Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: GCYeP5+MSx+BA5h2lmF0+p6IU33KS2NX/yY/TEYUdx0=
Subject key identifier: F6:C6:AE:5D:BB:F9:CF:1A:92:20:AB:F4:11:70:A1:C4:9A:8C:7D:CE
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 0197B7EA4B46BCCFB69A19AE6B69352643C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 0A6A
Signing time: Sat 28 Jun 2025 19:01:14 +0000
Manifest this update: Sat 28 Jun 2025 19:01:14 +0000
Manifest next update: Sun 29 Jun 2025 19:01:14 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: M4b6gmaCpkoyIJ+S+gH5hbwP+ifAWVAQhRzGWonJUJA=)
2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:4b:46:bc:cf:b6:9a:19:ae:6b:69:35:26:43:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: Jun 28 19:01:14 2025 GMT
Not After : Jun 29 19:01:14 2025 GMT
Subject: CN=f6c6ae5dbbf9cf1a9220abf41170a1c49a8c7dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:5b:fa:5b:f9:e0:0b:b9:00:65:28:75:7d:
63:80:78:67:4a:1d:38:1a:b1:2c:d1:ca:1b:4b:08:
0d:b6:8c:c2:52:48:8e:58:de:aa:90:63:57:12:fd:
6a:b2:9e:ea:ec:10:ce:51:54:d9:31:1f:59:50:30:
2a:f1:e7:e2:e6:78:c2:b1:80:c5:45:f3:1e:42:88:
3e:fb:6f:ad:b7:73:8f:63:94:ad:d3:df:3b:e8:39:
f4:12:fb:36:ae:62:09:49:0d:91:ad:42:3d:a3:68:
ad:65:26:25:95:74:32:b3:79:ea:a3:c5:4d:11:ab:
70:1a:0b:04:e7:fe:ae:66:b4:df:9b:07:af:69:5d:
69:86:5c:0c:75:80:59:70:a1:cd:ad:7c:b0:65:82:
1d:e1:dd:f6:39:17:80:ac:17:70:2f:17:5e:92:a8:
44:8c:3e:54:f6:aa:0d:17:2a:af:19:05:84:24:e6:
05:5d:93:f6:1c:22:e5:c6:a5:d8:66:d8:34:66:8a:
a6:05:fb:bd:78:b5:dd:a3:81:6f:81:68:c2:f3:c0:
10:57:80:54:f5:cd:85:55:7c:42:54:55:23:a5:53:
11:41:58:9d:aa:59:1b:05:ab:c9:de:30:be:a6:47:
78:58:95:60:77:f7:40:07:b7:52:d3:92:08:0d:08:
92:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C6:AE:5D:BB:F9:CF:1A:92:20:AB:F4:11:70:A1:C4:9A:8C:7D:CE
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:0b:93:40:2f:7d:f5:5c:66:4f:e0:ca:31:8b:4d:98:ec:12:
b9:54:db:f3:20:09:27:ff:30:73:be:49:36:fb:d3:42:03:a7:
df:83:ab:07:ef:75:4d:e2:6d:37:de:18:15:77:a5:95:f0:98:
85:0a:c6:da:cb:ce:0e:46:5e:00:9e:24:89:98:0b:87:66:6a:
d5:6f:a7:3d:f3:7d:91:1f:8e:2b:7e:cc:89:1c:56:e9:9c:e7:
78:1a:e3:62:ab:11:61:27:a5:bf:3a:68:7c:81:6a:90:11:3b:
d0:d0:b7:9e:bb:aa:cb:bf:20:9f:be:92:39:e5:64:d6:7c:90:
68:71:76:2d:fb:62:13:f1:ff:0f:5d:86:25:d4:41:d6:56:99:
b6:95:80:29:91:b2:cc:20:4f:ce:5a:49:33:ac:8a:db:94:dd:
38:1f:2a:31:9a:b4:65:5f:bf:34:43:7c:da:64:d4:27:fb:06:
a9:8e:98:56:4a:78:f7:c7:76:a3:c6:7c:85:b7:e4:95:7f:cb:
59:41:6b:c6:86:11:61:21:06:19:19:6f:b9:d5:1e:40:97:fe:
d4:da:3e:12:b7:93:a4:c2:a4:d3:3b:1f:79:d6:6f:da:5a:43:
f5:cd:20:fe:90:be:66:93:3d:b2:fa:42:56:4d:ca:57:43:a6:
67:0c:8f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:45 2025 by rpki-client