Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: NQ5/XyLB/IzAQn2+Ha7HHH1pI+mFvw2AHAs2KOTxMVU=
Subject key identifier: 28:E9:C9:2B:C4:91:63:A8:2D:EA:00:C4:E7:BF:F2:41:EC:74:F4:E8
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 0197C492F62D5917FBA81B4976DDBB414E0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 15B8
Signing time: Tue 01 Jul 2025 06:00:54 +0000
Manifest this update: Tue 01 Jul 2025 06:00:54 +0000
Manifest next update: Wed 02 Jul 2025 06:00:54 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: gacVOSWQcC2JUCFONVccTBfeRwDPl4lG3em3CbDwM10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:92:f6:2d:59:17:fb:a8:1b:49:76:dd:bb:41:4e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Jul 1 06:00:54 2025 GMT
Not After : Jul 2 06:00:54 2025 GMT
Subject: CN=28e9c92bc49163a82dea00c4e7bff241ec74f4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:78:a9:64:bc:7f:33:48:94:66:3f:a5:ae:c4:
6a:69:ec:5e:05:81:cc:4b:e3:9d:34:4c:64:b0:82:
ff:f4:33:2f:19:aa:2c:29:0a:f9:40:d0:df:47:3e:
cb:03:11:10:48:84:b9:13:25:22:45:e7:dc:ab:ad:
ae:23:0f:ba:67:59:e5:1a:f4:72:00:b4:76:b5:73:
ac:73:c3:34:4d:b3:8d:a0:7c:62:fe:66:3b:eb:1a:
93:b7:02:f1:9b:15:00:18:7b:b3:20:dc:35:ad:f4:
f2:e6:a3:47:92:79:ec:f2:0f:b2:c2:a6:bb:de:fe:
d3:d2:06:b0:ff:b4:15:cc:55:51:1c:65:57:d9:35:
47:08:d4:b1:26:0f:10:f6:88:16:75:be:eb:f2:b2:
68:f9:29:e0:bc:b0:ba:b2:b8:c0:86:36:73:57:03:
65:02:e5:9d:7f:01:7c:d8:12:4b:c0:2a:fc:90:02:
0f:8a:f3:fc:b2:e8:bf:79:c6:a8:ed:cf:f5:0d:47:
2a:9f:32:af:b2:cd:3c:75:af:12:86:99:d7:eb:83:
b4:88:7b:46:a6:05:f4:4b:96:50:5b:08:4e:82:46:
09:ce:5f:b5:b6:b1:27:3f:37:2c:b0:a4:38:44:1f:
a7:61:89:c7:85:9c:d9:47:90:e1:8e:b3:77:ee:30:
68:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E9:C9:2B:C4:91:63:A8:2D:EA:00:C4:E7:BF:F2:41:EC:74:F4:E8
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:8c:29:bb:c3:fe:13:9c:7b:e4:0c:77:57:65:06:6c:d5:8e:
6a:bb:13:72:b7:88:ef:30:db:1c:85:e4:28:33:b4:11:80:9d:
83:90:76:c7:84:df:52:ce:b0:d1:60:db:37:6b:c9:21:4e:8c:
c5:f6:e2:bf:e6:31:2f:9e:d0:73:68:64:3f:47:22:bb:6e:8f:
50:43:5a:53:37:5d:d5:de:aa:56:fd:e5:dc:10:52:42:e1:16:
e3:b7:ce:38:75:02:62:05:ea:83:9d:55:8a:73:8a:36:45:74:
77:31:9e:d2:b7:a0:f4:bd:47:3a:dd:52:a9:41:32:18:d0:50:
d3:9c:22:a7:77:f3:0b:44:3e:b5:94:a5:53:bd:bd:09:8a:8f:
77:14:d7:82:52:4a:b3:c2:d0:47:c0:88:11:02:28:a0:38:a5:
fe:0e:80:2b:cd:4b:5d:c3:12:97:9d:c4:0b:f0:34:29:55:3e:
95:29:bb:a3:88:34:c3:7b:6e:97:91:cd:42:6f:13:61:ff:35:
1e:25:99:0b:40:5c:4a:3a:93:12:4c:51:06:09:27:f0:0d:1b:
c1:dc:a1:3c:02:e3:32:4e:9d:c4:ae:60:99:a8:67:a8:18:7a:
f8:dc:57:bc:ba:b9:f0:d9:70:b7:df:57:6b:66:a9:88:42:64:
8e:b9:ef:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 15:26:33 2025 by rpki-client