Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
File: hfTuFPbTinzwcSed_3s5FwLjcTU.mft (raw, json)
Hash identifier: Bqt5N143CEkxB/WUfS80FoIjWuvkhEp3GLRz8Lqj4S4=
Subject key identifier: 89:7C:7C:62:9D:58:D8:47:1A:46:0B:FE:45:EF:C0:FF:42:94:80:48
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 01976E872599B4E0C963653B59909953005D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
Manifest number: 142D
Signing time: Sat 14 Jun 2025 13:00:40 +0000
Manifest this update: Sat 14 Jun 2025 13:00:40 +0000
Manifest next update: Sun 15 Jun 2025 13:00:40 +0000
Files and hashes: 1: 2mTo8VIXIrlcxcC_U7fWi211rFM.roa (hash: dDQv+ftOv7QcdnymuU8CSIpInH2sN5DMq5+DCb2C/AM=)
2: TOInyVBFZ29DxCH5Hz91KFjRkv0.roa (hash: 1HxYLosFyiepF2xCdMAL0QnFNZ36uK46iHqxZ8byih8=)
3: aMobsnKksVIngBq9PAQh6f0uc_s.roa (hash: MgPm9vdG5quTaP1hsCUOaYxEpwoMN/PPpfC7QE2zzrE=)
4: hfTuFPbTinzwcSed_3s5FwLjcTU.crl (hash: nLq4Arqgk1mZM+Z0f5rTAze7TCgIkhCBdT3Mh+H7D/A=)
5: kHRA5W2PIyWNg3uKfxQ9zz9ybRk.roa (hash: GyaDxHXnOVqYowVqNzWMXYXPUi79rWH8RSfCQGy6dbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:25:99:b4:e0:c9:63:65:3b:59:90:99:53:00:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Jun 14 13:00:40 2025 GMT
Not After : Jun 15 13:00:40 2025 GMT
Subject: CN=897c7c629d58d8471a460bfe45efc0ff42948048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:13:01:8a:6f:41:bb:c8:17:56:1e:8d:30:e7:
c5:5f:5a:b4:9b:98:b0:0a:08:50:37:c4:88:11:9b:
e9:a1:ec:58:01:e9:f6:f7:6a:19:95:90:43:1c:fe:
fb:47:8d:2f:35:eb:08:94:b9:77:c6:63:d4:d5:75:
09:6e:dd:03:13:7a:cc:79:46:59:88:27:6a:41:d5:
12:68:57:2c:de:26:b8:2c:5c:db:46:02:18:60:9f:
db:a6:75:e7:21:b1:1b:cd:c2:71:0b:dc:06:4f:c2:
ff:4d:6a:a3:59:22:71:df:04:49:70:10:ed:fe:72:
30:ab:fa:1e:3f:02:71:c7:94:5f:9f:4d:01:be:ed:
fc:76:c0:92:cc:67:1b:7f:e4:7c:fe:e2:ce:d7:b0:
b0:32:f6:2a:b0:0a:ad:8f:fb:70:07:67:b6:5b:10:
73:a1:27:6b:10:37:91:af:84:9e:ff:e0:a5:9c:b8:
4f:bb:c0:c6:b3:41:ea:f9:c7:36:3e:55:6c:15:6a:
e4:31:c9:bb:66:a9:5e:d1:45:83:de:c3:68:1b:d2:
3f:c1:42:47:89:0f:ef:98:b3:1c:b5:55:7f:aa:7d:
5f:97:7b:c0:b6:48:11:31:73:13:6c:78:87:8a:96:
18:58:77:b5:e9:b0:a8:60:49:70:f7:12:5f:2d:f4:
8c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7C:7C:62:9D:58:D8:47:1A:46:0B:FE:45:EF:C0:FF:42:94:80:48
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:c7:0a:7a:79:d9:b5:1b:69:32:aa:d2:1c:41:f7:7a:a2:a9:
1a:a9:79:88:7d:a6:c9:49:4f:da:af:f3:ae:9f:d8:c7:56:3a:
5a:d7:ed:c8:e8:db:d4:9a:29:9d:64:5d:7b:83:bb:72:c6:9b:
04:82:fc:ce:87:a3:be:52:fc:d7:9e:61:e1:68:98:a9:4e:cd:
41:cd:bc:44:c4:7f:49:06:bc:e4:49:d3:1c:31:bf:2f:5c:93:
e4:53:80:35:ae:d1:53:61:88:e9:b6:48:b0:73:03:37:22:dd:
20:a4:50:f2:dd:89:7d:50:14:06:c8:e6:95:7b:50:d0:01:ac:
41:ad:7f:96:52:f4:d9:8b:d5:d7:e1:dd:32:4f:6d:4c:b0:80:
cc:6d:b4:24:7b:50:25:d8:46:e2:ba:08:f0:34:27:83:f5:d8:
0f:a7:be:53:a6:bb:92:81:e3:fe:18:36:29:15:b5:a9:54:f0:
1e:54:eb:a9:9f:7a:c7:7a:96:c7:79:a7:01:c1:ef:e7:98:eb:
b5:f8:c6:be:06:fb:02:0e:56:e7:49:b3:ca:f3:d9:3e:93:55:
76:83:6e:bc:79:eb:99:8e:88:4d:79:c1:9d:d4:a5:b1:07:3f:
a2:6c:3a:11:5b:e5:b1:dc:46:01:ea:02:d6:5f:d5:f8:c2:53:
d7:e9:76:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:45:47 2025 by rpki-client