Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: 5jypChno2se7WbmtJP/OEx4BL8zPec3ofgjPICdI9LM=
Subject key identifier: 7D:23:E6:34:B7:75:21:12:F9:62:A6:25:73:75:51:D6:28:54:F6:B7
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 01977A548FBACD1A6F7155096D79E275719B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 20:00:51 +0000
Manifest this update: Mon 16 Jun 2025 20:00:51 +0000
Manifest next update: Tue 17 Jun 2025 20:00:51 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: HATu9gZQ8W73EsTY5UGtpDp+XJ4+jCCBLcfhZguX6uY=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:54:8f:ba:cd:1a:6f:71:55:09:6d:79:e2:75:71:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jun 16 20:00:51 2025 GMT
Not After : Jun 17 20:00:51 2025 GMT
Subject: CN=7d23e634b7752112f962a625737551d62854f6b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:d8:a1:6a:73:d1:70:50:c6:c9:63:58:90:
f0:d5:be:8f:38:81:9a:03:e5:8e:28:2d:d6:99:6f:
22:b9:fc:2a:3b:f7:0e:6d:7b:a3:fb:32:1c:7a:fb:
35:31:f8:fc:67:3f:45:cc:8c:fe:36:e7:21:0c:a4:
99:f0:f8:2a:9e:5f:06:5e:07:79:55:61:29:9a:d2:
d5:03:d7:65:94:98:e2:8f:c0:35:31:8c:7f:5a:f3:
3c:62:ce:2d:04:4c:a6:4b:33:9f:c5:c9:38:bd:ea:
e5:ef:52:1a:91:c7:e0:a9:c2:a6:92:51:5f:bb:ba:
ed:0f:4d:f8:b2:8d:10:5a:ad:88:bb:a8:6a:58:64:
d1:62:aa:6b:0f:af:ab:0b:76:ab:65:72:61:f2:47:
99:57:f8:43:cd:73:d8:83:dd:a6:ee:f2:8b:46:a6:
2b:05:e1:29:64:87:52:69:29:06:23:33:da:0b:42:
70:3d:61:d9:a7:8e:14:d6:3c:8c:0c:59:2a:67:8c:
54:62:35:27:ec:e7:09:e5:22:46:1b:a2:fc:9b:be:
aa:2f:c6:6b:cb:28:1e:d6:17:d3:00:2f:26:e3:12:
bd:c9:57:9c:23:03:9d:e0:f5:5f:cb:b6:14:a5:33:
6c:bc:8b:2f:8e:a3:10:a7:e9:f9:33:da:95:7f:9a:
a0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:23:E6:34:B7:75:21:12:F9:62:A6:25:73:75:51:D6:28:54:F6:B7
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:bd:19:3f:38:98:77:b0:7c:72:f9:30:84:d1:f8:01:1e:89:
10:35:fc:75:f5:0f:82:ab:4c:bd:6c:51:df:ab:be:e9:9c:3b:
a4:17:3d:21:3b:ee:44:cf:65:2a:57:e8:42:ff:a3:b8:b7:be:
20:48:40:ab:3f:02:76:8b:a7:64:67:f1:c6:6f:84:98:fc:9b:
94:23:d3:c6:58:78:fa:88:a3:fe:4d:56:f6:ba:4d:05:58:41:
63:38:d7:ba:57:00:55:bd:3c:a7:5c:3b:66:a5:01:1e:a0:7f:
77:9f:74:67:6b:cc:ad:b4:d2:c1:c0:44:2b:c8:c5:f5:9c:a3:
f2:3b:d0:10:2a:b6:2f:2f:57:f9:de:b9:26:f8:08:63:81:29:
0c:36:3d:42:91:8d:20:7b:8a:f3:d9:12:34:56:60:bc:32:46:
76:68:74:e5:4d:c3:86:40:3b:02:a1:a4:95:77:23:bc:a4:f4:
f9:04:1d:61:96:20:b2:34:89:da:4d:9b:06:d5:90:67:2f:37:
65:8f:e8:bc:25:72:95:28:ed:f5:32:a1:0c:0b:69:96:e5:ee:
2d:11:4c:63:4e:40:f6:2a:36:e8:f0:ab:13:cb:ff:be:50:9b:
cf:0f:62:e5:03:00:6a:db:33:74:1c:30:59:20:bd:18:dd:a7:
21:62:2c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 04:44:50 2025 by rpki-client