Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: M3Pu7xuu0Aw3BED2vZnbrTQGVYsirHsx547OWwrw7+A=
Subject key identifier: 54:DF:48:65:33:6A:8D:0F:02:AE:F2:AB:EB:A1:AB:D9:E0:6E:CF:6D
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 0197B6D7576F2635A6606CA2D783FC78E138
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1328
Signing time: Sat 28 Jun 2025 14:00:55 +0000
Manifest this update: Sat 28 Jun 2025 14:00:55 +0000
Manifest next update: Sun 29 Jun 2025 14:00:55 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: mXnR2hUtrj46cd53MH3g+/T1BHLvy7xEREE6R2HDi2A=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:57:6f:26:35:a6:60:6c:a2:d7:83:fc:78:e1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Jun 28 14:00:55 2025 GMT
Not After : Jun 29 14:00:55 2025 GMT
Subject: CN=54df4865336a8d0f02aef2abeba1abd9e06ecf6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:36:e2:b5:55:dd:64:f2:9a:82:58:a6:19:
26:64:f0:c9:94:9c:6c:63:96:e3:c2:2a:50:47:c7:
b6:d9:c9:9b:3a:32:d8:2b:8b:b9:a0:51:92:0b:e1:
5a:68:3a:d2:dd:23:02:97:64:f3:73:d2:fe:b6:d7:
3a:76:6b:c1:50:44:2a:28:ec:5b:2e:37:8e:ab:25:
8e:76:70:6d:97:53:51:50:7a:18:41:16:60:cc:d0:
ee:e8:5d:26:6a:b1:89:bf:37:fb:d4:04:ae:33:1a:
90:32:f1:8b:6a:97:15:97:96:7a:cf:6e:90:ac:72:
ec:c0:33:54:54:01:50:a5:6b:07:13:4f:5b:90:35:
bb:46:c6:ce:09:68:fe:6b:4b:37:cf:f3:5a:aa:fd:
d4:44:10:f2:9f:14:7a:41:18:3c:41:f2:81:4f:81:
31:7b:89:1c:a7:26:cb:c8:fd:82:56:b3:b8:81:82:
4e:fd:f6:c3:45:de:e4:f7:16:26:99:7c:04:e3:bf:
ab:b9:b5:b1:90:19:e8:01:2b:39:ed:2f:b7:ad:eb:
35:9c:97:26:d9:c4:b5:61:b3:42:07:87:5f:f6:48:
9e:4c:88:5f:d9:d1:5b:9d:46:b1:61:0b:a5:39:1d:
11:b9:32:a2:49:a4:b6:18:8a:68:95:ea:07:2f:ca:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DF:48:65:33:6A:8D:0F:02:AE:F2:AB:EB:A1:AB:D9:E0:6E:CF:6D
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:f4:09:58:78:0b:a9:5e:4d:11:02:2d:6e:22:75:5b:80:a2:
54:b8:8a:20:16:d6:e8:df:45:55:68:a5:ba:34:3b:56:e2:c2:
0f:60:58:80:72:30:50:29:f1:85:8f:a9:6e:e5:86:26:58:50:
0e:0a:a2:ac:41:56:e1:86:30:e1:47:24:2d:55:66:94:4e:03:
06:d5:c9:cb:b9:6c:6f:1b:32:71:bc:23:ee:75:4a:de:d4:9e:
af:bd:5d:58:2c:ef:e8:09:26:76:64:8d:32:15:67:16:e0:32:
c3:cc:7f:15:44:7a:e6:c5:b8:59:c1:2b:bf:df:f9:96:fb:4a:
40:0c:b5:1f:ed:c8:4a:1a:88:3b:06:60:d4:b2:92:16:ed:1f:
8d:11:c1:b1:28:d8:e7:30:35:ea:55:9f:06:2f:00:9e:86:0b:
45:a3:7b:52:9f:0b:0f:fa:25:e3:2c:a2:6e:a9:9e:ef:6f:0a:
4e:80:33:b8:0a:cd:fd:9c:cd:86:40:bf:53:15:ef:0e:34:ce:
ac:83:3e:dd:1c:cb:0c:d2:8e:bf:53:52:0c:12:9f:56:6a:9b:
96:ac:b0:c8:23:7c:a3:19:c1:63:30:d8:fd:85:47:4f:d4:bc:
c4:7d:8d:dc:32:d3:71:1b:79:75:ff:ae:18:38:3e:36:48:f5:
29:2d:70:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:50:51 2025 by rpki-client