Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json)
Hash identifier: 3GdFNy22x7I92iK97tB4bntuN2t9XyMZGp3bJMpeAJA=
Subject key identifier: 1B:CA:4B:19:44:EC:D6:92:53:8D:9F:C4:ED:D1:3D:21:A7:B9:77:0A
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 019769CEDEB990A3AE4B291A2C002CEDA5A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
Manifest number: 1593
Signing time: Fri 13 Jun 2025 15:00:54 +0000
Manifest this update: Fri 13 Jun 2025 15:00:54 +0000
Manifest next update: Sat 14 Jun 2025 15:00:54 +0000
Files and hashes: 1: UzSEdJBP2Gqr1z-0qx79WTsLauw.roa (hash: vl1ow4mOIeKlrrAdbJAJQJmVxWS6mp39VC/9XaCz00U=)
2: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: Kl0eeFECuad26r6uBurpC3Dvzf6n1TVeBwX3wpRTKc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:de:b9:90:a3:ae:4b:29:1a:2c:00:2c:ed:a5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Jun 13 15:00:54 2025 GMT
Not After : Jun 14 15:00:54 2025 GMT
Subject: CN=1bca4b1944ecd692538d9fc4edd13d21a7b9770a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a9:8c:ad:8f:e6:ba:47:45:97:fe:34:17:00:
84:bd:43:45:9f:30:65:75:25:48:ec:59:c3:3d:f5:
e1:e8:35:81:52:34:f8:7f:c5:2f:91:b3:d3:1e:bd:
28:e6:8e:df:a0:db:fe:64:13:54:37:ab:28:d2:0c:
42:a6:44:18:4b:a8:1d:f8:26:fd:ae:46:f8:f5:8f:
d2:3a:87:84:4e:e6:60:80:15:ba:a6:af:97:bc:a8:
9f:26:57:c3:a4:ac:d3:da:81:af:5b:d5:86:07:f4:
7c:99:2b:cf:f5:4d:85:1a:13:95:74:3b:a4:1b:70:
2d:b9:79:3a:f7:4c:29:87:e5:0b:b4:c7:ca:cb:46:
38:9f:c7:cd:01:8b:fc:5a:16:cd:43:02:81:2e:ab:
4e:1f:cb:30:e6:4b:3a:0c:0f:80:a6:f6:60:ee:3f:
7b:58:04:53:08:97:35:c5:67:7c:e2:89:94:e3:d2:
f4:85:81:53:1a:cd:3a:01:6c:4d:45:0d:ef:fc:38:
8d:88:4d:dc:f3:8c:1b:10:ce:25:3d:3f:d8:41:04:
33:41:46:bc:c6:53:5f:b3:76:11:c5:bc:81:e3:5e:
7b:c4:f2:36:64:b3:8e:56:c8:7a:42:30:aa:bd:27:
ff:f6:ea:d3:fe:33:62:39:fb:38:b5:fd:90:a1:4f:
13:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CA:4B:19:44:EC:D6:92:53:8D:9F:C4:ED:D1:3D:21:A7:B9:77:0A
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:6f:fe:e1:e3:ad:b2:8f:81:fa:a9:01:94:ae:0a:43:25:01:
13:eb:d8:88:1a:ec:48:7a:ec:08:58:ef:dd:4e:af:e0:19:9d:
ab:d1:fe:0f:b6:4c:28:5b:e7:b3:d4:e8:fb:5a:fe:b0:4c:6f:
5e:6e:ba:94:c6:0a:23:d8:b3:76:eb:42:fe:37:f2:72:38:58:
25:fb:f7:ae:fa:df:89:86:6c:6d:7b:82:22:32:40:17:be:da:
34:ab:87:bd:f7:8b:36:c7:2a:9c:48:b4:47:1d:8b:48:07:b7:
00:56:96:be:4a:35:48:b0:b9:a6:d1:fb:62:71:94:f7:14:22:
ac:ab:47:82:05:a0:85:d9:f8:86:2b:51:f0:eb:74:af:67:82:
da:cb:a0:2f:9e:46:f9:39:f2:7e:fe:29:1e:34:30:da:d7:29:
3c:ea:89:ad:06:f9:61:ba:90:6c:dc:3f:ab:b2:77:e4:d4:4a:
4c:be:be:bf:d9:cd:e6:03:99:00:29:fe:69:dc:77:3c:d6:ec:
27:5b:5a:98:37:dd:9e:f1:40:38:4d:c4:65:5b:76:d8:9e:fc:
51:03:36:14:f3:44:6f:6c:a4:fa:7d:5d:5f:91:8f:1f:5a:7b:
47:91:fc:b0:25:44:2b:6b:76:13:d0:4e:7a:28:5d:88:73:ab:
3f:30:63:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:13:10 2025 by rpki-client