Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: wk3AKWzC3LlpGdjEpf0YxTE6Ef03fpQOqmxMERXIOac=
Subject key identifier: CA:1E:E3:23:BF:7E:76:2A:AF:EC:C1:44:AB:A2:83:C5:B1:EE:66:40
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 01976A3C3CD296BE2F493CB01E38A31CD47A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 1028
Signing time: Fri 13 Jun 2025 17:00:21 +0000
Manifest this update: Fri 13 Jun 2025 17:00:21 +0000
Manifest next update: Sat 14 Jun 2025 17:00:21 +0000
Files and hashes: 1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: 9dDIP3NNKd8LMb45iMkvbHQUrp9akeMbwhIR8RKLe1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:3c:d2:96:be:2f:49:3c:b0:1e:38:a3:1c:d4:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: Jun 13 17:00:21 2025 GMT
Not After : Jun 14 17:00:21 2025 GMT
Subject: CN=ca1ee323bf7e762aafecc144aba283c5b1ee6640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:be:47:be:3f:c8:1b:b6:45:8e:6e:e9:45:
fe:10:1a:a2:cf:ff:38:f8:9a:d1:8e:2e:67:e6:9b:
40:3e:c3:5f:84:53:e3:dc:b0:16:6b:b8:23:e7:ec:
78:1e:0a:2b:4f:8d:f2:ad:a2:e4:66:d8:2c:60:18:
32:68:36:92:2d:14:7f:cf:d8:8f:bb:3f:17:74:a1:
77:a2:b0:03:90:4e:95:92:07:56:41:e6:37:e1:cf:
b4:5f:e5:77:26:d8:32:ba:85:4a:ad:fd:c2:88:f6:
23:ee:f8:d7:eb:71:56:2b:aa:88:95:bf:c3:ed:06:
59:01:09:3b:fa:e1:92:43:d6:90:8b:cc:c0:39:35:
f0:1a:8a:43:5d:33:c1:53:66:6d:d5:61:05:16:65:
e1:88:e4:8c:73:4d:a7:78:e5:cb:7e:69:a2:47:28:
07:7b:91:d8:76:2a:c9:94:de:4c:04:a9:2e:20:9e:
e3:c7:90:69:18:39:87:01:6b:4e:59:7a:16:7d:fa:
80:c9:c8:d3:19:9e:f9:4a:e4:0f:ad:5e:55:d1:a9:
37:82:cc:45:85:ab:a8:58:26:f6:5a:0a:80:aa:81:
fb:b2:3e:c5:16:46:3d:30:da:91:a6:e3:34:dc:aa:
bb:74:28:87:15:39:94:d2:28:98:a1:3c:1f:50:d3:
24:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1E:E3:23:BF:7E:76:2A:AF:EC:C1:44:AB:A2:83:C5:B1:EE:66:40
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:1a:05:92:c2:46:37:e7:a1:d3:a7:dc:ca:9d:85:c2:2b:44:
f5:e1:7b:cd:22:5b:7c:8d:9b:4c:97:2b:a6:62:c8:bb:00:2a:
43:af:49:ac:4b:3c:2b:a4:d3:6d:a6:65:a8:f4:4c:65:50:17:
64:86:db:14:52:1f:17:8c:a9:b5:8d:f2:35:ed:84:68:69:41:
6f:d8:00:7a:6a:93:5e:91:06:41:6b:4f:3d:16:f6:a5:15:59:
a3:56:e2:f6:81:96:c9:ac:a4:38:23:96:e1:ac:8d:eb:8f:9b:
bc:cb:50:4e:17:87:f3:d6:9d:7e:4c:56:42:07:00:f1:c8:dd:
3e:1b:43:c1:44:f5:6f:4c:67:be:72:77:45:c6:a8:48:4e:1b:
93:72:a7:25:48:34:cd:9f:9c:a4:82:53:38:ea:ed:15:1f:bd:
39:c2:ae:78:a9:20:fc:7a:bf:65:92:1c:19:47:20:40:2c:08:
51:f0:83:a8:44:f8:2c:98:5a:e0:2b:06:57:3c:cf:80:d1:44:
65:1c:45:43:a5:b3:b3:27:6b:a5:3b:d0:4b:d7:ee:3b:da:83:
81:69:5f:af:94:46:da:79:66:36:53:10:71:89:ef:fc:ac:f1:
b9:73:3f:f9:3b:b7:73:02:7d:86:f8:1d:8a:05:51:ba:8e:1e:
a8:fb:d3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:58:16 2025 by rpki-client