Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: DeElf/FCsvg4TvZApeTmbNJYdsa8+kpJ1X5GXuP2tfs=
Subject key identifier: 82:96:9F:05:57:4F:0A:D0:1A:66:08:74:AD:5A:F6:92:84:65:96:07
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 0197B77BF0DB8D0E60BA1293F60B6BEF6D2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0582
Signing time: Sat 28 Jun 2025 17:00:42 +0000
Manifest this update: Sat 28 Jun 2025 17:00:42 +0000
Manifest next update: Sun 29 Jun 2025 17:00:42 +0000
Files and hashes: 1: DKCys4KRYdnrGXDLl1nVf9nVmRA.roa (hash: IaLK2xfRNIne0nZPaZ2/jfh45tolOprh7fcjo3irVI8=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: ZKjr6VfqpIcOZyPZFRRPMkgyvngvsjIjlqTLIVRqdWw=)
3: NfUK1WerAdsfJiTM68i5Lnvkb2w.roa (hash: ZGezIXFkpMHBb+7ell8DWUCsKtD9DU2fEiI/6174M+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f0:db:8d:0e:60:ba:12:93:f6:0b:6b:ef:6d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Jun 28 17:00:42 2025 GMT
Not After : Jun 29 17:00:42 2025 GMT
Subject: CN=82969f05574f0ad01a660874ad5af69284659607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a0:19:08:a7:9f:2b:25:01:6a:34:a3:f1:63:
5f:e6:45:78:24:ab:13:83:fe:dc:51:58:36:46:77:
20:d7:00:0d:6d:87:92:d0:3a:ad:c1:a5:5e:e6:00:
59:88:a1:c2:52:61:51:9b:13:dd:6f:e4:cf:34:cf:
71:14:af:e2:bd:d7:7d:0f:dc:f1:4a:fc:9b:07:5b:
6e:3b:e8:2b:60:7e:df:3b:f9:5a:5e:bf:83:2a:63:
f7:ff:8e:6c:9c:8f:aa:9a:cd:1f:f9:9a:ec:0f:e9:
9f:5a:97:13:fb:54:6f:0b:52:90:7a:47:b0:3a:22:
fc:d0:bb:7f:d4:03:11:0a:f6:0a:1b:fb:b6:e3:db:
53:b5:f6:a7:86:7f:7e:dc:ad:04:42:14:01:e4:ee:
eb:c2:a3:d9:f9:f5:41:1d:6f:5a:db:c6:22:2c:07:
0f:f7:94:de:5c:a0:4b:a3:22:5a:74:5f:7b:42:bb:
d9:42:6d:42:8c:7d:b3:c7:64:bd:30:51:dd:98:89:
bb:9b:ea:34:91:24:83:ad:fe:34:c1:1e:16:98:10:
45:8a:20:72:06:77:05:3f:5c:a2:ec:93:b6:05:fc:
9d:b1:11:04:33:cb:d0:12:b3:0c:7c:6a:92:e2:33:
94:4f:2f:fc:3a:f5:0f:e2:85:09:dc:bb:a2:5a:fc:
94:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:96:9F:05:57:4F:0A:D0:1A:66:08:74:AD:5A:F6:92:84:65:96:07
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:1c:8f:4e:1c:6b:cf:e5:67:60:72:f4:96:95:ad:af:3a:70:
06:f5:75:df:47:87:40:7d:c5:3a:60:62:9f:1c:ce:22:c6:aa:
8e:46:3d:8d:46:01:ad:bb:69:75:d7:b0:17:1e:94:35:44:b6:
c6:c5:c5:71:48:34:84:fb:ea:8c:06:a4:2b:a1:3f:26:6b:3b:
c5:6b:82:2b:d7:56:31:92:74:bd:f3:67:6e:30:21:2c:c3:cb:
0e:6f:c1:31:2e:7a:c7:8c:69:65:b8:d2:27:a3:dc:df:31:c5:
ce:91:f0:bb:72:6f:c5:a3:3f:4d:1f:9a:64:57:27:ca:dc:ce:
8f:1a:51:d4:e4:0b:6d:6e:f2:c3:59:14:90:36:79:d2:10:bf:
5f:a5:38:cd:57:64:58:0d:c8:01:fe:74:86:96:fb:e6:ef:81:
4a:ac:4a:3d:d4:c5:37:a0:9d:0c:77:65:89:36:35:fe:33:9d:
e3:09:98:75:da:11:f0:45:e5:4c:ad:cd:94:b3:c7:15:ee:60:
c4:cf:26:ef:59:86:f0:ad:50:8b:2b:ff:df:51:85:7d:94:58:
40:cd:de:98:1d:c3:70:9d:fc:33:38:ba:dc:67:07:b4:97:a5:
63:c3:49:1f:ea:2c:d6:8e:03:6f:bf:41:ea:33:bd:12:8d:ea:
89:07:a6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:46:33 2025 by rpki-client