Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: RmUcJa/5G/EHPgjrLqX/99M9Ko3gJQw3WFWS/e5LgEc=
Subject key identifier: 11:97:A7:CE:DD:12:88:AB:B4:09:1C:77:3D:C4:C6:B9:5B:CB:01:6D
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 0197B9A1B29E0876DA932C48599D8BEC8200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0EC3
Signing time: Sun 29 Jun 2025 03:01:11 +0000
Manifest this update: Sun 29 Jun 2025 03:01:11 +0000
Manifest next update: Mon 30 Jun 2025 03:01:11 +0000
Files and hashes: 1: IVTm7Sk0HOhJBNyed6XFY_Z2R94.roa (hash: i1RGEeFc6A0tWd9gQ48945gkWc6E43q8yFMFeZXbGTI=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: 551D+BxHLKDKeGoS/aWbm8RNAWXupam3O7tFVi+HuvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:b2:9e:08:76:da:93:2c:48:59:9d:8b:ec:82:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Jun 29 03:01:11 2025 GMT
Not After : Jun 30 03:01:11 2025 GMT
Subject: CN=1197a7cedd1288abb4091c773dc4c6b95bcb016d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:74:53:2d:39:54:51:99:ca:45:4f:f7:e5:
5e:47:6a:68:ae:06:51:53:29:d2:78:84:eb:6a:02:
a8:81:f4:c0:be:c1:03:ba:b8:1d:51:23:dc:cc:38:
b6:17:fb:ff:f5:24:1f:40:9f:2c:80:4e:f4:cd:59:
4c:09:98:55:25:3a:fe:f8:c7:af:b1:8c:ba:ed:2c:
2f:54:16:36:36:72:d8:91:42:c8:f9:14:71:6f:e9:
35:14:87:77:79:81:f8:35:ee:a2:e6:e5:bc:df:62:
e6:fb:e5:e7:3d:75:6d:cc:a1:b3:be:be:d4:31:e6:
52:b6:50:78:87:55:13:61:71:72:e2:ef:6e:14:97:
ff:fd:ed:8c:3a:58:e1:e4:97:b9:8c:da:8a:8d:b5:
eb:eb:3d:bf:60:79:3b:2c:6f:5c:a8:9e:31:c7:34:
ec:51:59:eb:e3:2b:98:c2:32:24:93:f4:22:6a:01:
79:ae:b4:3a:fc:25:a6:78:4a:4e:f3:8f:04:0f:1c:
82:4d:66:5d:56:8c:8d:f2:af:1e:a0:ad:6e:97:c6:
89:b5:8f:23:69:bd:5b:85:7f:76:f1:c6:ab:c0:5e:
ce:b0:8f:07:84:28:5b:29:4d:fd:29:33:d3:18:c9:
06:eb:f8:38:91:af:9d:3e:c4:86:1e:bd:32:8b:38:
3e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:97:A7:CE:DD:12:88:AB:B4:09:1C:77:3D:C4:C6:B9:5B:CB:01:6D
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:4a:35:e2:77:22:e5:fe:39:7d:d5:8e:82:1b:25:dc:df:54:
93:bf:d2:d3:62:a4:91:38:6b:3e:06:5b:89:77:3d:eb:9a:e0:
8c:47:31:96:79:09:c1:36:2b:d6:67:48:22:e1:88:08:46:6a:
68:45:76:bd:06:21:fa:03:f9:2e:72:69:03:a3:e9:8a:89:88:
07:10:e4:ac:c4:54:03:18:1d:df:3c:39:ca:8f:2d:04:0a:f2:
e3:3a:6b:93:64:df:30:e5:9e:ef:94:09:c9:da:eb:2d:bd:1d:
41:2f:3a:30:31:47:d3:04:e3:10:97:fd:84:17:c2:6b:34:1c:
a7:c1:94:7c:00:1c:07:5d:3c:66:df:d1:5b:f0:2b:b8:24:b5:
01:c5:58:de:b0:9f:a4:4a:a1:63:02:74:c5:fc:b0:27:53:eb:
cf:10:67:8b:22:8d:be:0d:63:c1:79:da:e0:c6:49:62:2e:21:
10:a5:89:e4:c4:41:e2:bf:7e:47:96:39:2e:aa:9f:23:ca:8e:
f2:82:a7:51:65:14:bd:65:17:d7:a8:29:3a:67:68:71:42:4b:
b7:d1:57:2b:30:90:78:bb:de:3d:9c:6f:3c:16:42:8d:c7:16:
3c:26:b4:58:4c:1d:d9:dc:58:11:58:d8:28:d6:68:6b:1e:68:
c1:d5:1e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:07:27 2025 by rpki-client