Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: ToAaQbY6UKlURF2ORF2GAU6/7po3uhPt1iBwS+LaJpU=
Subject key identifier: 1C:52:63:E1:D2:25:C2:8A:C1:45:05:0A:BC:D2:D3:B1:38:69:FB:AA
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0197B88FE57290B65AC2A4FBF1DD45F8A726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 037E
Signing time: Sat 28 Jun 2025 22:02:07 +0000
Manifest this update: Sat 28 Jun 2025 22:02:07 +0000
Manifest next update: Sun 29 Jun 2025 22:02:07 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: FdfOH6HBDBG6l+fTmzY7MkKxuwilRgNUwSSf/XfaqF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:e5:72:90:b6:5a:c2:a4:fb:f1:dd:45:f8:a7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Jun 28 22:02:07 2025 GMT
Not After : Jun 29 22:02:07 2025 GMT
Subject: CN=1c5263e1d225c28ac145050abcd2d3b13869fbaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:f0:32:b3:0d:06:6f:f1:07:ce:a7:f0:aa:
99:42:6e:ef:b6:4e:33:7b:1a:9b:da:5b:34:f6:16:
96:83:8b:71:e8:d1:06:63:45:f7:8d:85:e9:27:a6:
d8:3c:3a:c2:d3:b6:a1:ce:76:9a:73:e0:48:b9:9c:
da:fa:4b:0d:16:a7:f6:5b:2a:b3:8e:9f:c9:fe:0a:
a7:9e:7e:1f:8e:29:06:c1:53:99:33:66:09:46:96:
40:85:8f:26:f3:da:6f:0d:8d:20:d5:29:9b:1b:98:
0f:2a:2e:1a:a9:45:d4:5b:4e:cd:82:81:57:1f:c2:
f3:95:21:87:bc:db:5f:cd:3c:0a:ad:c2:2f:ee:7c:
c2:fa:b0:e9:3d:a2:9f:55:7f:01:c9:70:7a:55:3e:
67:5d:7e:24:c7:8f:ce:a9:7e:6c:90:c9:8f:49:9b:
f5:ac:20:bf:2a:b0:47:03:79:d3:df:df:67:b3:22:
0a:b4:b2:25:93:e4:82:75:69:dc:5a:4b:78:50:05:
34:e1:78:aa:13:ff:70:cf:b3:5f:2c:bb:fc:c4:b5:
02:be:37:92:4b:76:22:fa:cc:e5:29:86:a9:6a:9b:
f8:e8:88:21:c9:89:65:d7:b1:df:96:cc:e8:40:86:
df:17:8b:b8:46:bf:23:7f:0a:ec:04:0a:33:e0:a0:
dd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:52:63:E1:D2:25:C2:8A:C1:45:05:0A:BC:D2:D3:B1:38:69:FB:AA
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:70:f2:31:54:11:73:a8:a0:78:c3:6e:20:5e:74:8d:39:88:
4c:02:5b:7d:1d:2c:bb:47:5d:fd:df:8f:b2:ab:79:6b:ec:75:
5c:9d:79:b1:34:31:d8:85:65:21:92:3d:f2:64:41:d2:81:36:
f0:ca:00:ec:e6:f9:e4:f0:21:ae:1a:d6:24:f9:d4:f1:ed:74:
b4:27:d3:d7:bb:1c:e9:01:95:d6:0d:a9:cc:eb:17:9f:a2:5d:
ff:34:b4:f8:6f:30:e2:16:a8:40:2a:bf:0a:85:14:64:da:15:
a9:e9:76:16:35:99:64:2d:96:6a:0d:f8:aa:9d:1f:7f:01:b1:
ba:03:f1:a4:dd:cb:55:db:f1:bb:da:e2:1a:cb:99:45:1e:4c:
8a:02:93:ac:bd:66:41:db:3e:76:71:43:e5:27:a3:b0:db:63:
73:ea:ac:42:20:1c:a4:0d:d6:b3:c0:ad:5d:1a:28:6c:8e:d4:
8b:44:86:fc:0e:36:ee:d2:4d:f0:bd:85:d7:24:64:65:a3:bb:
b4:1c:6b:99:d9:72:a5:44:57:55:c3:e9:49:99:60:24:dd:90:
41:35:89:4a:a6:90:04:dc:38:ed:4a:cc:ca:f1:36:76:60:a7:
76:2b:69:f3:34:68:9c:90:cb:45:21:3d:3c:15:31:ef:46:4c:
2d:50:c2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:39:13 2025 by rpki-client