZriJ8CgQRWDVi4anY1xi+5rfpln7Nqt2gFSVDpRT8=
Subject key identifier: 8F:EC:56:67:FF:DC:F2:0D:14:CC:0E:15:E9:BD:F7:3E:D0:8F:F4:3E
Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Certificate serial: 0197C614F7BB7F8D202FC9D094CD6CA48CA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
Manifest number: 110E
Signing time: Tue 01 Jul 2025 13:02:32 +0000
Manifest this update: Tue 01 Jul 2025 13:02:32 +0000
Manifest next update: Wed 02 Jul 2025 13:02:32 +0000
Files and hashes: 1: DLIEmy-lWsyrr-sd36twYuEevio.roa (hash: aUcurTUu0ie7YyEr+ll+2DTq3WZheC8vTveKU2r56C8=)
2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: 0Imaz6QMMSJWwsg2huqse6osZDgxgU1cdL7ab+SmlyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:14:f7:bb:7f:8d:20:2f:c9:d0:94:cd:6c:a4:8c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Validity
Not Before: Jul 1 13:02:32 2025 GMT
Not After : Jul 2 13:02:32 2025 GMT
Subject: CN=8fec5667ffdcf20d14cc0e15e9bdf73ed08ff43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:06:ed:02:ae:6d:ec:c4:cf:2a:3e:71:ad:81:
28:f6:7e:48:53:b7:5b:3c:61:17:74:8f:d7:c4:51:
c3:07:be:0d:14:5e:76:e4:e2:32:c0:97:21:e1:8c:
e4:a6:17:79:9a:3f:57:f0:72:a8:51:a3:23:41:30:
90:b2:82:0e:ce:6b:0f:ea:1d:3a:b8:14:78:63:3b:
b2:3d:0e:de:07:04:d1:7c:8f:d6:8c:ca:a4:26:ff:
f4:34:07:0d:1f:05:45:35:c5:87:50:30:a2:9e:26:
cc:ea:70:12:5d:7c:5d:03:ad:b5:62:19:bf:12:d0:
11:9f:f8:94:b2:75:4c:ed:17:f9:09:a1:cb:2b:47:
24:34:6e:66:a1:ba:c2:da:91:13:6c:73:08:e9:f5:
1f:7b:13:3d:54:79:45:d3:0d:70:a0:15:a4:d7:31:
cf:ea:35:70:00:2a:b9:38:83:e1:36:40:8f:85:95:
66:ac:b1:24:3d:91:ff:bf:f7:0a:d2:c0:46:9f:46:
d9:09:8f:03:a3:59:98:d0:dc:90:42:4b:9f:64:ac:
ad:fd:ed:7a:e2:d9:5b:97:47:73:59:5f:c8:24:38:
22:a2:4b:29:4a:2e:ee:67:73:06:e9:8d:51:6e:21:
9d:b7:29:70:a5:8e:a1:09:7c:22:3b:78:62:fe:ad:
dd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EC:56:67:FF:DC:F2:0D:14:CC:0E:15:E9:BD:F7:3E:D0:8F:F4:3E
X509v3 Authority Key Identifier:
keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:60:52:9c:0e:1c:08:f5:41:98:4a:0e:f4:74:c5:ae:3e:74:
a5:72:d0:dd:ae:8f:62:d4:13:c6:9c:7c:13:8c:a2:02:c7:9c:
4c:31:4e:49:aa:19:ae:2a:09:ce:7c:81:d4:f2:20:6f:e4:2f:
31:29:03:08:4e:32:bf:fc:3c:21:75:1d:83:72:94:c9:9b:37:
ef:b7:b9:fd:00:44:74:db:99:ae:39:44:09:4a:2d:8b:49:9b:
9a:e3:a0:d8:25:c7:a3:fc:49:b5:c0:f5:39:73:cc:f0:54:ad:
49:5a:4b:30:0d:26:cf:b7:ce:e5:d9:e5:59:19:bb:a8:6b:a9:
3a:31:d0:fe:d9:7c:3e:a1:83:30:bb:3e:93:11:cc:a8:ec:c3:
5a:49:13:08:0a:88:1b:65:86:ab:c2:a4:b8:dd:e1:f4:65:e7:
4d:0c:e0:b7:9b:b8:27:f1:0f:67:1c:66:cd:17:0c:f8:a6:e2:
48:08:09:22:08:a0:8c:f0:dd:a5:86:c8:33:92:7d:a8:56:43:
8f:e8:64:81:e6:f8:99:9c:76:71:a6:f6:84:38:f3:2e:e4:01:
ef:43:ec:59:15:bd:ff:bc:2d:8e:0b:fe:20:d2:39:f9:89:fd:
36:1e:f2:b9:16:6f:d9:3a:db:01:10:ea:0a:ac:56:14:90:16:
a1:4c:96:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 16:07:44 2025 by rpki-client