Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: M/FTKHi8A73puG9RapgNoFSVeCtgB1ubsAgNCHNL2b0=
Subject key identifier: 74:58:84:54:A5:9A:A9:96:0F:E4:F6:DD:8F:A3:1A:5F:C6:52:04:85
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 0197B745816D9C8B90FE2A5C6D9538484BBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 07CA
Signing time: Sat 28 Jun 2025 16:01:14 +0000
Manifest this update: Sat 28 Jun 2025 16:01:14 +0000
Manifest next update: Sun 29 Jun 2025 16:01:14 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: XJErI9PNJiHL5pAxHA1p8umWzHZSzKEea9yWZwwWjyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:81:6d:9c:8b:90:fe:2a:5c:6d:95:38:48:4b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Jun 28 16:01:14 2025 GMT
Not After : Jun 29 16:01:14 2025 GMT
Subject: CN=74588454a59aa9960fe4f6dd8fa31a5fc6520485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fc:fe:47:f1:3d:3e:c7:74:8f:d2:c2:d6:4e:
19:3d:e8:ca:76:75:e4:67:00:43:bc:85:82:16:78:
3a:61:67:d6:a9:27:7c:f7:3a:90:b8:86:fe:76:a3:
5a:f6:e3:73:d1:84:e0:fa:b1:06:48:3c:48:fa:da:
8c:f6:d6:8e:76:04:33:18:90:5e:a1:5b:6a:39:ec:
4c:5d:ff:62:4c:90:27:75:3d:94:31:a6:fe:87:96:
4b:8f:be:0b:ec:f5:bb:41:8f:e1:5a:73:92:01:c6:
d1:e0:7f:6b:0a:39:bf:81:8b:51:45:27:e3:03:c0:
e9:75:84:fe:7e:f3:06:5b:1e:a3:ed:f4:d4:d6:6c:
9e:f4:67:e6:3c:d2:c6:b6:0b:93:82:b9:6d:a3:b2:
a7:ab:be:ee:89:f5:4e:54:8f:33:31:f5:97:96:64:
88:45:ef:00:62:cb:ac:1f:21:7f:29:3f:97:5b:87:
cb:ad:87:bb:91:32:c0:bb:35:e8:77:d8:9c:a6:fd:
e8:2d:18:43:f6:1c:46:5a:b1:21:8b:c4:bf:6d:1f:
66:e4:7f:fc:21:76:d4:b5:ae:44:a3:b9:32:6e:5e:
4e:33:3c:30:ad:2d:5b:b3:cc:96:e7:e6:21:52:b1:
49:b5:eb:be:cd:0e:39:da:35:0d:b8:3a:1d:4f:5d:
48:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:58:84:54:A5:9A:A9:96:0F:E4:F6:DD:8F:A3:1A:5F:C6:52:04:85
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ab:cd:2e:df:7b:19:09:51:e6:40:16:ba:a5:81:2b:a4:00:
19:48:ae:0c:64:88:c4:a7:20:89:10:53:f0:03:44:9d:57:73:
bc:a5:9c:d8:0c:cc:27:b0:97:ea:42:2c:c3:98:18:47:29:54:
fe:ac:57:18:15:5d:2f:da:96:bc:cd:5d:2a:1d:b6:87:4e:88:
45:91:67:5e:dd:1a:59:40:13:75:6d:38:53:a0:ff:a0:8e:7c:
f8:ca:ef:63:97:9e:77:9f:46:32:08:90:d3:29:ec:19:88:b0:
c7:ff:38:ba:fe:de:f8:99:9e:cd:f9:21:8b:a3:d0:b7:35:1b:
3f:16:3f:33:88:ec:89:6e:ed:f1:32:2a:2e:26:9e:7f:02:32:
be:78:d6:a0:b0:3a:12:6d:45:9c:70:d2:4f:3a:62:5b:08:dd:
96:0b:bb:7a:13:da:8b:5a:80:ed:54:45:9a:30:14:b1:0d:35:
18:bf:03:82:f7:fd:8f:4c:48:3b:44:58:3a:89:00:d2:14:b2:
92:5f:75:60:e1:c1:95:a9:20:3a:b1:14:e0:01:b3:51:97:b0:
cc:1c:94:cc:03:65:a6:07:df:42:ec:3e:17:7a:cd:27:91:75:
22:aa:88:d7:fc:b5:7f:88:4e:00:e0:d3:b8:45:ea:6d:76:2e:
44:7a:b1:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:04 2025 by rpki-client