Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: lCaWfPMfHuAPfEq4QmMLbPkpAPB2VO8It3vUHHGZhdM=
Subject key identifier: D6:04:64:70:52:62:81:EC:19:A8:9F:02:CA:1C:AA:BF:62:D8:DF:AC
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 0197B77CAD44F47DA88182963C7B4FCB399E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 0CDB
Signing time: Sat 28 Jun 2025 17:01:30 +0000
Manifest this update: Sat 28 Jun 2025 17:01:30 +0000
Manifest next update: Sun 29 Jun 2025 17:01:30 +0000
Files and hashes: 1: 574W7z-0GVSyQ6o383reYXA7QZc.roa (hash: 7oxCz8Z8dYajS9esPzPSpl386CuN+PzQh5YVWvXB59o=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: Z32XWV0i/fjiTvtd3l2Ldsc/Q4FhRDgLSouB5wJpTWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:ad:44:f4:7d:a8:81:82:96:3c:7b:4f:cb:39:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: Jun 28 17:01:30 2025 GMT
Not After : Jun 29 17:01:30 2025 GMT
Subject: CN=d6046470526281ec19a89f02ca1caabf62d8dfac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d7:fa:01:65:29:c2:27:67:7a:9e:43:73:ee:
5d:3f:eb:4b:40:e6:3d:4a:fd:9d:05:1e:47:a3:f8:
ce:8a:4e:ff:c5:37:c2:d4:27:9a:c5:56:60:dd:4b:
b7:e9:0a:62:6c:a8:ff:d2:72:37:0a:b7:b7:33:ba:
63:7e:cb:b6:a7:53:88:f4:af:60:11:53:30:4e:d2:
3a:0c:fa:b9:b8:1f:15:89:08:bf:e4:e2:73:aa:d8:
8a:ad:1f:c8:70:e2:8d:63:81:b3:a6:9c:79:23:a3:
3f:2a:23:05:59:3e:e1:ae:15:43:2c:8b:e3:e8:e9:
85:69:5b:63:31:b6:dd:97:07:a4:85:2a:bb:03:c7:
3b:1d:72:b4:d1:35:b5:42:ea:22:e5:6f:43:f4:b6:
83:37:98:83:19:0c:2d:57:34:7c:11:c3:71:1d:9c:
49:8b:0b:cd:69:fe:8f:da:9e:30:ce:e1:93:31:40:
21:8a:21:a3:ed:4f:41:dd:04:35:4d:9c:1e:5e:cf:
a8:00:96:78:6c:a8:4b:fb:5b:e0:71:ae:90:b1:f6:
b1:31:3d:8c:be:5e:42:81:19:58:60:a4:7e:46:eb:
21:78:9c:e9:d0:41:2e:67:d1:b0:47:fc:de:48:2e:
09:6c:84:e7:31:fe:4d:4b:b5:6a:c8:05:e4:4f:81:
2d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:04:64:70:52:62:81:EC:19:A8:9F:02:CA:1C:AA:BF:62:D8:DF:AC
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:dd:ad:26:72:f6:06:9f:46:c7:2b:6a:ed:4b:c1:9a:9e:5c:
3a:81:98:fe:fb:be:d9:24:88:7f:d8:b2:1f:76:55:f6:fb:b6:
c0:6b:cb:09:16:e7:6d:2f:dd:38:0e:6a:3c:d4:a8:e6:18:de:
85:47:d5:16:c2:a5:3a:d5:33:3a:6c:d2:21:47:34:91:15:1e:
40:44:e2:0c:ef:07:16:42:1f:af:23:1c:14:a0:62:92:0c:0b:
71:93:72:25:ab:2c:4c:97:73:a5:c6:8a:2e:19:a0:05:bc:b1:
dd:8a:44:d8:8b:21:83:81:45:6c:1c:3a:a0:3b:d9:fc:3f:01:
99:07:13:4d:e5:74:b8:63:8f:1e:b2:7b:5b:15:c3:57:e4:cc:
af:ec:21:bc:3f:e8:24:bf:d2:30:7b:08:61:73:d5:7c:7c:85:
74:78:4f:15:13:b4:9d:ff:da:8a:e9:06:82:d2:b7:ac:9a:c5:
91:17:ee:01:02:e2:e4:5f:4c:d2:16:58:c0:30:bf:98:43:b2:
a8:07:6d:3c:03:f1:2b:7e:01:a0:84:4b:f4:26:49:11:d3:a2:
2b:65:43:4e:be:82:69:3b:a5:3b:ee:e7:c7:c2:d6:d3:f8:4b:
f9:36:3d:aa:08:57:f6:75:4b:22:14:6f:28:28:b4:13:b0:d8:
34:e0:9a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:46:03 2025 by rpki-client