Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json)
Hash identifier: Kpj1T3Y+460I5w4MvSpXbZjTKyp57iSqKjRcyR2Jf0k=
Subject key identifier: 5E:4E:59:6D:B0:8E:EE:25:F1:01:AA:0A:07:F8:4D:FE:B8:D3:6A:0F
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 019785B44EDEC6DD0E4CBF5DCAC6EE0B5A5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
Manifest number: 0AA0
Signing time: Thu 19 Jun 2025 01:01:15 +0000
Manifest this update: Thu 19 Jun 2025 01:01:15 +0000
Manifest next update: Fri 20 Jun 2025 01:01:15 +0000
Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: +7Slm+oXiZ69lhetVt/AhHM1yX5SFyz1PeOHr87WIgY=)
2: ntEteGeDZu85wNJOAqgjTrUSx54.roa (hash: Q0TMKcR9tSI7oBt+FGXWaqYBj7j3GPsfDK87Fv5h+YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 23:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:85:b4:4e:de:c6:dd:0e:4c:bf:5d:ca:c6:ee:0b:5a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Jun 19 01:01:15 2025 GMT
Not After : Jun 20 01:01:15 2025 GMT
Subject: CN=5e4e596db08eee25f101aa0a07f84dfeb8d36a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1e:a5:0a:76:a8:33:b3:6c:9f:fc:10:53:b9:
7b:c4:aa:08:7f:bf:f2:27:15:9a:62:1d:f2:a8:4b:
ef:dc:48:bf:24:0a:7d:78:dd:a7:f0:3e:72:68:61:
c0:12:5f:e1:67:67:e2:60:1f:f9:e6:47:16:23:3d:
fd:0e:65:91:1b:29:4d:fc:fe:16:c9:a5:d6:57:d8:
d7:77:84:7f:0d:51:15:54:53:fd:2c:85:ec:7a:ae:
38:2a:ea:9f:d2:7e:50:52:90:c2:13:7e:ef:f1:44:
ae:2d:a8:0f:85:5b:e1:86:b6:6a:e5:8b:35:86:43:
6e:5d:e5:92:0e:66:fd:3c:62:d8:5c:9f:b0:25:9c:
16:dd:96:7a:58:a1:59:8b:fa:58:82:f7:25:65:64:
ab:f5:1a:e9:ed:40:37:1b:3e:f2:e4:91:d3:a7:7f:
b8:70:a4:8b:db:89:7d:35:3e:08:1c:fa:cd:df:14:
90:ad:7b:ac:40:cc:0c:b5:df:9c:91:94:42:d0:12:
17:b9:3c:70:69:fa:4b:97:9c:0f:0e:18:bd:f7:a5:
40:b6:1e:5e:46:b8:a8:e9:32:91:9c:53:5b:a0:2e:
6a:6c:80:84:a3:a3:51:b7:ea:03:57:9f:e1:06:89:
9a:78:f0:37:13:c1:4c:f2:45:95:cf:7f:bc:ab:2f:
31:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4E:59:6D:B0:8E:EE:25:F1:01:AA:0A:07:F8:4D:FE:B8:D3:6A:0F
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:6a:94:99:66:57:79:e5:94:e8:00:0a:7b:53:13:fa:84:97:
0b:07:63:6f:a9:e9:15:40:54:79:a6:7c:d7:bc:44:9a:50:3d:
7e:c1:fc:2a:50:5c:4b:e0:46:00:eb:9d:31:3d:a2:d5:26:c1:
76:cf:c7:16:1a:d3:69:8c:f1:61:95:6f:78:22:ad:b0:38:3f:
09:f4:e7:e1:16:75:20:85:55:95:8f:11:ee:c9:5a:d8:db:88:
7f:d9:02:ed:40:aa:26:8e:87:14:80:22:e8:30:35:85:8c:bf:
6f:a8:98:3a:1c:66:2a:3c:a7:ed:a4:e7:10:16:36:bb:76:3c:
1d:13:2e:f8:b9:9d:4c:d0:b2:30:21:07:ef:5d:e8:af:6e:9f:
ce:4b:18:aa:5e:80:b0:49:7f:4c:51:60:11:85:0d:0d:17:4c:
0e:21:c5:fe:01:d4:60:c6:0f:3b:6c:81:78:87:10:ad:e0:25:
12:3b:fe:a0:03:af:ae:40:f8:22:9a:ff:96:c3:c9:73:8d:21:
27:c9:0d:0c:bb:57:69:6f:c5:f0:5c:9c:e4:1d:99:fe:40:62:
52:62:cd:52:69:be:32:63:e4:69:89:24:b9:03:5a:56:19:36:
5f:57:b4:10:10:4a:cd:a5:16:9d:e0:67:cb:33:02:9a:ff:f4:
3d:c6:20:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 08:38:57 2025 by rpki-client