Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: NsJM++JukAEUzZJIq18skgTFG+sLk7V4crNG4kz32A4=
Subject key identifier: 13:3D:F6:88:D1:FA:E1:29:0F:6B:28:99:A6:82:0A:E4:F5:3D:88:D6
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 0197B7450F21BD15584DE2DD7A20C3B3A2CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 0538
Signing time: Sat 28 Jun 2025 16:00:45 +0000
Manifest this update: Sat 28 Jun 2025 16:00:45 +0000
Manifest next update: Sun 29 Jun 2025 16:00:45 +0000
Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: GuhPmC87mhbC4k6HVl+JGgtNBde+Q0XfEEhIenZg0Ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:0f:21:bd:15:58:4d:e2:dd:7a:20:c3:b3:a2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Jun 28 16:00:45 2025 GMT
Not After : Jun 29 16:00:45 2025 GMT
Subject: CN=133df688d1fae1290f6b2899a6820ae4f53d88d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:a1:dc:53:c9:f9:e4:5c:9e:fa:39:7e:04:
fa:5e:ff:58:25:ce:98:a4:43:32:cf:fa:cf:85:9d:
5a:36:66:22:34:ff:0d:99:d6:da:0d:5c:e1:95:86:
7a:22:1d:7d:05:5a:8c:67:dc:e5:e3:67:4b:82:5f:
85:27:84:b8:78:14:5f:e3:4a:05:f8:b0:19:ad:49:
b5:a9:7c:0a:7a:e0:4f:89:4b:c6:0e:ae:e6:98:9d:
be:d6:df:06:3d:93:74:d0:58:b5:58:cb:70:dd:02:
32:f7:38:b7:18:cf:2e:bf:4a:6b:28:ab:e5:53:da:
f9:b5:3c:63:a7:fe:01:c6:35:bd:fb:0a:7b:50:d9:
f2:e9:d9:1a:84:7f:c3:13:fc:b9:ed:db:39:1c:9f:
dd:f7:59:af:e6:d7:69:83:cc:79:34:87:4f:ad:05:
6e:20:6f:41:4e:2b:6b:1f:b9:90:82:35:99:1b:f0:
66:1e:06:c4:d1:63:4a:5f:9e:66:2c:d9:c6:0f:ab:
4b:23:ae:f0:36:bc:4a:4a:f2:74:7a:f7:34:bc:41:
e4:00:5f:82:01:ef:ed:ae:cf:21:be:1a:a7:3d:cb:
61:0a:eb:fb:7f:20:cb:9d:1e:eb:5f:45:63:52:1a:
b3:c4:58:40:bb:bf:b9:7d:18:6e:bd:d9:78:40:44:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3D:F6:88:D1:FA:E1:29:0F:6B:28:99:A6:82:0A:E4:F5:3D:88:D6
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:c2:4d:1d:16:d1:60:36:ac:4d:52:89:7b:ec:b6:d1:3b:60:
68:8d:8f:71:e2:61:aa:2f:3a:92:0b:43:01:0f:50:b9:cb:a3:
21:56:fc:48:46:1d:e1:94:a1:c2:4b:e2:a1:21:4b:30:ff:4d:
3d:d2:29:45:df:95:ff:57:5c:15:61:9c:f4:c9:b8:f5:8f:74:
21:38:af:b2:f7:c5:5f:cb:af:bb:09:12:80:8c:ae:54:ed:e3:
69:8d:71:57:20:8c:8e:fc:e4:aa:52:95:56:c8:df:93:67:c6:
6b:ca:00:ac:4d:6e:97:a9:4d:0d:fd:1c:38:97:86:f0:d3:48:
b7:03:a2:48:0d:1c:8a:7c:79:98:da:9d:04:18:80:8f:24:63:
d3:d7:60:38:75:19:c4:b5:da:e1:83:04:5e:0c:06:4a:63:5e:
4f:52:c9:50:80:29:1f:a5:0d:6b:cc:cf:d9:dd:51:0b:27:97:
c6:a9:2d:99:b2:7d:60:f1:9a:a5:e9:8d:e3:f4:09:f7:e7:47:
d5:8f:fc:01:f3:27:6b:89:65:ae:10:7a:06:92:7f:51:6f:ad:
f7:8a:5a:fc:61:e1:ab:13:d2:69:bb:f4:7b:c7:e1:f9:1e:26:
a1:0c:2e:90:e0:db:6c:ee:84:bf:31:f1:07:d9:f1:f3:c0:fa:
0d:aa:20:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:18:07 2025 by rpki-client