Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json)
Hash identifier: yAnHQDxJ8lLXhiqbM4Uf85pd58PIchBloP6LNHs2biQ=
Subject key identifier: 32:DF:9E:F6:02:D8:E6:75:2C:7C:11:69:89:05:FA:E2:C5:D6:62:E7
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 01976D748F61446D7E2A77278BB5202095A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
Manifest number: 0BD1
Signing time: Sat 14 Jun 2025 08:00:44 +0000
Manifest this update: Sat 14 Jun 2025 08:00:44 +0000
Manifest next update: Sun 15 Jun 2025 08:00:44 +0000
Files and hashes: 1: 3n4D1SR6scBc56Ie3xGq3b0L8M0.roa (hash: aBbdE/LoKCgkOQOFc+caUhkJgro6NFyptlXPezVha0Q=)
2: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=)
3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: IINf1YzPUbsYlwII5Si1WLiP2UfGO/H4b9C6h33PAF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:8f:61:44:6d:7e:2a:77:27:8b:b5:20:20:95:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Jun 14 08:00:44 2025 GMT
Not After : Jun 15 08:00:44 2025 GMT
Subject: CN=32df9ef602d8e6752c7c11698905fae2c5d662e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:32:11:3e:5f:41:2e:18:cf:46:02:62:2c:
0b:8b:13:8e:44:d2:a3:13:b7:81:da:aa:d0:b8:b9:
b6:3f:ab:be:35:f0:09:a8:18:8a:73:c3:2b:94:9e:
d9:4f:98:b3:e4:13:bb:2a:3c:55:b7:02:05:4a:01:
57:c3:58:3a:73:41:7d:08:44:34:63:69:47:11:68:
f0:88:2b:37:03:b6:57:75:af:78:7a:37:b9:23:ae:
d2:76:7e:d8:9d:7a:42:10:5a:83:f4:8a:82:d7:de:
23:58:b1:6a:a7:37:94:44:cd:8f:21:74:79:94:c5:
9d:07:3a:b5:e6:21:aa:6c:30:ba:a3:5c:73:0d:88:
41:ed:96:83:84:1f:0f:dd:ce:9d:06:ba:e1:0f:2e:
0b:ca:05:cc:9c:7d:f4:62:bd:03:1b:ea:6e:95:aa:
32:a0:90:9f:04:f7:50:f6:c2:80:10:68:9e:ba:3f:
d8:4e:7d:0d:97:15:37:09:e8:de:99:72:0a:d7:13:
fc:6e:9a:6b:e2:cf:fc:f4:cc:ef:3a:aa:c0:09:65:
e5:17:ed:33:4d:04:46:77:64:02:a3:0d:eb:50:75:
d1:fb:ea:a3:ab:04:1a:c6:43:7b:46:09:33:33:79:
0e:f0:6e:a5:dc:bd:bc:8c:06:12:21:57:e2:46:42:
ce:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DF:9E:F6:02:D8:E6:75:2C:7C:11:69:89:05:FA:E2:C5:D6:62:E7
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:55:9c:de:df:48:5a:f7:05:b1:c6:6c:8a:f3:ad:6d:72:14:
db:71:38:68:ee:80:4d:5a:79:a2:2b:50:11:ab:4b:9c:3a:1b:
ee:d7:0f:97:40:4f:97:66:c4:a7:bf:7f:a8:bb:dd:bb:2b:d8:
51:6e:ab:9e:d2:17:6f:db:3c:03:44:e7:6a:da:3c:d2:30:ed:
f3:bc:52:a3:48:e4:85:56:f9:f4:dc:5a:41:e0:59:b0:9c:6c:
04:3a:cb:f0:52:5d:c7:41:d7:f7:cd:88:a8:e0:cd:94:8e:11:
8c:71:1e:ad:ab:57:93:f3:d3:58:66:76:e2:02:c2:f1:fc:21:
8e:da:b1:1d:6f:fa:3b:b4:79:98:d2:82:10:c0:db:8f:cd:71:
58:28:51:d9:3e:7d:d4:02:d4:ec:a6:fe:41:f5:f1:e6:aa:69:
81:4b:79:0e:61:3b:27:d0:a8:18:5b:1b:28:fc:d7:cc:52:db:
65:50:95:e6:10:47:33:19:23:fb:7a:7d:0f:02:be:f3:8e:a7:
0a:2b:20:e4:60:5a:15:f9:d0:3e:74:e2:63:74:50:72:78:da:
04:93:df:fa:c6:e3:41:03:f8:37:91:5a:7f:a0:71:75:58:e9:
ae:d6:c6:be:c3:b4:a4:bd:bc:e5:9b:32:83:8d:02:4f:44:7e:
20:c3:44:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:28:46 2025 by rpki-client