Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: 9/hiQAEuhZrYoE1HU+HQlo75GXl8a7ois4XxAvBi5c4=
Subject key identifier: C9:9C:1C:EE:38:5E:77:75:4A:72:4E:62:07:6E:C6:C2:DE:B8:7C:70
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 0197B9D876EB1923A983C3FD13B699DABC25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 0FEB
Signing time: Sun 29 Jun 2025 04:01:00 +0000
Manifest this update: Sun 29 Jun 2025 04:01:00 +0000
Manifest next update: Mon 30 Jun 2025 04:01:00 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: /M3H8cGdp9O3vOhOhgs4PayxAImgRN3CXPqlpkCme4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:76:eb:19:23:a9:83:c3:fd:13:b6:99:da:bc:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Jun 29 04:01:00 2025 GMT
Not After : Jun 30 04:01:00 2025 GMT
Subject: CN=c99c1cee385e77754a724e62076ec6c2deb87c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9f:90:e2:b5:a6:b7:18:f0:4a:42:60:a6:3c:
e5:77:85:76:fe:29:37:a7:cf:09:ce:d6:75:ff:90:
e7:21:2c:30:d7:99:6b:e1:43:65:c1:3a:f9:ed:4f:
5c:89:7d:33:3d:2c:20:80:02:38:9f:f1:c0:ba:81:
3e:b9:33:23:c3:7a:7d:a3:db:69:5c:83:b6:85:9b:
d2:c6:dd:80:9e:77:bf:8a:c4:4a:82:a6:46:d6:97:
27:12:a3:c8:1c:e7:09:23:c0:89:e8:72:87:c9:12:
59:3a:ce:aa:d4:81:6c:01:ba:ff:2e:f8:16:75:c5:
90:b7:94:03:b3:d7:5c:b3:e3:bd:a6:e8:f9:29:0c:
9b:7a:d8:3b:db:90:94:73:a4:c6:c4:7a:6b:eb:6f:
ac:54:4b:af:0c:41:61:e7:ee:81:90:9c:b4:c0:73:
9d:89:66:56:0d:65:6a:19:db:7a:49:a6:7a:78:89:
2a:17:73:7d:df:10:a0:3b:62:65:2d:31:2f:22:f6:
c0:40:85:cd:7f:e4:fd:20:11:22:dd:dc:00:b0:57:
cf:dc:56:e1:0d:3e:0e:5e:af:c3:ec:96:08:22:7a:
67:83:81:7e:18:20:6b:e2:a7:d7:e8:74:37:d5:06:
f9:ca:f2:c8:93:d4:85:d9:8b:14:c7:91:81:9c:9e:
88:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9C:1C:EE:38:5E:77:75:4A:72:4E:62:07:6E:C6:C2:DE:B8:7C:70
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ad:2b:0e:60:e2:1c:4d:2e:0d:9f:ca:a9:1e:5d:fa:64:9c:
84:f6:92:07:dd:31:b9:78:cc:3e:44:33:0d:eb:bf:4b:db:15:
5e:ac:3b:98:11:90:7b:6c:a0:e4:da:5f:7f:c3:9f:b0:e2:6c:
dd:39:c9:38:5f:df:c3:5a:fc:08:05:a2:83:3f:ec:4f:aa:6b:
e9:86:ec:60:b4:b8:88:45:d8:e7:73:58:f2:e6:36:51:84:5d:
7a:97:72:7e:88:a7:71:17:5b:d5:55:7d:c0:35:c4:29:30:e8:
7d:f6:0d:87:8b:c1:01:53:6f:5f:4d:20:b1:55:20:51:90:20:
59:3a:ad:2e:96:cb:cb:67:88:7e:69:ff:22:1e:a2:b1:ad:1f:
20:ea:d0:9d:27:fd:3c:a6:a4:f9:55:09:9e:89:14:47:c3:77:
e2:e9:10:d3:d0:c2:89:8d:e2:ba:67:10:8f:00:0f:e5:86:1c:
d4:ed:7f:3b:88:98:69:96:1c:39:8a:ea:f5:1b:18:a5:23:1f:
43:f7:d8:6b:ef:66:73:36:71:9a:ab:75:80:dc:e8:04:76:a2:
2c:c2:e2:5b:ee:b2:fe:7e:1a:ce:60:9a:9b:f0:1f:a7:d0:63:
0f:95:83:74:77:ca:f5:60:f9:b1:6a:e0:25:12:9d:15:4d:52:
5d:f4:2d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 05:44:39 2025 by rpki-client