Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
File: hto1bCqGENEdNM24pH0rkFGfvTU.mft (raw, json)
Hash identifier: bY02O0Fzc7MB/tCTTv1XOcNs7dYS7DbY/A6oLyOR37Y=
Subject key identifier: 85:04:4F:BE:5D:BB:62:80:06:14:E5:4E:6E:57:11:4F:18:90:DC:6F
Authority key identifier: 86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
Certificate issuer: /CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Certificate serial: 019769CECE9198E74EE727889A471CC3CF48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
Manifest number: 1294
Signing time: Fri 13 Jun 2025 15:00:50 +0000
Manifest this update: Fri 13 Jun 2025 15:00:50 +0000
Manifest next update: Sat 14 Jun 2025 15:00:50 +0000
Files and hashes: 1: e2SQSmJ5Uij4VeGzNgyMcf8tHqM.roa (hash: /jn7jwBSYHJhjR+sZRgi9zex0zsrMd1Ejp9Gj9O6Ons=)
2: hto1bCqGENEdNM24pH0rkFGfvTU.crl (hash: D/7EL7Bp+DYdjxbj2YTZtrWIlc+IHx6fFc9/NrQlVeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:ce:91:98:e7:4e:e7:27:88:9a:47:1c:c3:cf:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Validity
Not Before: Jun 13 15:00:50 2025 GMT
Not After : Jun 14 15:00:50 2025 GMT
Subject: CN=85044fbe5dbb62800614e54e6e57114f1890dc6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8b:79:0e:a0:57:78:bc:25:ec:60:4e:e1:c9:
cf:3e:39:ab:2d:5a:a1:f4:34:dd:71:c1:c9:9e:f3:
3f:ef:a7:a9:fc:44:53:70:25:3e:7d:54:09:f7:ff:
26:a0:93:9a:12:3a:09:b7:83:89:f9:58:03:5b:53:
86:c8:b6:22:8c:79:a4:2d:08:c1:f4:2b:36:47:1f:
a9:95:e5:4c:e9:87:72:69:cf:d8:aa:81:0d:5e:cc:
98:8e:eb:72:64:f1:51:41:75:69:7d:90:05:32:0c:
0b:12:af:81:f8:a6:6e:fb:40:d7:20:13:84:eb:f1:
ea:ad:c8:13:cd:86:3d:dd:6c:b7:26:c8:5c:11:76:
30:d4:4c:4f:0e:80:67:45:4b:97:14:26:1a:46:f8:
f9:76:f1:16:07:5a:b9:ff:a5:45:53:ae:ab:ed:1a:
9d:4c:c8:0e:83:3d:96:cf:48:a2:c5:d6:53:3f:57:
2e:64:2c:58:c8:85:18:fe:5c:2e:42:f0:22:d9:d1:
6b:1a:fd:59:bc:84:74:be:ac:13:9c:82:40:ae:92:
18:ed:b5:1a:83:85:86:7d:09:b5:9c:37:a8:46:7c:
b8:97:4f:2a:97:00:f4:8e:e3:b9:f7:4f:ae:71:72:
56:59:97:5b:02:9d:1e:58:46:e1:f1:be:23:04:d2:
d6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:04:4F:BE:5D:BB:62:80:06:14:E5:4E:6E:57:11:4F:18:90:DC:6F
X509v3 Authority Key Identifier:
keyid:86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:bb:42:4b:b0:ee:88:e8:ea:57:c5:67:f1:ec:c0:3e:44:59:
83:fc:cb:bb:1d:da:73:b9:4e:1e:7b:91:8a:1c:ce:7e:50:b9:
cb:ef:20:56:17:51:31:43:64:b1:d3:94:94:84:44:61:95:e5:
3d:36:90:4e:da:27:5a:34:21:99:60:1d:02:8c:49:b3:10:60:
85:08:8f:3f:63:f5:19:7d:75:14:33:ba:71:7c:61:d5:b1:ae:
c7:51:1d:56:33:3e:cb:7e:51:8b:84:37:e0:96:72:3b:53:bf:
f3:da:02:a0:ac:88:74:21:9f:95:8c:8d:43:63:d9:ec:be:ce:
8e:5b:33:8b:92:88:2d:f2:84:e0:bb:af:a1:70:fb:ba:6c:e0:
5b:1b:69:1d:ea:63:e2:0b:c4:1a:53:e5:fb:ca:84:66:8a:69:
f1:aa:14:78:de:8d:14:65:25:38:93:f6:ac:3f:5c:78:79:42:
58:48:e5:2d:3b:19:85:e9:cc:9f:fe:ff:9c:01:37:67:a2:0f:
e6:54:fc:e3:23:3c:61:fa:4f:fe:65:7a:ca:99:b5:ad:8d:d3:
9d:f7:8c:ef:fd:d8:39:44:ea:19:56:ea:0e:67:f5:cb:e0:3c:
a8:4e:0a:c8:a4:6b:53:1f:d5:16:73:40:20:7b:03:c9:42:e3:
33:45:80:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:57:44 2025 by rpki-client