Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: csBKsxtcbH2XVAwBXZCmICikuWEHugReoT7XNcOaDHI=
Subject key identifier: 65:D1:D6:3B:B4:9C:84:B7:6B:94:AB:F1:D2:2D:89:42:7A:6C:3D:F3
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 0197B8902413F4E207C16DAA289EB08C4EF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 15BA
Signing time: Sat 28 Jun 2025 22:02:23 +0000
Manifest this update: Sat 28 Jun 2025 22:02:23 +0000
Manifest next update: Sun 29 Jun 2025 22:02:23 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: 4BiZEMOiSFLxu7MABomGkurHHz5x+Yl0tb5JKQycSHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:24:13:f4:e2:07:c1:6d:aa:28:9e:b0:8c:4e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Jun 28 22:02:23 2025 GMT
Not After : Jun 29 22:02:23 2025 GMT
Subject: CN=65d1d63bb49c84b76b94abf1d22d89427a6c3df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:45:5f:15:f0:77:ce:f7:f4:85:2e:54:f1:6b:
9e:b6:78:b9:24:bc:c6:04:c4:27:00:ef:e8:11:f7:
ce:69:a7:b9:40:0c:b3:12:95:2f:dc:61:cd:75:e1:
02:65:21:0c:1a:f7:8c:d8:b4:d9:62:11:93:01:c7:
3e:08:bd:0b:05:8b:79:f5:13:b8:d9:f3:f5:c7:3a:
8b:57:d3:04:aa:5a:43:f0:50:e7:05:3d:b7:7f:3a:
03:76:6e:64:78:fb:6d:25:dc:6c:4f:41:96:f3:27:
f4:a7:e9:d8:5e:ea:a1:f8:c5:fc:7b:c4:1d:03:43:
8d:7a:0b:5d:54:a7:db:b2:63:12:49:96:aa:70:7d:
3a:2f:a1:1c:07:d2:94:6d:66:3d:e4:78:f6:c6:db:
24:95:f0:e9:db:43:45:91:09:8d:e2:d8:2b:9c:94:
1f:5a:ed:da:27:58:49:e4:d1:77:50:3a:2a:fe:bd:
64:e0:d2:1e:af:69:c8:d1:80:14:8d:d3:17:c7:28:
ca:d8:3c:59:f2:cc:67:42:f7:62:e8:32:0a:48:dc:
b9:bb:26:9e:5c:0a:31:8b:c8:bc:c4:8a:de:41:70:
9a:67:ee:69:82:91:c7:2e:6b:4c:5f:d3:de:e2:0f:
92:77:7a:9c:6f:1a:25:c1:29:6b:ba:e0:b3:3a:0e:
52:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D1:D6:3B:B4:9C:84:B7:6B:94:AB:F1:D2:2D:89:42:7A:6C:3D:F3
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5d:78:35:23:15:d3:df:a1:f9:b2:0c:fd:a3:79:ee:96:c4:
85:ea:9b:f2:a9:75:0d:94:1b:89:31:d2:f9:de:7b:0d:9f:b5:
3f:b1:1c:e9:ca:99:23:70:4c:7f:d1:69:e9:27:31:9e:09:f2:
b3:fb:a1:34:5a:65:7b:df:20:c1:ea:08:d9:8b:f5:0a:89:ab:
1d:de:2b:2d:3c:86:41:91:c5:df:dc:08:16:14:fc:a2:c8:1d:
43:85:41:3d:39:5a:3e:46:15:6c:e7:9c:86:2e:46:ce:c1:54:
bd:a0:ce:29:05:b4:e6:72:23:2b:eb:67:33:83:2f:87:0a:44:
01:5e:8d:17:4f:51:d2:36:17:c7:bd:99:15:17:4b:37:8f:91:
b7:a2:49:01:ba:53:bf:c6:da:d1:ae:53:71:17:02:e6:57:9d:
19:cb:cb:f9:8c:45:94:48:8d:37:a4:b3:dd:b2:f4:4f:67:01:
da:d8:dc:06:e9:67:65:14:07:54:0a:0b:2a:07:dd:02:37:28:
18:e5:b2:c0:b8:00:12:46:0e:8f:35:0e:22:88:18:8f:c2:61:
15:21:59:d9:51:be:ae:e9:89:f6:61:fd:f0:7f:cb:b3:cd:c8:
2a:da:40:79:17:d8:3d:87:0e:89:51:50:7c:ff:1a:f9:e0:d0:
17:b4:e1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:15:20 2025 by rpki-client