Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: OtEvC2g0ruPdELXtzAkn2rWrda6QAe6SD65IbAD/768=
Subject key identifier: 77:04:86:66:5F:30:01:17:94:A3:EA:B7:F7:4B:17:93:BE:73:E4:87
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 01978922A45C71DDBE3601C31FAF5B30BF31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 0EFB
Signing time: Thu 19 Jun 2025 17:00:38 +0000
Manifest this update: Thu 19 Jun 2025 17:00:38 +0000
Manifest next update: Fri 20 Jun 2025 17:00:38 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: Aa5ytwrigpSjglyLe/9tc1KB77xaSyo5VhH2c2ZloFQ=)
2: NO2hwXxk6AiYVNho9DdnmakKibo.roa (hash: KjRA6xm9G+dFvFvEr1pRfwpBhmr4/09q+ZWaH5ApdDY=)
3: On6R4nNTZ0YYv_0GBGytm6COqe8.roa (hash: bNbiiOOyNE6FHV7YY8Nd3d02QHZTqUZthKpv3jqVHn4=)
4: _UiUxv0oU2Vs8vl9aQlqGT-rguM.roa (hash: EibngS/6U5WbywdZke7WcdMlnrfByt82mvGn2UMi818=)
5: qnHwx7ZjqkHGMQ3UL_6iH_ZiPZ0.roa (hash: v6x8FXcAuZgdOrpOuZAffsHlmhE2j1MwJFDVe05keHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 15:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:89:22:a4:5c:71:dd:be:36:01:c3:1f:af:5b:30:bf:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: Jun 19 17:00:38 2025 GMT
Not After : Jun 20 17:00:38 2025 GMT
Subject: CN=770486665f30011794a3eab7f74b1793be73e487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3a:fa:5f:f1:a2:3e:44:d1:7f:ed:89:8c:1f:
26:0f:be:3d:8b:c7:88:db:66:16:10:de:de:1c:f9:
50:d4:eb:8f:a6:0f:33:55:2b:5e:76:50:9b:7c:69:
4f:c3:13:61:bc:93:be:50:3c:80:46:19:c0:e5:56:
db:ce:98:8e:fa:27:3a:f1:8c:0f:7c:8f:be:9f:af:
a4:59:f3:92:10:3a:d3:85:8c:76:ab:8a:3f:18:75:
86:30:fb:26:0d:23:cb:2c:e6:46:1a:26:d3:04:ba:
e7:ef:43:43:f1:87:1d:8c:aa:fe:7c:a2:1e:37:de:
66:ec:d9:3e:23:87:11:36:70:07:aa:6d:98:10:5a:
2d:16:d1:08:b7:7b:3d:99:00:50:5a:c5:bd:a4:46:
47:57:4c:8a:5d:dc:05:a1:a9:3e:65:b0:72:45:9b:
fc:84:03:18:98:5c:f4:8d:8a:13:af:35:0d:97:6f:
d2:9d:eb:f4:f8:ed:31:47:56:0f:f6:e0:b6:c5:0c:
89:7b:84:0a:55:5f:47:ad:97:99:d2:89:2a:7a:d0:
f8:c0:84:95:79:39:3d:f2:50:aa:65:e1:9d:ea:50:
de:e5:00:28:2e:d3:29:a1:c0:dd:ef:51:a2:8b:72:
13:b9:48:3d:c4:59:6a:fe:d5:d4:1f:35:3e:3e:7d:
08:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:04:86:66:5F:30:01:17:94:A3:EA:B7:F7:4B:17:93:BE:73:E4:87
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ef:41:32:4f:2c:09:6f:6c:e6:9a:a4:f4:18:19:ee:a6:a1:c6:
ed:0a:24:4d:d0:ff:05:6c:6b:de:5b:7c:58:25:0e:c0:84:88:
36:cc:c6:2b:e1:70:5e:52:69:ce:d2:3e:cc:7e:1b:c3:1d:85:
6d:8d:d4:c6:e2:36:a1:56:da:08:20:19:94:8d:02:01:5f:4f:
ad:fe:70:c1:03:c3:67:b7:79:ad:75:d9:3a:2f:97:83:da:1e:
e4:ce:40:f7:1a:1a:1d:4f:bc:0b:91:eb:d8:d2:1b:3f:97:fa:
00:b4:fc:63:05:be:08:cd:81:79:b5:ec:26:76:b2:93:4b:f5:
71:87:e1:c3:12:22:a6:29:a3:ac:41:47:4a:de:06:b2:fb:29:
f1:ef:12:66:1e:2e:e1:ad:d4:56:80:3a:ef:7a:6a:22:7c:65:
02:0c:ca:31:f3:6b:8d:d4:c3:bc:52:35:81:30:35:4e:1e:55:
31:22:37:72:81:35:54:0c:b3:86:97:4a:6c:ef:83:5c:b8:33:
54:b2:55:ee:db:0a:3a:ac:9d:f0:93:04:b4:49:5a:9d:08:f7:
fd:ce:51:64:fe:24:f2:c3:1d:61:3a:cb:6e:0e:c3:28:c4:30:
5a:51:5e:d4:38:25:34:4c:cb:07:1a:cc:63:79:ab:00:d7:6c:
27:be:78:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 21:30:38 2025 by rpki-client