Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: vgobozW0kjcGwjuaEnbxGNsz+5Ua3iKfYtcv/BlpuBU=
Subject key identifier: 34:3A:67:C2:81:D3:55:AC:05:D4:2E:86:BF:3C:34:5F:8E:44:AC:7E
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 0197B77C0C633BACAF2D65B86384507015BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 0306
Signing time: Sat 28 Jun 2025 17:00:49 +0000
Manifest this update: Sat 28 Jun 2025 17:00:49 +0000
Manifest next update: Sun 29 Jun 2025 17:00:49 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: 2tcRA4meLZfOa4jvSDxDsYu5avbqaO7L1SbHGPwtDUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:0c:63:3b:ac:af:2d:65:b8:63:84:50:70:15:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Jun 28 17:00:49 2025 GMT
Not After : Jun 29 17:00:49 2025 GMT
Subject: CN=343a67c281d355ac05d42e86bf3c345f8e44ac7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a5:e8:ef:0c:eb:4f:fc:e8:85:65:59:8c:0e:
0f:ec:57:aa:50:98:07:44:cb:a9:fa:e4:cc:0c:be:
70:e8:40:b1:2a:1e:04:da:8c:27:2e:31:50:d7:22:
e6:1e:bc:da:ee:6e:5f:eb:aa:ab:2e:73:9e:dc:33:
75:b6:04:cd:b2:bf:30:10:c6:2e:7c:05:da:25:f9:
9f:4c:85:12:35:82:51:ed:f2:4a:83:78:b2:5a:1a:
49:25:aa:59:66:08:91:f8:5b:5f:0b:2a:43:fa:b5:
20:b9:f7:3c:a8:d6:df:67:70:5c:de:43:22:d4:74:
76:1e:6d:bf:08:e4:57:22:50:b3:4c:2a:57:a9:b3:
1a:02:6b:0a:d0:d0:9e:95:5f:36:81:10:d8:0e:8e:
85:76:97:f6:0b:71:99:2e:fb:a8:0d:f9:6b:58:35:
6d:71:a5:98:4b:1e:33:42:14:43:50:1a:7b:59:2e:
88:99:30:73:c3:1a:15:25:bf:b6:12:cc:0b:49:8f:
d5:04:3f:96:4c:b3:13:73:6a:e5:3f:ae:00:4a:7a:
94:d6:bc:a9:c9:17:8a:29:5a:26:7c:09:04:2e:f2:
03:66:87:51:a7:15:e5:b3:f6:cd:4b:f1:d8:f5:36:
0c:d9:03:2f:a9:a8:df:33:14:6e:21:e7:13:7e:6e:
ec:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3A:67:C2:81:D3:55:AC:05:D4:2E:86:BF:3C:34:5F:8E:44:AC:7E
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:86:0a:24:f7:5f:af:e8:0b:54:dc:3e:97:1b:7a:f4:d9:43:
7e:6d:30:2f:76:ec:df:15:6a:05:56:d3:8f:0b:bc:bf:aa:a0:
11:e3:de:0a:70:cc:22:1c:d9:0d:e2:b0:9a:a8:d6:a6:e9:52:
31:63:69:3b:be:26:41:2e:e4:b0:c5:8e:f4:d7:33:62:ee:83:
be:11:05:5c:43:3e:c9:90:49:dc:7c:b3:b2:39:a5:51:ac:4f:
ac:48:0e:63:32:5f:2b:43:5c:19:24:a6:1f:d3:a5:48:bd:95:
10:f4:db:a1:61:0c:ae:2a:b6:d1:6c:10:3d:15:55:f6:41:05:
97:9d:e6:72:01:13:9c:35:75:f7:e4:c5:f5:7c:0e:7f:e1:f3:
8d:14:12:4c:03:4c:f0:44:dd:4c:51:46:5d:ca:45:88:35:ce:
46:74:2e:8f:ce:ff:58:37:61:8e:41:6b:ef:e7:18:7b:11:d5:
e9:6a:f9:bb:ec:95:b1:c3:27:4b:e9:92:d1:1d:d8:94:a0:35:
8c:c7:1a:97:77:58:18:01:16:59:d1:fd:27:9c:b5:32:e4:8a:
29:ee:8d:28:ec:06:2b:0b:a3:96:09:0c:b2:81:a6:79:b6:8d:
be:51:91:9d:bf:ab:c5:a2:ed:ae:6f:0b:2c:2c:8e:d7:0b:3a:
e8:3b:86:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:56:58 2025 by rpki-client