Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: aZTrU+Mtu2i1Tq1bSD6e4UAl2lcGLnB8Ime97j4sz08=
Subject key identifier: 88:37:E8:94:B2:93:C0:A7:58:1E:FF:54:F5:E2:86:96:3B:56:94:34
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 0197B96B174774D21346F14BE9A94BBA27C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: B6
Signing time: Sun 29 Jun 2025 02:01:32 +0000
Manifest this update: Sun 29 Jun 2025 02:01:32 +0000
Manifest next update: Mon 30 Jun 2025 02:01:32 +0000
Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=)
2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: y9WuLpgB8EI3p9XsKVejVixK9EW4biwI9IuSFr8jSH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:6b:17:47:74:d2:13:46:f1:4b:e9:a9:4b:ba:27:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Jun 29 02:01:32 2025 GMT
Not After : Jun 30 02:01:32 2025 GMT
Subject: CN=8837e894b293c0a7581eff54f5e286963b569434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a3:e1:a3:b7:77:c7:d5:91:ec:e8:ad:b1:11:
04:ee:59:39:b1:ce:52:09:37:9c:80:c7:21:b8:3c:
a8:f6:6c:87:01:b9:67:0e:a6:8c:f8:ba:e0:6e:4a:
13:56:77:23:d9:49:57:51:31:d5:47:fe:30:2b:ed:
66:95:21:b6:53:f6:4a:ca:fe:c8:df:79:dc:e2:fc:
3b:39:0e:18:7a:24:2f:a7:d3:12:67:fa:cd:90:f3:
c5:0c:c8:0f:24:6f:56:45:e8:26:91:29:5e:ee:10:
52:32:9c:ae:c8:81:0a:7a:18:67:4e:fc:7e:d9:52:
3b:b4:53:e2:d0:1d:ec:19:e1:d5:44:70:8f:30:9b:
36:47:e5:bd:36:b6:a2:25:5c:b8:42:a3:07:8e:3a:
8a:1f:d2:4f:4a:d5:b7:77:20:74:5a:3a:c2:e4:a5:
4f:66:4f:4e:bd:32:0a:d3:da:ae:1b:a2:df:b9:36:
cc:4c:dc:61:18:a8:d0:1d:9a:55:df:07:84:f9:5e:
35:fe:cc:71:e2:92:3e:83:9e:b4:6b:c2:25:7c:c8:
72:aa:06:95:f4:26:a1:a4:c4:f4:ff:21:0b:56:c4:
f0:88:69:8b:cb:5a:46:a8:2b:6e:32:ab:cc:dc:6f:
ac:d7:3b:5f:f2:ec:a0:36:de:85:5b:06:ed:04:6b:
e6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:37:E8:94:B2:93:C0:A7:58:1E:FF:54:F5:E2:86:96:3B:56:94:34
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ec:c2:f9:56:6a:60:7a:af:c4:57:75:e9:b6:46:54:1e:a3:
3d:aa:e9:4e:78:76:e3:8f:42:21:2a:35:67:f1:28:fc:7a:1a:
dd:58:aa:96:d3:6d:a8:33:29:5b:25:4c:69:72:e9:82:50:a3:
37:ba:85:2a:ee:78:b4:28:5a:48:cc:10:1a:d0:f3:7d:39:fe:
c9:7c:37:97:8d:7c:27:29:ce:89:b1:be:64:2a:ee:3b:65:6b:
01:6e:15:1c:8c:e1:b0:b6:63:f3:7e:53:8d:62:4b:2b:1e:7e:
9c:e3:86:c9:f0:5f:5a:7e:f1:b0:9d:03:79:58:cf:b7:65:39:
7e:28:46:ce:93:b0:5d:02:93:1d:39:15:40:2a:d5:ee:78:4a:
99:49:ff:e5:d7:bd:62:39:63:ac:70:61:da:17:1e:ec:26:88:
e7:2d:e6:08:90:5a:a2:7a:fc:a8:03:6a:c3:26:28:62:aa:70:
04:ab:16:7a:24:37:aa:25:72:f8:f8:61:aa:bf:1a:73:02:7e:
8b:fb:32:23:dd:19:e9:0b:4b:92:50:b3:e3:41:0e:99:da:74:
59:53:66:31:88:d8:28:bc:c6:19:2e:48:3a:6e:d2:fa:ae:08:
5a:d1:a4:72:fc:80:d4:1f:64:21:b2:e2:83:ad:43:44:7e:04:
f6:1b:d1:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:57:43 2025 by rpki-client