Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: a35X1r9HQWZ7Xa2sRehCBc0GpAFZozlUHomkhaP+mH0=
Subject key identifier: 9C:20:9E:18:1B:F7:27:4B:DD:20:B5:75:7F:E2:0F:87:1D:27:D2:87
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 0197B933A1C7E6D625CB2CBE1ED7B6B43F7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 15B5
Signing time: Sun 29 Jun 2025 01:00:58 +0000
Manifest this update: Sun 29 Jun 2025 01:00:58 +0000
Manifest next update: Mon 30 Jun 2025 01:00:58 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: U2MPr3KOrht9IDZ/t9vee1EAQE1SHn/p0Lsa+nY+36I=)
2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:a1:c7:e6:d6:25:cb:2c:be:1e:d7:b6:b4:3f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Jun 29 01:00:58 2025 GMT
Not After : Jun 30 01:00:58 2025 GMT
Subject: CN=9c209e181bf7274bdd20b5757fe20f871d27d287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4c:1c:67:51:02:f6:6d:9c:1e:bd:ec:ef:59:
38:ff:ae:1b:7c:54:63:62:81:45:d5:f8:99:26:03:
d0:bf:aa:72:b9:b1:c5:e3:2f:0b:5d:f0:16:d9:bf:
41:d1:ae:68:b6:df:ef:40:84:ee:24:92:95:ea:a1:
f7:f5:3f:e1:96:b8:e6:5a:1f:33:08:93:d7:d9:0d:
40:99:25:b2:3f:00:63:ad:d5:46:26:f1:03:71:1d:
60:56:92:5b:2d:14:06:e9:f2:56:fa:6d:c1:cd:83:
19:a8:ca:44:4a:69:90:ad:a6:20:f6:61:6d:b4:5f:
c3:9e:91:49:d5:d3:d4:ec:45:c4:24:08:18:76:af:
dd:b5:70:1f:0c:65:8d:c7:0d:39:e3:7b:9c:8c:d7:
da:1f:f1:75:47:70:a9:c6:0f:e8:82:4d:13:62:07:
39:3a:88:03:a9:90:59:e5:b4:8d:19:02:a1:4c:89:
49:88:e4:c3:6b:53:ae:9c:42:42:4a:f6:49:9a:e7:
7f:b5:59:5d:de:61:69:88:e6:ec:32:f0:e4:6b:15:
e7:a5:6a:7e:43:91:61:92:13:71:2a:dc:3e:6b:55:
7e:70:b8:e0:d4:09:77:58:d3:8a:ed:00:9c:b1:f0:
a0:19:42:71:ae:f8:cc:1f:b9:30:28:16:70:8a:89:
0e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:20:9E:18:1B:F7:27:4B:DD:20:B5:75:7F:E2:0F:87:1D:27:D2:87
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:0e:af:8a:23:0e:23:9f:f8:2e:ac:8c:bc:c2:f1:6f:04:4e:
97:e9:14:31:89:d2:30:d7:ba:ac:d3:d4:cd:3b:18:c2:e2:06:
4c:a7:58:5d:ff:7f:a0:f9:a4:f6:e4:7a:da:c1:d9:4b:ed:b9:
20:88:b3:79:75:5b:26:87:93:56:8c:4c:6c:e8:de:21:ec:6d:
55:d1:9b:5e:79:d1:1d:2c:cc:9a:47:b2:d3:4b:43:34:7f:7b:
f4:2d:29:d4:f8:6b:ea:3e:e2:16:28:a7:71:3f:db:10:80:e2:
a6:1d:47:8a:ee:06:e4:55:a7:f5:a6:c1:05:35:f1:b7:a8:d6:
36:26:a7:e0:61:ee:5e:1e:6f:57:10:24:f5:01:b3:3a:b4:53:
a0:20:80:73:dd:ce:b9:f9:87:4e:ec:9f:6c:f2:83:c3:c7:9b:
d3:2e:4b:b1:4a:fb:a3:58:7e:7f:48:46:fd:9f:b3:a6:48:6c:
7e:23:c5:ea:f0:ab:b1:8f:45:65:e1:e7:e3:7d:d2:ce:6c:bc:
0b:a8:bd:8f:5c:be:f4:c2:df:63:2d:fa:8e:9a:02:05:f6:e4:
e6:d1:eb:71:53:8f:a2:45:de:c0:52:86:1f:d3:e7:9f:00:8f:
10:24:e6:35:dc:da:aa:79:7b:6f:41:17:bd:70:ff:00:73:1f:
7c:5a:b2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:39 2025 by rpki-client