Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: akmox3cQ7ISxjGVAV5XzOB3rRTb0DFovw9GMok1TN8s=
Subject key identifier: EB:AC:1B:9E:92:22:F4:03:CE:AF:47:68:AC:D8:6D:58:BC:74:23:BE
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 0197B63295BB07C3DC4D20356824638C71BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 15B9
Signing time: Sat 28 Jun 2025 11:00:57 +0000
Manifest this update: Sat 28 Jun 2025 11:00:57 +0000
Manifest next update: Sun 29 Jun 2025 11:00:57 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: mALWSSh/Ba/5PYMlt0uh0BzTqRZocjVAfTBxjPM8BxM=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:95:bb:07:c3:dc:4d:20:35:68:24:63:8c:71:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Jun 28 11:00:57 2025 GMT
Not After : Jun 29 11:00:57 2025 GMT
Subject: CN=ebac1b9e9222f403ceaf4768acd86d58bc7423be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:27:a5:d5:ab:3f:36:cc:fc:94:e1:e1:d1:ab:
87:7e:b9:cc:5e:50:c9:de:64:c2:86:ca:6d:19:88:
ac:35:13:59:ad:7e:26:42:4f:53:e0:bf:9e:fa:83:
2e:74:58:9b:ef:5d:43:fb:76:d7:3f:c8:ff:0d:f5:
2c:b4:60:34:e2:94:5d:1f:e1:0e:86:ee:fd:86:97:
f7:03:72:be:cc:ea:9e:b2:3a:0e:5e:26:c3:1f:81:
e9:46:8d:73:dc:a7:c3:54:52:00:22:68:e7:c8:16:
4f:83:73:2e:a8:42:92:e0:0d:21:b4:af:63:b2:2f:
63:37:fb:2f:a1:15:40:59:19:3b:69:a3:b6:e9:53:
c9:8b:d3:a7:18:b6:94:81:86:e7:59:44:e9:5d:14:
39:68:33:67:c2:8e:72:96:6d:18:dd:07:9f:9d:fd:
b8:fe:91:07:2a:9f:1c:6f:38:95:a5:e7:2d:9c:35:
00:d7:18:88:fc:8a:22:86:88:67:76:6f:8c:d5:51:
7f:28:11:44:3f:fc:3f:b6:6b:ff:ee:d4:37:74:ee:
ed:a4:29:b0:90:35:98:84:75:71:46:e9:8d:e2:0a:
6f:5a:4c:69:5b:1e:4f:32:f4:23:14:c7:b2:9f:3b:
a6:a9:8a:2b:c5:8c:1a:8d:9d:01:d7:cb:d7:33:95:
77:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AC:1B:9E:92:22:F4:03:CE:AF:47:68:AC:D8:6D:58:BC:74:23:BE
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:0c:d3:da:60:df:ef:28:82:b6:b1:4d:6f:28:fb:bb:65:4c:
a5:03:f0:7a:75:58:f9:d1:d4:e0:40:1d:8b:51:90:30:6d:dd:
e2:7a:0c:0f:59:f8:04:be:66:89:72:e4:da:89:d8:0c:7e:fc:
ed:00:0b:d5:c5:6a:16:41:97:a5:b8:ff:e5:49:10:0d:40:f8:
21:d3:3c:8b:e3:af:42:bd:e3:41:6c:2d:90:42:74:78:b3:85:
b3:4a:61:f5:60:af:52:05:fe:97:02:c2:01:fc:26:18:27:69:
6b:78:a4:47:54:5d:49:72:84:c2:12:27:b8:6b:6c:44:bd:f1:
f6:03:fc:8f:57:67:b3:30:5d:e5:e8:fc:05:81:3f:67:db:10:
9e:73:02:e2:d8:5f:f5:d4:c8:e1:3f:be:1e:04:ea:20:5a:af:
bb:18:2c:c0:8d:ca:96:4b:08:11:a2:e7:19:57:3d:14:dc:a9:
34:9c:57:59:8a:fc:77:20:82:0a:ed:bd:a7:8e:b8:ca:58:b5:
70:0a:a9:e3:77:1f:61:a5:e1:97:44:cb:12:f0:b6:b5:8e:47:
d9:a0:1c:28:72:14:44:80:1a:62:36:a0:c7:2a:ce:14:54:fa:
22:ce:08:5d:e9:2f:ef:e1:0f:4c:fc:da:60:13:76:05:c1:98:
cb:4d:35:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:04:46 2025 by rpki-client