Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json)
Hash identifier: fzW3wMclwGiff7FfiGksLlrjSZDExIzvDuM4blIjaTU=
Subject key identifier: 9E:B3:9D:5D:50:B1:84:1E:47:A8:53:04:3B:11:6D:F6:E4:EA:AC:CA
Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Certificate serial: 0197B933D736D0AFF385F0968F4A645E1591
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
Manifest number: 015F
Signing time: Sun 29 Jun 2025 01:01:11 +0000
Manifest this update: Sun 29 Jun 2025 01:01:11 +0000
Manifest next update: Mon 30 Jun 2025 01:01:11 +0000
Files and hashes: 1: cllA8kNp-t480y7IfyyWuiklziY.roa (hash: 5bq8pPC98WVuN+UCw7i3OOCXOObrhETW5cCP805rEU4=)
2: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: NqeGGHNw7946+3iZFqprrQ6giZcU1upxEQoTrac83cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:d7:36:d0:af:f3:85:f0:96:8f:4a:64:5e:15:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Validity
Not Before: Jun 29 01:01:11 2025 GMT
Not After : Jun 30 01:01:11 2025 GMT
Subject: CN=9eb39d5d50b1841e47a853043b116df6e4eaacca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:48:a5:c8:4a:8c:5f:50:72:2e:3e:dd:24:d3:
bf:80:b3:67:6d:a6:9d:2c:8b:dc:4c:c5:b9:e9:f1:
c9:2b:0a:e2:8c:c4:8b:6d:e0:4f:6b:2a:8b:93:2a:
89:79:b5:69:14:e1:0a:cf:87:36:40:43:11:83:b8:
16:c8:c1:72:41:6c:eb:28:85:cb:e9:a6:a9:ec:aa:
15:17:4a:9e:5f:6a:09:5b:f9:ca:0a:29:5b:23:4f:
4a:a9:67:4a:1d:57:23:ec:5b:09:12:a9:23:18:5b:
43:a4:6f:56:34:34:90:69:1a:9f:d7:fc:af:47:19:
d1:96:3a:e2:3e:02:04:0c:b2:3f:d0:0b:64:6d:fb:
62:0d:a7:72:58:13:7b:73:2e:8f:e7:c7:49:c2:6b:
a2:90:ba:1b:61:73:38:cb:4f:86:67:74:6f:d9:69:
d3:3d:e1:8c:07:ec:3b:c8:9f:1a:be:6f:25:40:9d:
df:8e:e6:63:12:fc:42:ed:27:75:c5:a8:85:f4:c9:
e0:3a:16:47:42:9a:ed:8b:a3:47:c9:4c:41:a5:d3:
6d:fa:df:1c:e2:0c:f1:79:1b:1f:1f:24:4b:d5:ee:
42:62:4e:51:0e:0d:5a:d0:1e:28:d7:5d:23:fa:67:
1a:67:5a:af:43:d5:9b:98:04:25:8d:bd:de:a7:ea:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B3:9D:5D:50:B1:84:1E:47:A8:53:04:3B:11:6D:F6:E4:EA:AC:CA
X509v3 Authority Key Identifier:
keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:d6:2d:43:81:ac:96:37:7c:5b:3a:d1:dd:76:11:6f:e7:33:
b0:9d:66:48:a3:68:c2:a9:d7:58:43:5a:96:a3:fc:07:3d:6f:
14:e2:2d:72:1d:7a:fa:31:32:7b:ee:93:e7:45:46:65:f6:21:
dc:5a:6b:ae:1d:4a:54:f2:a1:dd:a5:82:56:61:4c:86:0d:38:
32:7d:8d:30:de:07:0d:83:96:03:7c:43:80:8e:db:d4:db:ae:
ca:97:25:7d:eb:2e:4f:64:ac:97:41:ec:39:15:2d:d9:6b:ea:
77:7d:f5:2b:fa:ce:93:55:d6:13:28:20:b9:42:2f:53:b8:f6:
51:7d:1a:b5:39:9d:de:89:5e:3d:ff:06:3f:bb:41:a5:d8:9e:
f6:ed:47:16:fe:4e:19:ea:ae:5d:bb:4c:17:f2:4b:2b:b3:22:
f5:6c:9c:f5:7e:a2:a5:84:54:ad:60:6a:7b:e2:dd:b7:d1:f9:
e4:b0:62:0a:52:ee:92:75:1d:c0:ab:c1:97:a2:25:0b:e7:c0:
5b:c7:07:33:70:76:ea:14:34:25:60:fa:84:76:0d:e7:b6:e3:
9f:7d:f6:f6:4f:5e:6d:02:cb:55:41:1d:71:25:47:69:da:56:
ef:a0:c4:0e:59:75:1c:5d:cf:0a:70:30:3a:06:d8:92:fd:f4:
92:cd:b8:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:21:23 2025 by rpki-client