Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json)
Hash identifier: sTHJZD5OTbKOFX/vDq3WkgRFP+OD3IxK8gvaLW8DV1s=
Subject key identifier: CC:A3:3F:65:0C:EA:4B:1E:78:F1:51:2D:71:46:A5:78:0E:B3:E0:22
Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Certificate serial: 01976CCFE994BE5BD08A3016FB31F055E7CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
Manifest number: 03AD
Signing time: Sat 14 Jun 2025 05:00:54 +0000
Manifest this update: Sat 14 Jun 2025 05:00:54 +0000
Manifest next update: Sun 15 Jun 2025 05:00:54 +0000
Files and hashes: 1: Oi0Mexif2IU5YWgRrWRDGcE4Aw4.roa (hash: hcI8ATUfRYduE8yCuLSr8RsjKUn++KtzCI3lWbIhr1A=)
2: RNEIzNGbtOLDhiuIlbx5LtZxiHA.roa (hash: YH3jUp9Z5jmgiTgvLayfiplIuhfqDKTG69/LcYMXnX0=)
3: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: S79cyip3On8mEVOwMOca8bzgTe3iu4oULX951iNwNrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:e9:94:be:5b:d0:8a:30:16:fb:31:f0:55:e7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Validity
Not Before: Jun 14 05:00:54 2025 GMT
Not After : Jun 15 05:00:54 2025 GMT
Subject: CN=cca33f650cea4b1e78f1512d7146a5780eb3e022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7d:bd:5f:9f:fb:bd:72:2c:50:4e:32:44:d8:
ab:18:36:f9:32:6c:b7:b6:ad:e3:b7:9b:b0:63:8a:
a5:cf:d2:44:db:c0:a3:51:4d:2c:3c:fa:3c:91:0f:
21:71:5e:dc:21:2a:34:64:8c:e9:60:df:80:b9:84:
a1:a9:18:7d:df:c7:0f:4b:06:ad:86:99:a8:13:57:
13:a3:ac:7a:49:2c:dd:d6:d1:22:09:ad:54:66:97:
66:5a:46:9a:a9:9c:0b:86:0d:0a:da:b5:c5:c0:3a:
c5:84:bf:cc:05:ae:e6:87:3d:09:94:6a:bf:fa:7e:
71:74:06:de:96:df:4a:f1:93:65:97:81:7c:47:1f:
19:15:e7:8a:cd:33:cf:9b:7d:9c:0d:3d:01:cc:39:
9c:3d:d3:37:cd:d1:d6:16:a4:7b:fd:ca:70:6e:e3:
c5:3f:bc:14:3c:0c:45:ab:ec:99:94:7c:56:c1:14:
1c:d6:1d:7a:72:6c:1d:63:b7:ab:77:41:86:33:b3:
37:8d:f6:20:82:b8:de:4f:cc:91:7a:84:97:a7:fb:
bb:cc:47:13:45:a4:29:ec:74:b0:44:1e:63:da:c9:
b1:18:6c:e4:d1:0d:38:73:c9:bf:42:98:16:4b:46:
3a:bd:40:9e:fa:42:82:fa:4d:71:4b:cc:d7:9e:d8:
6e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A3:3F:65:0C:EA:4B:1E:78:F1:51:2D:71:46:A5:78:0E:B3:E0:22
X509v3 Authority Key Identifier:
keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:cd:ec:f2:38:a1:f9:79:f4:09:eb:fa:24:67:7e:c2:68:de:
19:36:7f:06:8a:fa:98:65:06:4c:1f:f2:9a:40:d5:49:28:22:
8e:a8:85:f6:ae:97:27:2b:f9:c3:db:95:8f:58:0c:28:b3:e6:
f4:23:75:cf:9d:13:7f:9a:56:05:20:2f:82:d3:fe:67:ef:8e:
7e:cf:06:df:47:91:6a:23:f4:e8:eb:0f:9b:29:ca:15:aa:7f:
cf:66:50:f9:ef:13:37:5e:ba:81:b6:c8:24:c4:b8:5e:15:ad:
fb:ef:00:57:04:bd:64:cd:97:96:07:e7:f4:22:a6:0f:0a:df:
e6:d9:b8:01:e8:56:d9:a0:7d:6f:30:a7:39:8f:4a:a7:db:68:
6d:a0:e9:14:a9:96:2a:e2:87:91:34:2f:f0:96:4d:26:e9:03:
57:01:75:57:51:ba:76:52:7b:fc:63:4e:47:76:3f:a7:ed:d4:
34:3e:92:47:33:01:55:07:23:78:55:10:6b:06:ae:6b:7e:1b:
7f:fe:e6:ad:cb:97:73:7e:c0:e6:e9:38:c2:c9:c6:b6:12:a4:
a9:d6:05:96:98:a7:eb:25:17:43:b2:38:88:24:0c:a6:22:29:
64:2e:81:01:b6:85:ec:9c:b2:e1:4c:80:de:8d:f9:ec:cf:5d:
74:e8:77:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:24:59 2025 by rpki-client