Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: YU1pZroOPwwd+AeM+YCFdcdg3IlUEThEPvhy0mNCnY8=
Subject key identifier: 20:DA:F3:35:ED:E8:1E:61:FA:C9:8B:48:DE:3F:C8:A0:AC:7D:33:22
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019773E47827FC335CB946C8A38B20D8B9AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 02E3
Signing time: Sun 15 Jun 2025 14:00:42 +0000
Manifest this update: Sun 15 Jun 2025 14:00:42 +0000
Manifest next update: Mon 16 Jun 2025 14:00:42 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: uQZJnu/o8qXnWI6lqYwUrappyf4UL7OdW4tIkfgXRiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:e4:78:27:fc:33:5c:b9:46:c8:a3:8b:20:d8:b9:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Jun 15 14:00:42 2025 GMT
Not After : Jun 16 14:00:42 2025 GMT
Subject: CN=20daf335ede81e61fac98b48de3fc8a0ac7d3322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0b:82:78:e8:39:99:7f:51:bc:7e:a4:bf:84:
52:96:67:18:54:3b:2d:55:b2:e3:33:2e:85:e5:a0:
19:64:e2:2b:d1:1c:47:b6:22:82:cc:ee:01:2b:e6:
00:57:a1:94:c7:d3:cd:a9:98:d9:c8:58:5b:b5:26:
85:cc:64:6f:c5:ea:d9:2e:99:54:18:94:cc:c3:8f:
14:83:e8:80:9a:13:4f:28:f7:2b:66:17:44:81:5d:
d7:d9:1e:84:47:0f:37:b0:20:e9:cb:47:fd:67:59:
a9:66:a0:fc:59:7b:ec:6f:b0:33:d0:7c:ae:1e:7c:
c7:93:7b:14:c1:bd:cb:e8:f1:03:56:2c:66:ce:0e:
d5:52:85:31:41:fd:73:b4:0b:55:98:9b:16:be:88:
af:a6:a9:49:95:02:a5:a7:16:ae:5b:ec:99:2e:c4:
e1:b0:9d:4a:49:27:c2:3a:9f:39:88:ed:e5:68:e2:
9f:e3:f4:65:0a:f6:18:7c:e5:70:64:24:79:4e:a1:
42:0c:9f:1a:28:b1:a6:8d:26:d4:71:8d:c5:61:e2:
5d:fb:d8:96:95:d1:c1:09:d4:7e:d3:81:82:bc:01:
b4:50:7f:85:42:f9:51:80:f4:d1:d4:3d:6f:f6:69:
fe:d0:b4:08:0b:f8:3c:f2:0a:4a:1d:05:74:9d:8b:
9d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DA:F3:35:ED:E8:1E:61:FA:C9:8B:48:DE:3F:C8:A0:AC:7D:33:22
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:18:83:5f:06:b7:bd:57:c6:9c:4b:d8:86:f7:13:d4:a1:98:
1a:85:2a:2b:7d:b6:b1:52:94:72:62:3f:44:be:df:4d:d5:2b:
95:ba:6c:77:d2:bf:6a:d3:1b:fe:4c:00:3d:27:9d:2c:95:c2:
90:aa:d4:24:02:74:fd:3c:4b:89:f1:f4:5f:30:51:91:d9:93:
47:71:a2:b8:ca:67:e8:a5:31:9d:b9:bf:7d:5a:16:e9:e3:2b:
9a:44:44:43:44:a6:58:2b:a6:70:22:05:97:fd:89:09:82:f2:
4b:95:e0:98:ca:7f:23:c6:c2:c1:77:75:f8:65:c4:6d:38:4b:
d4:f9:27:da:0c:46:75:c8:4e:6f:d3:b5:59:75:71:a7:19:52:
d6:3f:98:b9:2f:21:80:c8:a4:1c:19:2a:aa:f3:64:11:56:77:
db:06:b7:28:88:3e:1b:c2:56:20:7e:81:ab:00:db:e7:14:b6:
01:b2:90:4c:08:94:ee:3a:92:05:6e:4f:27:19:13:d5:6b:19:
a9:1a:53:8a:4e:3c:e7:02:93:28:db:e2:2f:f2:af:50:6a:68:
f8:0c:16:12:b6:22:8a:2f:2f:15:72:9b:42:fc:21:d4:6b:a3:
58:3b:64:51:46:dc:1d:c6:16:0c:d1:59:6a:95:f4:73:50:11:
b3:b1:24:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:44:20 2025 by rpki-client