Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
File: HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft (raw, json)
Hash identifier: dGZWqZNadpmhm7nA9bLjce1+EeKLSciE0QyCFjwErdA=
Subject key identifier: A0:E2:04:4B:6C:D4:72:19:80:08:6D:3A:7F:ED:BC:8A:FE:54:55:B3
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 0197B77CA140B112960143CFBDD728753851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
Manifest number: 0B60
Signing time: Sat 28 Jun 2025 17:01:27 +0000
Manifest this update: Sat 28 Jun 2025 17:01:27 +0000
Manifest next update: Sun 29 Jun 2025 17:01:27 +0000
Files and hashes: 1: 89ZdTmp7S2NunnuoGSf_2vtgPY8.roa (hash: bPa9rSCPFw03d28VXPa3N71Ifao0FpVDusG0bNmLxwE=)
2: HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl (hash: YgmAKfO3VeiYr9udkfjIMVXDkrBCa3W93za3HCAFEOs=)
3: f9__0EOOD2bbqws_SYovsEadu64.roa (hash: rdpqu3t3b72JgKQs0LjFSsEK4eL5Gx3rtjq221xpO1U=)
4: fTWM1zKEU10CvPHR7x8xLqGMmBk.roa (hash: SLdOjrmdsiTj6gBhRX9Fmq3urmuPys2J1yZIBUXb9kE=)
5: kc5iSTCS2Wj8DpgYXFD3Z8kI0-w.roa (hash: uGP+3hnsQtTfTdEoExGqurh/AYLhmRguK0+ycdKSTRo=)
6: ozQ0B3nPhW9yGj6eBSj3bv5_jKQ.roa (hash: 52z0loKl64IpfsA33HSHXJF3VKeUhqS7Sku5ZE137X0=)
7: rZWoVR8go-ETzcAh50MLSM8Nmkw.roa (hash: cgavxAlOshWtjoy57HjDWJFVrT3Fp0YJu3pSKWnrDaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:a1:40:b1:12:96:01:43:cf:bd:d7:28:75:38:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Jun 28 17:01:27 2025 GMT
Not After : Jun 29 17:01:27 2025 GMT
Subject: CN=a0e2044b6cd4721980086d3a7fedbc8afe5455b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:f4:a2:91:49:c5:db:95:5b:44:ea:98:16:
78:1e:6b:b1:48:8c:05:5a:22:a0:1c:24:a2:d0:b4:
03:8e:c7:e6:3e:30:a4:91:85:d7:f3:32:5a:55:4b:
59:42:b9:ce:77:47:86:16:13:25:61:11:64:4d:67:
83:70:29:ec:f4:c7:98:4c:62:de:ae:77:8a:12:81:
7c:fb:28:1a:bf:e8:96:dc:f4:cf:5b:67:0b:52:fe:
33:33:96:27:35:59:7a:7e:1c:2f:28:84:8e:d4:71:
46:ca:8f:af:17:5a:0b:c8:e1:4d:21:a9:c4:da:59:
39:94:f4:72:a9:b7:79:e9:a3:e3:0f:ea:94:e9:83:
72:14:02:3f:72:d5:fa:7c:e6:f7:8d:3e:4d:d8:aa:
d8:94:e6:7d:fb:29:cb:6b:94:3e:ff:bd:af:c2:a6:
6c:7b:45:05:61:0f:ce:c8:ad:15:c5:87:55:f8:51:
37:7b:6b:c7:20:54:4c:58:41:e8:f9:87:3e:64:b1:
6d:32:02:14:10:92:40:f0:99:5f:3e:46:a8:ee:ac:
6c:85:09:c7:1d:13:86:55:0e:bd:3e:bd:20:95:e3:
9d:0d:ae:52:7d:93:58:1e:e5:ec:e0:07:1f:e9:4e:
91:51:6f:02:4a:59:87:17:64:a4:38:a2:a9:d7:f8:
ec:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E2:04:4B:6C:D4:72:19:80:08:6D:3A:7F:ED:BC:8A:FE:54:55:B3
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:09:08:68:32:e5:04:e8:5c:b5:66:03:ff:77:90:09:26:44:
1c:a5:c0:8b:e8:03:65:98:e2:f5:05:6a:b0:89:89:92:27:e7:
bc:dd:2a:78:44:2e:48:12:23:32:1b:cd:5b:b8:86:eb:6c:ea:
fb:b8:e5:42:5d:88:11:8b:b7:cf:81:14:50:dc:8d:94:b1:b6:
97:83:b1:f5:74:97:67:32:59:c0:2b:4a:06:de:f5:3d:22:4f:
4a:8c:9a:c4:21:00:f1:e4:be:b8:47:11:a6:7b:e6:b4:b5:f2:
6b:22:b1:c5:9b:73:66:7d:b5:88:fb:f9:84:ab:8f:5b:03:97:
8b:7d:04:16:ad:61:d0:7d:1b:e7:ef:23:37:38:a0:49:1d:32:
4a:b8:aa:eb:9a:bc:fd:4c:b1:21:35:d8:7f:38:53:73:ec:83:
00:99:40:2f:90:54:8a:31:38:a0:a6:0e:70:55:97:2e:84:80:
1b:28:d2:92:cf:b2:2c:a8:b6:1a:78:ca:c0:55:c8:33:63:b3:
9c:19:85:bf:8c:f4:eb:62:2d:d0:9c:e8:88:a2:b1:b7:f5:35:
a6:8d:b0:85:17:88:65:81:c1:e3:97:5f:2b:2d:49:e5:9e:70:
c2:ea:b6:9e:f8:3e:b7:d9:4a:e0:50:7f:0c:5d:21:f9:d8:2c:
9d:b7:1b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:45:14 2025 by rpki-client