Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: i73pY9TVYXiskdWmDCYQzZOpHYMFg7uuIg3AbwKHxCk=
Subject key identifier: 37:F9:FB:B0:25:72:02:A2:48:8B:D9:D8:6D:A7:B5:94:9E:C6:D3:4D
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 01976C2AA40F1A3B3B63E1D2883B5C603B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 159F
Signing time: Sat 14 Jun 2025 02:00:23 +0000
Manifest this update: Sat 14 Jun 2025 02:00:23 +0000
Manifest next update: Sun 15 Jun 2025 02:00:23 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
3: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: /sriZr9H5uOhItGStnFXpLEOfFQYClypEx7wgyNh+P4=)
4: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:a4:0f:1a:3b:3b:63:e1:d2:88:3b:5c:60:3b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Jun 14 02:00:23 2025 GMT
Not After : Jun 15 02:00:23 2025 GMT
Subject: CN=37f9fbb0257202a2488bd9d86da7b5949ec6d34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:96:db:4c:46:27:4b:4c:a2:a0:5a:de:fd:88:
e8:fa:71:31:57:db:31:8d:0c:2d:dd:79:69:48:42:
0e:4e:82:c2:74:57:3e:7b:d9:c1:0b:52:7a:47:e4:
df:fa:58:be:89:4e:4d:bd:f5:ab:25:b8:dc:9f:5c:
13:20:1f:23:44:a0:02:ed:57:c9:35:85:37:d1:43:
13:e8:f8:58:24:bc:32:bd:d0:bf:81:06:74:54:bd:
08:b8:7f:37:ea:a8:0a:b8:37:f1:06:17:fb:c8:ca:
87:61:51:13:09:5f:1d:be:ea:79:0b:d4:de:c1:13:
f9:40:eb:2e:9c:9d:72:a7:7f:d7:37:f2:21:a4:20:
38:a4:34:25:0c:ca:eb:78:5d:79:b8:88:cc:39:e4:
5c:bd:1d:8b:45:b0:00:47:c1:91:8e:93:e3:27:06:
1a:34:02:67:fa:96:5a:56:e0:4b:3b:38:25:d2:ed:
34:85:af:4a:2c:bd:f5:4d:f1:db:91:67:1b:e9:43:
b9:1b:67:3b:66:70:cf:d3:23:be:fe:6d:56:de:74:
9a:ad:4c:6f:49:e8:b3:f1:0b:e0:cc:b4:ff:d6:75:
56:a7:3c:43:2d:fe:9d:b2:a6:18:f2:7b:9d:aa:36:
54:92:4f:15:59:ac:2e:11:d7:d9:05:f8:89:1c:ce:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F9:FB:B0:25:72:02:A2:48:8B:D9:D8:6D:A7:B5:94:9E:C6:D3:4D
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d2:3e:e4:a4:3f:76:07:7a:13:39:ca:f7:cd:da:c9:19:57:
93:fe:ce:09:8e:c7:b6:21:0b:61:99:4c:f6:51:03:70:5c:cf:
5a:63:c5:10:65:df:22:bf:75:54:93:54:d8:e2:f2:c3:60:c2:
7a:4c:21:09:e5:a1:c2:81:79:9b:f5:70:66:b5:2e:63:0f:f2:
72:a1:d0:05:c9:90:7b:64:f9:6e:1a:dd:d3:0c:c5:dd:b0:69:
78:60:97:72:89:34:0d:db:d8:e9:fe:b9:17:c2:29:03:ee:8c:
ee:12:4f:61:70:c1:aa:de:75:fe:22:d8:84:cb:77:e5:7b:6a:
2a:7d:bd:43:d2:a9:c4:52:4d:e2:f5:de:36:4c:95:cb:23:e0:
2c:65:71:09:d6:d1:9c:ee:17:79:ac:50:7d:01:8b:39:5e:9f:
24:d1:69:9e:e2:37:c4:0e:a7:96:ee:04:83:ae:50:49:2e:8b:
78:2e:dd:fa:21:8a:92:de:3e:6d:e5:bc:7b:08:5a:05:b1:55:
ee:32:3e:02:18:e4:9d:cf:69:53:65:43:a1:5d:1f:58:35:54:
d4:af:8b:0e:d8:21:04:90:72:8f:48:a7:d1:fa:2e:df:d8:48:
45:c7:b5:e7:10:32:a7:10:5c:eb:19:99:57:0e:3b:a3:04:c2:
7b:2e:6c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:35:55 2025 by rpki-client