Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: w8hk5QbkXwuE/FtTzP/ErFalFJcqErO/iH0EUAtNTMU=
Subject key identifier: CF:69:FF:67:B8:5F:93:85:E1:5C:2E:F0:29:E5:C8:5C:68:B4:EB:7A
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 0197B70ED95AAA69C72353A593D7B10F25C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 1161
Signing time: Sat 28 Jun 2025 15:01:33 +0000
Manifest this update: Sat 28 Jun 2025 15:01:33 +0000
Manifest next update: Sun 29 Jun 2025 15:01:33 +0000
Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=)
2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: QabN+SLcgWFzx5a0qROYt58drMPoOo1OBngejhTOocc=)
3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d9:5a:aa:69:c7:23:53:a5:93:d7:b1:0f:25:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Jun 28 15:01:33 2025 GMT
Not After : Jun 29 15:01:33 2025 GMT
Subject: CN=cf69ff67b85f9385e15c2ef029e5c85c68b4eb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dc:9f:f8:7c:f5:e2:37:ce:03:a4:b8:2c:b3:
be:d5:96:53:77:4f:3d:e4:c4:1e:f7:62:68:1e:76:
2e:a6:e0:64:93:c2:f7:7f:92:34:e9:db:a2:05:6e:
3a:35:7e:fd:03:89:82:1b:fe:0d:23:93:42:07:ff:
45:ca:78:d2:ec:9b:06:4c:eb:1c:1c:23:2e:c4:0c:
fb:96:35:21:80:c7:5d:5c:c3:c2:5a:e2:a4:d9:9f:
fd:26:b0:17:83:2e:bd:1a:e1:d5:b2:1b:35:5f:94:
fd:06:ab:85:b2:30:5f:22:59:95:77:de:79:c7:bf:
5b:74:f9:1a:07:05:0a:f0:4b:bc:14:72:34:c0:e8:
0b:91:72:c7:24:5b:bf:6a:27:21:f7:68:11:c7:44:
3c:57:9a:ff:fc:fb:d2:1f:88:4d:d5:29:a1:4f:30:
3a:66:e5:ac:2e:01:8b:99:6f:d5:63:70:d5:a4:7a:
5d:2e:59:de:86:1c:2f:da:70:cf:eb:f4:7e:3b:83:
b6:67:68:de:00:51:34:13:3d:f5:6f:17:7c:29:4e:
ae:01:96:1b:93:18:3e:0b:d0:58:7b:32:9a:c1:1a:
f8:e7:e9:d5:da:81:87:08:77:16:5a:82:49:b8:86:
1b:a2:38:d0:25:3c:19:6c:10:49:2c:ed:97:15:3c:
94:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:69:FF:67:B8:5F:93:85:E1:5C:2E:F0:29:E5:C8:5C:68:B4:EB:7A
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:58:25:8a:3a:95:52:e9:cc:ec:a3:ee:d9:4a:a1:da:c7:7a:
59:1c:92:c8:9b:8a:37:0d:05:de:99:85:72:7f:47:fd:9b:50:
62:84:fe:fc:1f:19:d0:a6:63:1e:f2:88:81:98:7e:ca:c7:5f:
66:6f:1f:5b:df:de:0e:94:04:b3:37:1b:dc:3a:47:ba:c4:2a:
87:b8:ed:b1:fc:2f:f3:12:fe:5c:17:43:2c:3d:c8:bc:2d:24:
67:b4:3a:eb:ad:7e:3c:a9:f3:f2:25:34:79:8b:b6:27:22:94:
b4:b7:97:3e:90:10:51:81:30:8a:d3:fb:f4:3a:dd:fa:81:23:
31:dc:99:d3:cc:c2:87:18:88:44:cf:83:49:c8:ba:23:16:47:
26:28:c2:f0:34:e7:ca:f9:bb:41:64:ff:93:ac:bc:79:f6:8f:
1a:c1:5b:c7:1f:fd:6d:53:ef:74:e8:31:3e:54:14:8c:bf:3c:
b2:18:45:fc:ef:cb:85:cb:7e:76:43:87:00:84:b1:18:99:7c:
fe:27:c5:fd:a0:96:62:a9:60:3d:13:16:cc:40:24:b8:7e:49:
d2:52:25:9c:67:f9:52:24:99:a1:d5:d7:a2:96:00:77:6f:fe:
2d:51:a5:29:5f:a5:27:28:1a:b7:e8:f4:a8:8f:90:03:e7:32:
f8:3e:54:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:33:57 2025 by rpki-client