Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: HuIitv+/wJieRIWwIN/ApZy/c87Hv0Eh8Z+PMTt8MFA=
Subject key identifier: 04:43:E3:DF:24:CF:82:F7:CF:84:DA:78:B8:88:97:87:B7:98:8A:B5
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 0197B70F0235C13058A4E4D748E715F3DECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 15C0
Signing time: Sat 28 Jun 2025 15:01:43 +0000
Manifest this update: Sat 28 Jun 2025 15:01:43 +0000
Manifest next update: Sun 29 Jun 2025 15:01:43 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: V/tzoxpXjdbgnFUOSri4k4/KmEikby5gvUaoONFAJkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:02:35:c1:30:58:a4:e4:d7:48:e7:15:f3:de:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jun 28 15:01:43 2025 GMT
Not After : Jun 29 15:01:43 2025 GMT
Subject: CN=0443e3df24cf82f7cf84da78b8889787b7988ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2c:55:f8:39:61:11:dd:8d:7d:d2:02:a8:11:
27:a3:38:aa:63:08:10:f2:3d:14:51:50:22:57:b3:
b3:21:90:b2:7a:c1:d1:01:fa:c9:50:d1:a9:58:fb:
20:ca:13:60:03:93:26:19:cd:17:12:1e:38:1c:7e:
ba:e2:56:20:2c:8e:2b:50:9b:aa:f0:32:a9:34:e1:
8f:e4:36:11:94:8b:47:aa:3e:3e:18:f2:94:3f:23:
03:e6:0e:9f:38:9c:86:a4:94:73:3b:be:3a:7a:32:
ae:a5:2b:aa:55:07:5f:9f:1b:10:9c:24:47:be:1d:
db:a0:9a:f8:ec:43:92:fe:f3:85:b8:37:3c:f4:89:
73:46:95:3f:38:cb:e0:3e:c6:1b:b5:d0:e7:f8:2e:
32:eb:d9:54:2c:dc:b7:3d:da:2f:f9:c9:0b:1d:c1:
22:5a:9c:aa:d7:2f:55:e9:aa:5e:33:24:09:1b:f8:
2b:89:8a:e7:45:2c:69:b7:ab:fa:f0:62:0e:bf:d5:
97:66:e5:27:e0:4b:bc:0f:64:2c:07:e6:a9:92:dc:
55:1a:5b:ec:c6:93:0e:ca:b7:ec:97:e7:4c:d6:5b:
26:c4:1a:38:43:5c:84:c1:c0:7a:4d:fe:64:32:97:
5d:21:d1:60:6b:1a:93:49:47:38:44:fd:d9:10:a3:
d9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:43:E3:DF:24:CF:82:F7:CF:84:DA:78:B8:88:97:87:B7:98:8A:B5
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3d:f2:65:de:85:99:4a:86:e6:bd:53:ae:c8:5f:14:10:be:
de:06:14:a5:b7:61:96:5d:87:2a:a6:08:86:3f:39:00:d3:73:
5b:b4:01:cf:ef:b9:72:d3:81:33:c5:f6:7b:8c:42:61:22:4a:
7a:13:b9:4e:6c:8d:67:70:cd:74:30:a8:16:57:04:ef:8b:b9:
43:76:2f:f9:57:67:73:66:8f:52:7a:10:45:a7:39:b2:55:0a:
bf:93:fa:3c:90:ab:b8:a2:ab:c5:84:37:5d:2d:a3:36:4e:bc:
9e:f4:24:6c:85:df:04:40:38:bf:dc:57:d5:7f:5e:40:6e:c4:
88:e4:71:74:89:9a:e1:5a:c8:0c:b5:3b:ee:4c:7b:a9:29:3d:
05:b1:e3:71:74:a4:b4:3e:32:8f:89:85:02:15:4c:c7:70:6a:
cd:cf:cc:1f:59:24:24:20:a0:8a:bb:2c:89:47:2b:0a:10:9b:
c3:51:e0:a2:3f:6b:55:4a:fc:3f:d0:61:81:e8:83:05:53:c2:
44:99:2a:25:18:ff:e5:6f:d3:a6:16:46:58:e9:19:a6:02:f3:
92:78:c6:95:7d:05:24:8d:93:91:46:07:fc:a6:82:76:88:b0:
cd:1f:9e:e0:be:79:7b:20:36:83:11:ef:5c:3c:d4:45:c3:6c:
c2:55:15:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:36:40 2025 by rpki-client