Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json)
Hash identifier: KnBWQ4DFJbDPF4tT7Y4cgkD1IiuutzOaHMNYgxVYFwo=
Subject key identifier: 66:74:B2:1C:78:8A:E0:0C:5E:5B:66:3D:60:7B:0E:10:D3:E3:23:52
Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Certificate serial: 0197B9A1669C85FFD0A05C96121088B662DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
Manifest number: 01D9
Signing time: Sun 29 Jun 2025 03:00:51 +0000
Manifest this update: Sun 29 Jun 2025 03:00:51 +0000
Manifest next update: Mon 30 Jun 2025 03:00:51 +0000
Files and hashes: 1: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: VCXR/0fe4mNne2jMnhl6ePx8ZZWXLSCH30HmE9nOQNs=)
2: uLnIOwRkGxrsBbDo0gQE4-hCZ48.roa (hash: s37fBcagBo3TMxYLMpYCF62YuISi5XxqQMy7wxYlEsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:66:9c:85:ff:d0:a0:5c:96:12:10:88:b6:62:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Validity
Not Before: Jun 29 03:00:51 2025 GMT
Not After : Jun 30 03:00:51 2025 GMT
Subject: CN=6674b21c788ae00c5e5b663d607b0e10d3e32352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:46:31:4d:89:df:0e:71:99:b7:11:d0:e4:
6a:63:ff:c8:97:e1:7f:83:60:72:c3:82:8b:be:ef:
75:d4:d7:55:69:2a:a5:ee:08:18:6c:71:5e:7b:ce:
cf:41:8d:4a:f6:0f:93:a3:83:5b:c1:c6:1a:7f:ed:
79:a9:2e:e3:c2:9c:8a:51:a3:a9:3e:07:6a:21:6a:
29:ba:fd:f1:d6:fc:be:d9:76:cb:b9:d6:c1:87:c9:
61:e4:58:b7:2c:c9:a7:f5:3f:df:2b:da:bd:d2:bf:
81:0d:a1:18:bf:ba:87:68:e4:c8:c8:9f:1b:05:1f:
e7:9b:4b:47:9d:b1:c0:d2:cb:e5:8d:95:54:9e:c3:
f6:44:00:f9:b8:4f:1e:5e:be:08:45:ea:6f:cf:08:
9b:cd:c1:95:0e:de:5a:68:e8:28:12:6c:84:79:ab:
6b:be:5f:11:db:0f:12:8b:5e:b1:a1:7e:b9:82:54:
c5:76:09:14:ca:eb:f1:f4:58:46:98:d7:5f:27:4b:
0b:72:05:ff:f7:92:74:fc:1f:07:17:6d:57:40:ad:
08:05:52:84:a8:a5:30:b1:f8:ba:a3:df:ad:71:ff:
33:83:b7:84:11:b5:3a:6d:e9:82:bf:23:1a:54:53:
94:d6:ae:f9:99:1c:b9:46:6a:56:ec:18:c2:fd:e3:
6a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:74:B2:1C:78:8A:E0:0C:5E:5B:66:3D:60:7B:0E:10:D3:E3:23:52
X509v3 Authority Key Identifier:
keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:2f:36:fc:6f:c5:be:2e:a9:34:c8:df:99:c9:43:14:90:e6:
22:70:f6:f7:92:b5:52:1f:22:5c:8d:b8:93:b6:8c:75:e0:2d:
3a:d2:0b:fd:2b:89:18:63:dd:1c:8a:c1:f9:99:84:ef:72:9f:
b7:94:f6:ff:21:13:33:21:4f:1b:a7:91:08:67:a2:57:87:7c:
29:f0:23:4a:5a:6d:67:67:e4:99:39:8b:55:59:2c:11:a4:4a:
85:fc:d7:45:e5:e5:9a:fc:56:52:a6:08:30:a1:2b:92:d3:be:
3a:d8:f5:7f:89:c5:59:55:6d:9d:8c:4d:7d:89:0e:8b:1a:d8:
8e:01:2f:3f:0a:70:df:bd:91:ba:61:5e:48:eb:95:4a:c5:39:
5f:e0:47:f4:26:ae:82:11:86:ca:3b:f6:43:ed:44:78:9f:57:
5b:34:ee:9b:46:b7:e1:8e:b1:0c:97:ae:e9:33:9e:f5:36:4d:
f8:6b:e3:4c:a0:82:d2:34:70:0d:9d:48:43:02:bc:db:91:e7:
f2:c3:ba:29:6a:47:80:21:ff:14:f4:53:23:5c:34:ef:50:b1:
52:c2:9e:b4:60:d7:53:1d:a5:c2:d8:41:6c:a4:e0:36:e9:e6:
92:f5:02:eb:75:c5:fd:ee:57:63:7c:3c:24:55:bc:c9:b6:77:
f1:9c:65:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:19:09 2025 by rpki-client