Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: UPgJ0KPBL2yMSwWX75WJrq2FbdgQeyhyb5Xgu8HKk5I=
Subject key identifier: B3:6C:1B:E3:DA:33:F9:4E:56:E6:02:53:6F:2E:69:39:BF:F2:C3:EB
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 01976E508A0BEC7B10172FB70365782EE7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0610
Signing time: Sat 14 Jun 2025 12:01:01 +0000
Manifest this update: Sat 14 Jun 2025 12:01:01 +0000
Manifest next update: Sun 15 Jun 2025 12:01:01 +0000
Files and hashes: 1: Kw49QnoalcUIwGD7L_UCEBnFzUk.roa (hash: 5nS3wTYqHyzRyVlDkHb3qPe9ElMZpDyRT50Au3dlMjE=)
2: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
3: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: /2YS94GGhcIUqL4MLBNOPrrqrPHDagVBCg1q7+RuS2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:8a:0b:ec:7b:10:17:2f:b7:03:65:78:2e:e7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jun 14 12:01:01 2025 GMT
Not After : Jun 15 12:01:01 2025 GMT
Subject: CN=b36c1be3da33f94e56e602536f2e6939bff2c3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:7f:4e:4b:11:ed:f4:9c:ae:56:e9:f8:0d:
13:6e:45:2a:0d:99:64:bd:75:32:33:b9:08:2d:95:
06:bb:d5:66:b6:78:56:d4:53:a9:3f:42:9f:6b:65:
b9:66:ef:2e:d6:b9:da:6c:52:1a:67:ec:d7:c8:9b:
51:04:5d:01:d0:73:1b:c0:f9:99:d4:74:01:3e:75:
ed:9c:c8:c1:50:da:a9:3f:7a:8a:90:92:f5:10:70:
c1:fd:e4:9c:f5:00:3b:78:9b:2b:bf:73:cd:74:3d:
55:2f:5b:86:b9:6a:f1:4e:5a:1f:9b:e3:75:a8:0f:
a6:fb:07:b9:91:5c:10:4a:68:8a:20:78:f2:0e:ea:
b4:4b:c1:c3:22:63:6f:3c:d5:f2:be:ac:5f:41:6f:
8a:5c:05:b8:ed:28:0f:74:84:70:66:52:9b:21:30:
49:c4:54:59:03:da:96:2f:eb:a8:d1:ca:a8:a8:c5:
42:c7:a7:84:37:95:1f:f9:a0:36:11:cc:9f:cf:2a:
13:15:a8:af:a8:69:6b:ee:92:d8:a4:ad:84:2a:97:
ff:c6:ef:83:e2:44:56:56:38:3e:73:15:86:50:71:
4b:be:22:a8:f4:0b:8f:d0:a3:cd:b6:8b:aa:0e:59:
b1:db:96:22:f8:5a:95:90:e3:53:d3:05:04:43:9f:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6C:1B:E3:DA:33:F9:4E:56:E6:02:53:6F:2E:69:39:BF:F2:C3:EB
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:3e:41:4c:4d:84:1d:f1:98:21:64:0b:e1:5f:92:f4:4d:7b:
10:cc:eb:5a:01:f5:b0:7e:9c:0b:0c:e1:ad:ff:74:66:b6:e6:
02:c1:f3:21:e8:0f:e4:ce:b3:ea:35:d2:2e:19:f7:b0:4d:ec:
fd:05:c5:d5:fd:45:6e:b1:7a:fe:c7:c2:bc:2e:d5:f1:c5:d5:
6e:f3:83:96:9e:5b:39:30:8e:17:94:2c:d0:8a:1c:5d:4a:c6:
b2:82:e0:97:b4:48:3d:e4:ad:5f:bc:c0:06:b1:7e:e1:6f:e3:
04:be:58:cd:d2:ed:17:a6:8a:e7:0c:e4:16:28:2c:bd:57:e9:
51:39:3c:3d:9f:02:69:ce:4a:6f:ad:4d:e2:a9:34:33:60:6e:
17:d8:b9:47:68:76:a8:c1:c0:01:84:18:d0:8b:8c:f2:62:b4:
c8:7d:08:a9:64:6a:d8:5a:87:3c:73:b7:ef:f8:c1:09:45:32:
2c:0b:3a:bd:04:f4:6d:f5:3e:4e:73:17:a0:69:a5:49:83:2b:
41:ac:cf:84:cc:f5:65:f4:a9:c9:cf:f1:de:04:f9:d8:79:21:
84:b6:4b:dd:42:1d:56:72:a6:9b:18:7a:34:c4:29:f9:06:79:
9f:3b:e6:67:aa:df:72:02:6d:3b:fe:36:50:ff:3c:47:76:fd:
51:af:1e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:16:30 2025 by rpki-client