Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
File: hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft (raw, json)
Hash identifier: QJO2sk+dcQ3g0J4Ao6cSQBjJalKrDP5yL2+gBYt/pEk=
Subject key identifier: DB:C6:66:87:9B:1E:DC:52:F2:85:46:18:32:69:EE:CA:87:03:54:06
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial: 0197B70ED3A039B1ECE9A99739ED72900D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
Manifest number: 1069
Signing time: Sat 28 Jun 2025 15:01:31 +0000
Manifest this update: Sat 28 Jun 2025 15:01:31 +0000
Manifest next update: Sun 29 Jun 2025 15:01:31 +0000
Files and hashes: 1: 9IYJ3JT9uAsxxt2lyjGjJVqXG38.roa (hash: Fm2Q+Megk5GLVl9u0EHQZ20RgFMN11FSbY9n50k8CTU=)
2: hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl (hash: kMmGrOJE8V26vTOSkHzBlH/a8uyVBDb+yu81G7u5l64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d3:a0:39:b1:ec:e9:a9:97:39:ed:72:90:0d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Validity
Not Before: Jun 28 15:01:31 2025 GMT
Not After : Jun 29 15:01:31 2025 GMT
Subject: CN=dbc666879b1edc52f28546183269eeca87035406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:9a:4a:11:45:52:8d:20:8a:ad:c3:83:b6:
86:0a:2d:8f:be:44:c6:18:03:da:54:6a:a5:a7:6c:
27:16:41:52:6c:a0:0c:d8:35:51:7e:44:c1:3b:eb:
da:09:96:3f:cf:63:71:44:82:80:36:af:04:d2:c7:
1f:77:72:45:1f:d8:b2:d9:71:b5:2e:52:76:6c:2f:
87:5d:55:79:d6:56:3a:b5:64:8f:f3:d8:c0:a4:21:
96:b5:4e:a4:9c:1e:4c:04:ba:dd:7c:00:9c:55:46:
de:21:5c:12:4a:f6:6f:36:dc:78:ea:05:8a:76:c1:
a6:25:a5:67:5f:73:be:83:04:dd:25:63:32:9f:c9:
09:e8:b6:90:b5:6c:3d:78:55:05:cf:d2:07:00:ee:
6c:9c:e6:f5:20:a5:e7:ff:53:9a:18:30:3f:47:cf:
da:1a:8b:42:86:cf:ee:e2:d7:37:68:ad:52:09:7d:
f6:5c:81:c8:b4:b0:0c:29:f0:78:12:30:47:b8:23:
13:c0:d6:61:fa:2d:06:da:37:18:71:6e:f0:67:b2:
09:0a:d3:df:69:74:3a:4f:31:b7:71:84:8d:78:ab:
ad:14:30:a8:03:78:6b:81:13:09:94:80:4e:f8:8f:
ff:51:6c:1f:ed:a9:97:7a:a6:e8:20:9b:0f:17:7e:
19:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C6:66:87:9B:1E:DC:52:F2:85:46:18:32:69:EE:CA:87:03:54:06
X509v3 Authority Key Identifier:
keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:43:a8:c0:cb:2f:5d:06:60:01:64:91:b4:73:04:6b:f9:f2:
28:e4:e7:83:d9:96:bf:f3:bc:e1:10:f9:1c:d3:ca:8d:57:8d:
24:6c:d1:18:21:3a:6a:30:3d:8a:8d:0f:91:32:f2:6b:8d:ad:
3f:e8:27:52:b1:f7:9c:d4:80:a8:54:4a:85:da:18:01:73:49:
1e:8a:c9:4d:4a:14:05:99:8d:9d:eb:81:50:0b:bc:fd:46:66:
d2:af:b7:24:83:8d:4c:5f:c0:8e:08:1b:da:97:be:9d:8a:3b:
e2:23:b3:00:39:9d:5c:df:27:ff:0c:c6:33:a7:cd:1d:8c:7b:
f1:5e:dc:ff:9b:95:20:4a:7e:37:31:51:d4:8a:72:fb:7b:18:
ea:4c:32:d7:7a:98:0e:e6:36:e5:c2:94:6d:f4:1b:12:cf:e8:
75:87:29:a1:2a:20:28:29:36:a6:61:0e:10:e5:c9:dd:8b:50:
6c:5b:4d:08:6d:c7:bb:b6:fe:57:47:30:b6:13:2e:ce:9a:4a:
dc:b7:1f:5f:ae:4e:19:1d:25:40:33:21:22:5e:c2:05:82:70:
ac:2d:c2:22:d1:a4:a4:0c:da:01:97:1e:e7:27:38:97:03:b1:
9b:2e:82:08:60:09:5a:52:7c:2b:3e:c8:a1:99:b6:5d:14:bd:
f6:b9:6a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:33:05 2025 by rpki-client