Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: DXgNsq6CJuKZeOkOmIKssckRPrbcCFjLl9qiXA7Iq8Y=
Subject key identifier: CD:22:36:83:45:D1:52:9F:F7:F5:EC:50:9B:1D:9C:38:4C:56:17:41
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0197B7B3224BAFB23E7DB8DDE7C5C4F3DF75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0636
Signing time: Sat 28 Jun 2025 18:00:59 +0000
Manifest this update: Sat 28 Jun 2025 18:00:59 +0000
Manifest next update: Sun 29 Jun 2025 18:00:59 +0000
Files and hashes: 1: Kw49QnoalcUIwGD7L_UCEBnFzUk.roa (hash: 5nS3wTYqHyzRyVlDkHb3qPe9ElMZpDyRT50Au3dlMjE=)
2: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
3: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: Q85pYYo+FUcilzSZQH7G/ccDmb4Vo9y2H99eHenjygU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:22:4b:af:b2:3e:7d:b8:dd:e7:c5:c4:f3:df:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jun 28 18:00:59 2025 GMT
Not After : Jun 29 18:00:59 2025 GMT
Subject: CN=cd22368345d1529ff7f5ec509b1d9c384c561741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:92:c5:84:ed:75:7a:9b:be:df:e3:3a:36:
20:a6:d9:1e:a6:c0:eb:ad:d1:de:3f:b1:a1:6c:9b:
b2:d5:35:be:a0:39:1c:3a:0d:a1:b5:b4:bb:5d:aa:
5e:69:e6:b5:02:17:66:08:57:ac:3b:51:ed:11:50:
16:a5:fa:e8:17:4b:bb:c5:eb:5b:78:38:d6:17:d8:
a2:f2:87:bf:19:9c:bc:7b:d8:cc:d6:6a:89:09:a3:
8d:d8:b0:50:57:4d:21:22:eb:e8:28:6f:ec:0a:e4:
dc:72:9f:44:f8:1a:76:fd:d6:b5:0a:4e:75:60:4c:
38:67:02:8f:f4:ac:fe:f3:09:8e:ff:48:9f:04:f7:
5d:6a:72:34:19:5d:9e:ba:d7:9e:2b:77:64:ae:71:
a0:b6:f2:b1:da:54:82:b0:00:21:1c:91:a0:b7:d3:
af:ef:0f:d0:35:f1:57:cb:4e:7d:79:a5:23:84:75:
af:d1:2d:88:98:04:af:8e:61:bf:48:8a:ce:0f:fa:
21:cf:78:8a:36:0a:85:f9:b7:98:ea:60:ec:45:91:
fe:10:13:6e:8c:12:b5:40:1c:f5:f8:8c:01:45:0f:
de:f5:d3:3a:59:d1:d1:8a:1d:40:db:71:13:af:b6:
77:39:35:22:08:88:30:a5:10:ba:52:55:04:b3:c0:
c2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:22:36:83:45:D1:52:9F:F7:F5:EC:50:9B:1D:9C:38:4C:56:17:41
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:4f:8f:e1:8c:fe:9a:ca:c6:77:2d:3e:eb:2d:12:3d:90:8b:
7a:e5:5f:b1:dd:42:9d:f9:59:55:f0:c1:72:2e:0e:b0:c2:b6:
1d:5b:1f:8a:80:bc:d1:fe:82:5e:ea:94:05:57:ea:1d:1c:3a:
e3:8b:9c:c8:2d:cf:27:45:17:d1:23:e5:c6:32:c0:30:9e:e9:
2a:30:4b:3a:99:cf:72:b1:70:0e:52:d5:37:5a:9e:90:bc:31:
ab:77:39:5c:9e:af:19:81:86:e2:1f:19:fa:c7:fb:c0:39:57:
cb:d7:d2:15:16:f6:83:36:30:93:b6:42:97:2e:c5:ea:da:4f:
bb:cb:8a:c1:31:8b:07:1f:b8:4d:77:64:2b:e6:d3:ba:1f:c9:
3c:57:af:e7:c0:f8:9b:e6:33:3e:26:1e:8b:18:f0:0b:6b:b1:
29:6e:3a:e4:71:55:17:2f:c9:ef:98:ef:ee:90:de:97:9b:16:
bf:fc:33:03:2d:9a:2a:1c:0a:84:93:ed:2f:c5:47:b4:5e:4e:
75:b9:c0:ba:c1:f8:74:07:e9:bb:51:d5:3e:e5:03:78:1f:15:
6d:77:ce:97:56:47:ba:e8:6c:54:ad:7e:a0:e7:82:02:5a:66:
ae:82:0b:68:25:08:8b:10:e2:e1:18:86:27:e8:40:12:f6:ff:
b0:1f:50:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:25 2025 by rpki-client