Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: 7U8+zeCr5plCp7PB4xqTnt2IUCaZbaOrEgH9NFeCT4c=
Subject key identifier: 55:55:9D:6F:D7:40:C3:36:03:ED:75:9A:3E:50:F6:28:F0:1D:C8:11
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0197B88F40328B1B2219E0E56141F4F4CC81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 0FF2
Signing time: Sat 28 Jun 2025 22:01:25 +0000
Manifest this update: Sat 28 Jun 2025 22:01:25 +0000
Manifest next update: Sun 29 Jun 2025 22:01:25 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: E5FuQ8vADBG5QrP3GDmZqtHb0N1JqqW9bIO3s0c0PQs=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:40:32:8b:1b:22:19:e0:e5:61:41:f4:f4:cc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Jun 28 22:01:25 2025 GMT
Not After : Jun 29 22:01:25 2025 GMT
Subject: CN=55559d6fd740c33603ed759a3e50f628f01dc811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b0:b2:da:80:a9:fa:b6:4a:9f:21:0e:a3:15:
e9:54:8c:64:7e:26:bc:0e:8b:72:cb:c2:69:9b:c6:
90:f2:7d:ec:dd:ba:18:9e:58:8b:b5:57:f4:3a:e2:
42:b8:4c:7e:d9:bc:03:20:f1:ad:90:d9:da:79:17:
b9:fe:66:0d:10:12:90:55:cb:8c:e0:5a:de:10:e9:
06:96:41:d7:eb:4f:e6:5b:91:50:4b:ce:c8:10:14:
c5:4e:8f:3f:1f:ee:e1:4f:7f:50:27:c7:1c:60:9e:
41:fd:c4:b4:e2:0c:59:be:14:0b:a2:a8:4f:a0:4b:
2f:24:b3:5c:87:63:78:56:96:4b:bc:d7:89:5a:97:
da:ec:52:df:83:81:f8:8b:bb:75:a0:3c:01:07:6d:
38:0d:a5:b1:13:5c:d7:7d:76:91:8c:e2:87:19:80:
36:83:d2:2d:93:8f:ad:e8:9a:de:90:7d:2c:61:7d:
a9:f6:ff:a5:9f:c2:35:5e:3d:dd:db:0e:46:db:15:
e4:f4:22:2b:57:9e:eb:26:7b:37:9d:a9:f9:ff:b4:
60:52:c8:d6:9f:89:a8:2a:25:00:05:9c:19:c5:53:
37:26:b4:33:d7:d3:fd:be:93:1b:d3:ed:4f:fc:84:
c4:6e:01:46:47:51:10:c7:b3:0c:46:90:08:ac:02:
6e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:55:9D:6F:D7:40:C3:36:03:ED:75:9A:3E:50:F6:28:F0:1D:C8:11
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:fa:d8:cb:3d:56:08:34:be:66:33:05:d5:00:4b:9b:81:ba:
21:b0:ac:52:51:11:68:32:ae:46:19:80:bf:96:81:dc:7b:50:
a5:6b:84:ce:bc:19:40:92:81:51:71:b5:f5:f3:0a:30:3b:fd:
ee:fa:44:ec:34:5b:e0:40:2a:f6:fd:ac:17:09:dc:cd:30:52:
23:8b:4f:ff:74:9c:26:3d:8d:80:87:d4:c1:07:e9:1b:62:22:
4d:14:d3:5a:65:2c:e8:66:62:25:79:3b:4a:d0:cd:27:59:86:
0a:29:67:f7:4f:7b:26:e6:e8:a9:65:0c:b4:63:d6:58:8e:bc:
27:4f:32:65:b0:52:7c:03:6e:75:48:7d:c0:ba:78:b4:b7:31:
f8:99:da:34:63:65:b1:f3:bf:fc:53:e5:22:cf:cd:ef:d5:5f:
45:c4:04:02:2e:9f:47:34:6e:e5:c6:3b:03:b7:41:eb:bc:bb:
18:b9:02:9b:18:a6:2b:f8:ac:82:db:e9:9f:90:d9:1b:0e:f5:
24:63:9d:9e:74:a2:ca:a1:a3:78:46:68:ee:d2:e5:d6:25:71:
9b:b4:67:df:c6:03:18:fd:d7:55:2c:c7:7b:ec:23:ba:e1:78:
20:67:26:89:56:92:5b:ca:b1:5d:7d:66:d1:d6:2e:27:f9:42:
cd:f1:c2:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:26:49 2025 by rpki-client