Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: 6fEHROZngj3Mnt0Ju3yDq9W5kWEQV6cz3Rbu9eP1vAA=
Subject key identifier: 7E:42:BE:F5:94:C1:D0:D3:92:3D:C0:C2:E6:F9:A0:24:E0:07:46:A3
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 0197B6A23B128FE9C5551476CC05AC76E5B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 08AB
Signing time: Sat 28 Jun 2025 13:02:54 +0000
Manifest this update: Sat 28 Jun 2025 13:02:54 +0000
Manifest next update: Sun 29 Jun 2025 13:02:54 +0000
Files and hashes: 1: 1GUi9iA8Rgrr5GN4QB6VlqMrvms.roa (hash: s/MIypH3pMJ3iuiuGr8K68PmgQyO6HFRzwvdBy3o4FU=)
2: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: +Y6XCoOL2U8EiXKYWiKJ+9U0lz0Mc74QN+bI7vSM5J4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:3b:12:8f:e9:c5:55:14:76:cc:05:ac:76:e5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Jun 28 13:02:54 2025 GMT
Not After : Jun 29 13:02:54 2025 GMT
Subject: CN=7e42bef594c1d0d3923dc0c2e6f9a024e00746a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:87:60:dc:d9:8c:04:75:ba:c8:63:72:4f:
fb:c8:68:09:a1:d4:04:a2:d5:59:fa:28:8b:79:ba:
13:e9:1a:0e:4a:cd:5e:08:f0:21:07:90:4c:68:1e:
59:bf:7a:a0:8b:c6:95:05:4d:a8:d8:d9:b5:8e:d2:
10:01:54:59:48:47:2e:bb:86:6e:18:f5:3f:ef:6a:
ea:34:de:9d:f7:5b:b0:5c:ab:b1:7d:de:5d:2f:01:
25:46:7e:5d:81:9b:5a:a4:a4:85:fb:fa:6e:ec:f3:
ff:69:6c:8b:a8:96:d4:a5:b5:e2:e4:fb:18:6f:b9:
11:94:0d:02:15:65:43:2d:6a:b9:fe:f5:d6:16:63:
e4:92:ce:c9:37:8a:5c:51:46:56:19:30:3f:db:82:
fb:44:b8:ed:98:c1:6d:1c:a7:78:02:4b:0a:76:70:
ca:7a:b1:c9:61:3f:e9:3f:1d:03:65:e4:25:5d:6f:
ce:bd:bf:2d:f0:9a:3c:27:2b:bc:75:12:72:03:ee:
17:6a:19:ff:b4:5e:37:f1:4b:0f:b2:be:47:f7:f9:
61:d1:0a:b3:dc:66:cc:04:7e:70:ab:f3:33:4b:bb:
94:00:e2:20:4e:d6:aa:c0:7f:c5:2e:f6:75:33:ce:
88:81:93:12:32:78:c7:04:19:d9:9a:cb:a7:63:c7:
25:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:42:BE:F5:94:C1:D0:D3:92:3D:C0:C2:E6:F9:A0:24:E0:07:46:A3
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:df:32:0c:af:63:59:5f:e7:38:18:3a:fa:3d:87:8c:17:dd:
53:87:b0:16:2e:35:58:0e:16:f7:d8:cb:f0:65:c6:a3:b5:b7:
2a:e6:14:44:76:9b:ab:fc:87:1e:54:cc:8d:f4:9a:8b:53:7d:
90:53:ed:d3:4d:d6:2e:25:4d:02:cb:0e:41:0b:eb:67:71:d0:
e5:90:08:2e:e7:fd:11:71:a3:77:8c:9f:ad:c3:10:41:e1:8a:
52:74:7f:02:6e:6b:8a:60:be:8e:7c:52:4b:6c:2c:ad:14:0e:
1a:54:40:2e:a2:87:9d:5a:e6:69:b4:93:2e:cb:12:d5:22:56:
ed:2b:fd:9d:ca:55:e1:0e:fd:90:81:e4:d2:1a:8c:c3:12:a4:
3f:97:99:de:4d:52:c0:16:8e:65:9b:3c:1b:63:a2:57:f8:58:
67:b8:1a:03:c6:bc:4c:bd:a0:05:3d:ad:0c:a4:e6:31:0b:f3:
7a:ed:89:56:9e:71:35:e1:a5:c6:4c:6f:d7:cb:96:71:2b:c1:
b7:37:55:31:0c:dd:28:ea:6a:fc:07:40:87:f2:19:fe:df:9f:
2c:83:cb:6b:60:9e:ba:d9:49:43:e2:1e:10:27:08:84:41:7a:
27:00:e6:11:1f:98:18:f5:ed:80:1e:77:d8:3e:f6:e6:6b:6c:
20:85:5d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:40:47 2025 by rpki-client