Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json)
Hash identifier: pUdm5YYLqpcny2PDXMQse2pj14FJSPvigBrFdCeCbIk=
Subject key identifier: 6B:26:7E:A0:4B:61:18:C7:47:F3:B4:F6:13:DA:86:B3:43:6D:A7:90
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 0197B9337292820AD7D94976494831E95B19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
Manifest number: 0BF9
Signing time: Sun 29 Jun 2025 01:00:45 +0000
Manifest this update: Sun 29 Jun 2025 01:00:45 +0000
Manifest next update: Mon 30 Jun 2025 01:00:45 +0000
Files and hashes: 1: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=)
2: NLcJ1zHiWemoNGCQqxBLJZM1epY.roa (hash: sN7g+z3kFVXgkKd1egNCxj+JRztRoGDD2QPyWEFToRI=)
3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: jOsKUuo6wBTTSm4+G8UQe6/1FwV+CrHsjhpvdC3hB2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 01:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:72:92:82:0a:d7:d9:49:76:49:48:31:e9:5b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Jun 29 01:00:45 2025 GMT
Not After : Jun 30 01:00:45 2025 GMT
Subject: CN=6b267ea04b6118c747f3b4f613da86b3436da790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c4:20:38:57:bd:87:93:f5:c9:13:ea:f2:0e:
ad:63:86:7a:7b:87:c6:74:b6:3b:7f:0f:fa:d5:28:
38:d6:9c:34:1c:dd:ae:0f:fe:bc:df:13:56:ed:49:
d0:4a:f5:57:ff:05:83:a5:f3:27:46:04:63:1a:92:
c2:83:12:7c:d6:cb:82:f3:e8:a6:06:0f:d2:5a:0c:
3b:33:85:e3:3a:1e:3a:e6:b5:7b:aa:4a:ee:d6:68:
2c:6f:90:9a:4b:22:17:5f:b5:31:a3:db:15:2e:90:
a3:92:cc:58:d5:69:35:af:ae:14:e4:5f:16:87:09:
d2:64:b4:9b:b4:05:26:d3:72:16:16:df:e7:dd:5a:
9b:5c:c9:1c:7c:4d:76:14:8f:cf:95:d4:84:f8:00:
38:39:16:0b:ef:5b:52:e5:e0:27:cb:0c:d1:76:f2:
ec:67:1f:8a:a3:0c:be:40:d4:fc:3b:64:56:e5:84:
2f:52:2b:99:d4:a1:5b:5d:ad:cb:bd:82:04:1c:6f:
30:3c:45:fc:1e:4e:55:c4:b1:2d:14:10:42:c9:69:
36:ef:d3:87:71:60:11:cc:7d:de:bc:69:e1:5c:51:
d7:a5:e8:d8:4e:8e:e2:e3:ca:a3:22:9d:16:64:e5:
59:08:08:d0:87:2e:86:5b:b8:77:15:d1:a2:1d:73:
00:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:26:7E:A0:4B:61:18:C7:47:F3:B4:F6:13:DA:86:B3:43:6D:A7:90
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:83:17:f7:0f:d6:83:1e:b9:da:c1:99:16:e0:30:e3:de:54:
3a:cb:1f:8e:12:6a:01:85:ce:c6:58:53:80:10:cf:2b:1d:2c:
23:b9:23:43:77:ea:ae:44:1e:76:c6:01:1b:43:d5:19:95:53:
08:7c:42:98:49:a1:cd:e2:dd:d1:8b:35:b0:50:b5:b5:f7:d9:
8f:25:9c:48:09:f0:25:12:b2:11:c8:04:16:53:e5:d2:5c:7f:
26:c7:ef:ed:31:62:7f:48:e1:1a:6e:60:53:ac:e4:4d:4c:da:
4c:30:24:98:5e:80:f3:ae:b9:bc:93:54:e0:4d:88:17:62:bb:
3c:75:5e:05:39:32:e8:5b:3d:85:b5:9f:16:fd:a1:9a:08:18:
5f:fa:2e:a8:88:10:2b:cc:04:dc:5c:d0:23:4e:a6:01:90:82:
60:3b:4e:00:93:cc:e0:36:f1:33:3c:cc:75:56:03:bb:18:37:
0c:73:17:dd:b1:03:a8:64:b5:89:5a:ee:1e:70:f5:e4:39:dd:
9a:1b:0f:95:df:89:55:a9:e7:22:39:9d:67:62:72:6a:f1:f0:
ba:c7:56:4c:ae:ca:38:7b:d2:9f:7a:bc:40:8f:cc:75:84:63:
72:a3:62:27:3a:b0:70:c0:5c:ad:62:e2:59:12:87:70:36:e8:
bf:42:b4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:18:59 2025 by rpki-client