Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: Eu8u2VEyskPXgmOi5u8a5tDUagPc95br1FblVsQJgLs=
Subject key identifier: F4:7F:66:1B:6A:FA:9D:8A:7B:2B:89:CA:79:17:34:98:5B:87:92:01
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 0197B6A10293E9C5489BE05D5D29BE59E905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 1120
Signing time: Sat 28 Jun 2025 13:01:34 +0000
Manifest this update: Sat 28 Jun 2025 13:01:34 +0000
Manifest next update: Sun 29 Jun 2025 13:01:34 +0000
Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: 19TKZVfbA/p0Nxm28Be39qtAUyxnGEumHAOUEpvrzTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:02:93:e9:c5:48:9b:e0:5d:5d:29:be:59:e9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Jun 28 13:01:34 2025 GMT
Not After : Jun 29 13:01:34 2025 GMT
Subject: CN=f47f661b6afa9d8a7b2b89ca791734985b879201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7e:af:c6:1d:26:4b:a5:74:ca:6c:cb:ea:66:
74:55:a6:b0:3e:c3:82:f6:4f:05:08:ee:cc:54:da:
5e:25:73:1c:82:5b:17:6c:ce:67:a3:51:4e:b8:01:
83:8e:80:75:1d:27:34:55:d0:4b:84:cc:a3:1d:af:
32:9e:36:2c:95:81:72:bb:78:7f:a1:64:ce:3b:78:
75:df:e6:3e:ab:72:62:83:0d:9b:86:cc:9e:d9:d7:
ac:bb:c9:43:81:08:07:de:ec:68:c1:a8:ea:18:11:
b9:f7:6d:78:3d:2d:4d:3c:3f:ab:16:03:a4:c9:22:
f3:a5:0a:17:43:d7:41:68:07:2a:86:ab:6a:88:05:
59:1f:b9:0b:49:4a:ca:d1:e4:74:7c:d9:37:d1:3d:
e4:1c:d4:97:88:46:9e:e8:8f:82:bf:db:d0:86:bc:
26:36:f7:58:4e:33:62:73:6e:25:83:3d:ba:94:87:
29:10:7a:c1:7e:d6:66:c0:d3:e3:ce:f7:6f:98:e0:
bc:c7:5e:f9:0a:bf:8d:cc:0f:ef:48:99:f7:61:8d:
ac:74:51:8c:d8:11:41:c9:00:21:07:02:fc:f9:5b:
42:5b:22:b7:94:1c:22:e9:6c:38:26:ff:88:34:6c:
57:ad:e6:bf:6b:48:7d:4b:dd:b6:d8:00:63:fe:70:
ba:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7F:66:1B:6A:FA:9D:8A:7B:2B:89:CA:79:17:34:98:5B:87:92:01
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:aa:c7:62:d5:fa:e6:b9:f9:32:76:b3:27:55:a5:9a:3b:37:
96:ea:15:90:f4:92:59:2e:9c:bb:12:17:b4:42:1a:10:e6:ab:
d4:dc:b2:00:32:a5:65:01:b7:89:b8:3e:bf:62:f7:d4:db:da:
ed:c2:e0:66:fc:a0:27:32:a1:dd:1d:18:a7:2a:89:43:82:2c:
18:81:89:6f:98:88:c4:e3:30:4e:64:0d:17:72:cf:36:0d:cf:
68:e1:96:d6:c0:2b:2a:fa:31:b9:5d:04:4c:74:af:9c:97:8a:
d5:a8:85:8f:7e:43:37:89:5a:8e:48:76:ff:b0:24:e4:63:e2:
b5:7d:71:e1:8b:69:5a:73:51:7b:6c:ec:d7:e3:f0:c5:a5:b9:
09:1c:87:e3:6c:dc:31:47:aa:ff:bf:81:9a:1d:79:82:54:84:
d4:b7:1c:9e:ec:ed:ff:8a:f5:2a:bd:62:bb:fd:a4:67:3e:41:
96:2d:42:c2:a7:c1:f1:99:ae:33:b6:82:a1:eb:9a:fc:4d:4e:
23:af:f2:c6:9e:99:32:7e:06:4b:2d:7e:8a:e0:fb:12:d9:02:
e9:2e:42:c4:6c:e8:98:9f:e4:32:b5:1b:93:2a:d8:c9:f4:c1:
c7:cf:a5:05:3e:76:80:89:b0:d5:df:a0:f7:c7:c8:24:24:4a:
f2:38:43:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:28 2025 by rpki-client