Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: CsMjZ2yGKM3lLyCWlOtQlX4HN87xZRMej/unUaClCYo=
Subject key identifier: E3:38:9F:54:E9:41:76:5F:B6:CE:CF:62:6B:CE:1E:7B:6B:6A:00:FD
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 019769CF2C04CFEB782A5F8F0FF5FCACBF4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 1598
Signing time: Fri 13 Jun 2025 15:01:14 +0000
Manifest this update: Fri 13 Jun 2025 15:01:14 +0000
Manifest next update: Sat 14 Jun 2025 15:01:14 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: taqAng7mV/Bra7AKIFESfmp+krC/eCJrVZhxF/PDilA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:cf:2c:04:cf:eb:78:2a:5f:8f:0f:f5:fc:ac:bf:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jun 13 15:01:14 2025 GMT
Not After : Jun 14 15:01:14 2025 GMT
Subject: CN=e3389f54e941765fb6cecf626bce1e7b6b6a00fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:49:03:7c:1e:2e:ab:8c:04:44:30:fb:3c:0a:
97:c0:2d:7e:fc:e0:3d:10:2e:3a:67:f7:c5:73:7a:
da:2a:99:9f:ab:9b:40:67:a1:8b:40:a3:ed:9d:f9:
b5:a3:90:0a:62:92:78:c5:fb:4c:c6:e9:82:a5:4e:
48:ea:ba:dc:66:b4:df:eb:fd:39:63:fc:7b:7b:90:
fc:53:b5:5d:53:fe:4b:40:43:e9:21:9c:03:36:96:
10:30:da:ae:5d:91:56:9a:f7:ba:11:d1:ee:74:3b:
bd:81:2c:2f:07:4a:de:26:c6:4a:eb:d7:b4:92:e4:
b8:1b:a1:5a:3d:71:be:99:2f:db:57:35:d0:06:08:
6a:8b:19:56:6b:ca:85:77:b6:e3:e6:fa:f4:47:8f:
48:5e:5a:17:a1:2e:8d:70:17:51:25:9c:d0:f6:db:
ed:d0:e4:8f:1b:f1:11:e4:75:de:c8:b4:47:ed:ca:
59:16:3c:ad:b7:6b:64:ff:0f:bf:79:f9:f2:e5:84:
cf:65:2d:0f:c7:78:e4:e7:d9:f5:38:cb:81:5f:af:
f9:4d:9b:27:22:d4:e2:b6:41:cb:27:d7:af:36:0e:
65:cb:07:08:58:92:89:f4:01:db:ab:c6:10:da:ae:
7a:89:a2:34:c7:db:c7:cd:bf:d4:ad:ab:4d:58:27:
af:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:38:9F:54:E9:41:76:5F:B6:CE:CF:62:6B:CE:1E:7B:6B:6A:00:FD
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b8:eb:56:36:3a:32:60:03:21:8a:b6:f1:4b:e0:0d:24:9e:
e6:b0:65:e4:bf:46:7d:3f:c0:10:df:5b:8c:72:0b:2f:bd:66:
ca:00:d4:9a:af:f2:35:90:44:d4:fa:b2:d0:d9:94:79:c8:8e:
d9:af:b1:cb:d4:5c:2e:24:74:8e:f3:fd:32:e0:c9:fd:ac:2b:
7a:05:a0:3f:7a:fb:85:ab:32:76:de:ce:b3:96:35:2c:71:ff:
54:b2:25:de:14:b3:f1:c9:cf:4a:4d:49:01:5a:78:2f:92:f1:
93:f4:d0:2d:5c:af:44:3b:16:5f:03:23:d5:3f:d3:fe:e4:01:
c3:36:68:99:1a:82:e6:b0:44:c8:47:94:29:8c:5b:3c:ca:d7:
4e:04:f4:06:96:f3:19:bb:1e:0b:46:34:5a:c7:c2:8f:b3:9c:
fc:58:3f:b3:d5:e1:ae:9c:89:06:3c:b5:a3:7d:e9:50:55:99:
2d:7c:c9:fc:da:de:da:c4:73:91:2d:98:b0:ca:d2:04:63:da:
db:fb:8a:1e:0a:38:b6:71:57:49:49:08:33:84:02:ee:a6:35:
39:ba:e2:8e:e5:d5:be:e2:2e:17:36:3f:83:c0:75:62:b4:db:
db:1e:e9:c1:40:56:d9:ca:78:dd:9c:70:75:e4:eb:dd:5b:1b:
49:2c:48:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:00:59 2025 by rpki-client