Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: 05IUr/juvdaGVFEXpGjgjp8/0BN1sev1X2v3cCevaCg=
Subject key identifier: 96:BD:F2:13:4C:AC:DC:7A:11:F8:C6:72:66:B7:20:D3:4A:7F:92:F5
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 0197782ED396BC812BD2080F3EB3D6864333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 0FC9
Signing time: Mon 16 Jun 2025 10:00:24 +0000
Manifest this update: Mon 16 Jun 2025 10:00:24 +0000
Manifest next update: Tue 17 Jun 2025 10:00:24 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: mUfajlmEH0CxZav0DSxwHV6d44QHHo0vOJvN5xnwU/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:2e:d3:96:bc:81:2b:d2:08:0f:3e:b3:d6:86:43:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Jun 16 10:00:24 2025 GMT
Not After : Jun 17 10:00:24 2025 GMT
Subject: CN=96bdf2134cacdc7a11f8c67266b720d34a7f92f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b0:32:9f:db:58:ac:ce:42:42:dd:b7:67:59:
c2:0b:51:03:68:d8:87:11:e6:1e:0e:e3:52:40:72:
51:78:20:03:57:94:78:b0:ec:cb:19:95:82:84:ca:
06:8c:7f:f5:43:db:6a:fb:3e:55:ca:53:18:d3:8f:
7b:b9:2b:a0:be:f2:ce:39:6d:7e:a8:f7:39:20:b7:
45:58:75:5f:79:7b:7f:25:5e:25:b4:46:e9:dc:b8:
de:f3:7d:80:bd:89:95:2c:53:08:ea:f6:14:7d:0b:
02:b2:7c:80:04:e1:c8:03:87:ed:1e:93:d9:93:2e:
99:bf:d9:ee:8c:ad:1b:e3:f5:e0:0b:f4:4a:82:78:
6c:ae:15:4c:8f:16:49:3f:f0:cd:35:43:05:33:7f:
12:6d:50:e8:73:82:d3:19:dc:1a:17:f0:6e:99:16:
e3:0a:3e:e1:d8:43:d0:45:3d:0b:73:95:38:29:a5:
7b:86:61:05:eb:14:bc:6f:ed:19:e6:7d:42:1e:e0:
77:74:cb:ea:86:77:c4:eb:25:4f:02:df:17:ed:14:
d5:ab:69:80:91:c1:57:73:36:01:7b:d2:dc:1e:9c:
66:42:fa:f0:3a:b8:31:3f:b5:47:f5:2d:41:2b:dc:
c9:dd:99:4d:ec:56:ea:16:c2:f5:a4:98:00:0f:ae:
c4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BD:F2:13:4C:AC:DC:7A:11:F8:C6:72:66:B7:20:D3:4A:7F:92:F5
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:7c:68:7b:f9:2f:19:b7:09:74:d1:8c:d6:20:3e:79:0c:a4:
df:38:e1:79:71:b1:67:49:63:42:85:a2:49:fd:82:df:78:04:
5a:fb:ae:37:be:ac:7c:97:d9:63:2b:a7:6e:bb:e0:dd:d1:86:
8b:c4:a0:f4:79:dd:bd:7a:dd:68:6b:e2:65:9c:b4:97:5e:d7:
8d:52:2e:2d:94:23:49:cb:d0:8e:68:0e:41:49:cf:81:a5:67:
84:d6:22:00:23:fb:01:5b:0c:b6:40:48:0f:36:59:fd:1a:02:
2a:c6:2f:28:e9:5e:eb:23:07:ce:c3:f1:f6:f7:50:41:c7:f5:
05:6a:87:73:e4:88:5a:55:d2:d2:91:e3:28:d6:18:13:ad:11:
5b:14:a2:19:7b:ea:ce:c0:78:8b:a8:c1:bf:eb:9f:9e:d6:b1:
60:68:db:9e:4a:f6:6c:47:6c:02:e9:3c:19:d3:bb:e3:74:d1:
5f:c3:7a:97:4d:65:0f:ad:3d:25:ac:13:d8:62:12:94:9a:d2:
ec:2e:25:55:4e:e7:59:d5:25:94:1b:bb:34:11:8a:a2:eb:6c:
d5:a6:cb:5d:24:72:fa:40:13:42:28:9d:fe:cd:bf:ff:d8:ad:
05:16:37:88:89:4f:f7:06:6f:a2:bf:d0:fa:9e:c2:de:d1:38:
27:7e:b3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:37:03 2025 by rpki-client