Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json)
Hash identifier: lh6oFG7vujDM4OVU+eVIlq8FRTLk1Hgxw328VLLIYtQ=
Subject key identifier: AF:6A:77:E8:82:1A:F4:00:5B:93:C7:A0:54:5F:C9:64:C5:5B:20:25
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 0197B70E78D3E4713DD032AD12EDE09BCE5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
Manifest number: 08EE
Signing time: Sat 28 Jun 2025 15:01:08 +0000
Manifest this update: Sat 28 Jun 2025 15:01:08 +0000
Manifest next update: Sun 29 Jun 2025 15:01:08 +0000
Files and hashes: 1: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: iJm0gv/oA0+ru37C4hfAtz6ClQH/d9ZqpjqUerr67vU=)
2: uaDvodSl9Qqt6SU3QvEP4PKpm0c.roa (hash: KfFNiihZ95ffen8bkT+elj9FXLgX4E04ZxK55q4T9Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:78:d3:e4:71:3d:d0:32:ad:12:ed:e0:9b:ce:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: Jun 28 15:01:08 2025 GMT
Not After : Jun 29 15:01:08 2025 GMT
Subject: CN=af6a77e8821af4005b93c7a0545fc964c55b2025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c7:93:0a:99:1d:68:54:32:37:8d:00:45:70:
c5:0f:b5:b3:14:ca:09:33:45:01:58:a5:16:19:ed:
e6:5f:e2:10:e6:96:80:13:42:a1:b7:b2:02:6b:64:
33:57:69:97:df:4e:6d:a0:b8:9b:94:38:28:30:96:
1e:7d:1a:7e:f2:20:f9:84:a7:bb:17:cf:a2:5b:fc:
5c:92:83:89:05:02:ea:71:56:8a:f1:15:be:73:3e:
94:77:f3:2c:c3:6c:50:7b:b2:9f:f5:35:f0:87:b8:
62:b8:9b:b9:ab:22:c0:65:1e:10:ea:94:51:ae:1f:
0b:49:76:f2:5e:ea:33:52:e0:17:64:73:e4:e7:30:
7a:0c:d3:cc:e4:24:95:e3:24:16:8f:c7:14:e1:a8:
f4:83:c0:06:56:62:b8:b3:f1:5e:93:7c:0a:b7:0b:
37:59:b8:a6:41:c6:ce:59:52:5f:81:58:7b:3a:3a:
cd:a0:ce:1e:d1:d8:4d:9d:b1:dc:55:07:3f:0b:43:
8f:83:ad:79:1b:35:aa:95:2f:2e:f7:6e:f7:3e:c2:
f7:c6:f3:0c:41:fe:be:f5:7f:80:55:fc:65:75:19:
af:84:29:e7:cc:d1:c3:16:8d:75:7a:1d:fc:ab:be:
39:50:fd:3a:02:86:ac:97:52:ee:08:72:06:8e:dc:
2a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:77:E8:82:1A:F4:00:5B:93:C7:A0:54:5F:C9:64:C5:5B:20:25
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:06:72:37:34:38:76:3a:ed:f8:cf:0e:6c:18:5c:2d:b2:92:
63:98:7b:e6:2a:14:b5:51:d5:8b:bf:ae:63:1d:ee:40:5e:eb:
0d:c7:be:d9:7b:07:54:dd:5c:d8:d4:f9:0e:01:c0:cc:37:38:
51:98:36:0d:2d:c0:57:56:75:ff:00:10:92:e1:ac:1c:3f:ff:
73:24:b5:8f:f2:58:04:c5:20:c1:55:90:bd:31:15:68:c2:96:
b1:f1:2d:5a:4d:2c:1c:5b:59:02:97:48:c5:54:c9:f5:56:06:
52:9c:cc:b6:52:c1:0a:e2:3c:8b:38:22:01:33:b1:6b:ec:33:
09:1d:06:89:67:1f:99:bc:46:98:c0:9e:0f:01:00:b8:7d:50:
20:df:13:8b:82:cb:cf:e2:c5:14:f7:07:47:aa:7f:b2:4d:d1:
a7:7c:d1:05:4f:84:e5:45:23:ac:0b:f7:10:9d:7d:91:ec:f5:
e5:66:d8:3b:4b:cc:31:09:b0:73:f5:66:e0:e4:a8:33:15:70:
6a:2d:f9:3b:21:90:16:10:7d:d1:81:7c:f5:4d:de:cc:8c:89:
cc:36:ac:a8:96:ed:37:f2:cc:b1:2a:02:53:7f:63:cb:c8:23:
c7:02:6d:82:ce:9f:4a:1d:a2:56:7f:48:c8:9f:58:2c:b9:2a:
47:28:7b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:04:31 2025 by rpki-client