Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json)
Hash identifier: KbX2QQitOrGySwzdv3EjPg8rlYwHZBKQlnEbG/CNSu8=
Subject key identifier: FF:E6:21:F0:8E:75:93:34:8C:C5:D0:4F:AD:D7:F1:0D:09:B7:F1:D1
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 0197CB3A473F9DCC0FFE4DC4B01875A81E84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
Manifest number: 1001
Signing time: Wed 02 Jul 2025 13:01:23 +0000
Manifest this update: Wed 02 Jul 2025 13:01:23 +0000
Manifest next update: Thu 03 Jul 2025 13:01:23 +0000
Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=)
2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=)
3: C3bQMRmtLfyKqffanrJ7_7vWCk8.roa (hash: EqbhaUJu7cZDNVqNN0UffRpUBKao2EeOOhzgBDrLfd4=)
4: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=)
5: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: TWfCwuq0L4P4OSdg90bdM5Y2IA+j0Xxubk4/P+Zsgx0=)
6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:3a:47:3f:9d:cc:0f:fe:4d:c4:b0:18:75:a8:1e:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Jul 2 13:01:23 2025 GMT
Not After : Jul 3 13:01:23 2025 GMT
Subject: CN=ffe621f08e7593348cc5d04fadd7f10d09b7f1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:f0:50:d8:ca:c4:97:bf:47:28:3d:9f:ec:92:
99:c5:ef:65:92:f9:42:d8:d9:df:2a:3b:5a:f3:02:
5b:72:1a:7c:77:39:d8:94:87:44:d4:58:cf:34:ff:
84:e6:f9:b1:22:c7:c2:43:5d:d9:95:4a:b2:eb:47:
52:ab:7b:0a:80:0e:d2:c8:3b:43:27:3a:ab:88:0f:
40:9a:8c:bd:b2:9b:c1:34:9c:03:5e:ca:32:6c:0b:
d1:2e:bd:c0:75:05:34:c5:55:76:b4:9f:d2:df:25:
b3:a0:96:2b:59:db:ed:1e:d0:0d:ff:6a:c2:51:56:
97:0f:a4:23:4c:aa:88:8c:23:d6:dc:cd:a7:2c:c4:
26:59:7f:e8:3c:8b:f4:12:a8:c3:b7:8c:16:fb:fa:
95:51:b4:d0:bc:bf:1f:e3:60:e8:ca:e3:c2:95:77:
37:82:40:78:55:61:76:52:f7:f2:25:86:56:2d:a6:
73:65:4a:5a:e4:8a:7f:c5:60:61:10:6d:1b:f8:a4:
68:e9:2f:27:97:8f:bf:ad:79:48:14:63:df:3a:f8:
38:27:50:b5:95:b0:4b:00:41:8c:e5:50:1c:dc:5d:
a8:a9:92:bb:e7:51:2c:da:29:fd:13:1c:76:41:d5:
16:f7:16:30:9a:bb:9b:ad:8d:33:1e:ea:bf:f6:16:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E6:21:F0:8E:75:93:34:8C:C5:D0:4F:AD:D7:F1:0D:09:B7:F1:D1
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:58:31:3a:f0:fd:f4:d0:58:ba:3c:be:3a:a0:fb:d5:bb:90:
e8:b8:62:b5:a4:70:47:44:31:21:fe:af:2c:99:f3:86:dd:08:
09:c2:8f:5e:3a:8c:1f:02:b8:3c:96:3e:14:db:39:c5:fc:b0:
85:74:32:e9:40:42:08:cf:b8:b3:e4:db:e6:51:32:be:00:39:
15:0d:2b:f1:67:ec:4f:3b:59:20:d5:44:31:e2:81:23:a7:fa:
a8:6c:de:04:6d:03:17:3c:e2:28:aa:b7:76:4e:8d:16:8f:06:
24:e9:3b:87:8d:e6:17:6e:4b:a7:ef:17:56:75:b1:61:a2:2e:
e7:fb:2d:b5:94:f2:60:38:b4:8c:88:2f:95:14:12:82:51:28:
60:82:43:2b:37:13:ce:02:4d:8e:d8:d5:84:4d:e1:f0:79:1e:
cf:48:50:a7:27:64:45:11:9b:5d:b8:ec:70:10:cf:56:ec:fd:
34:45:1b:a9:df:78:3d:29:04:88:e8:48:50:d8:79:9b:24:c2:
4e:85:6e:fb:28:74:75:bd:d7:d0:19:0b:8a:dc:cd:d5:67:59:
c3:cd:8c:53:f2:14:6e:1e:eb:8f:28:43:5e:03:47:d8:64:7b:
84:01:40:2d:b1:65:63:45:a5:35:f4:44:60:1a:18:d1:56:ab:
fa:34:7d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 22:40:41 2025 by rpki-client