Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: QvXGofotvY13Gg1lEwWdbGwSuCQsgf2+NycqtDJ2rAQ=
Subject key identifier: 10:8C:58:A4:17:AE:5F:D4:3B:61:23:97:32:76:FA:F1:6F:81:76:63
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 0197B7455D96C4C6792EC4E09D5CD965BBC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 15BF
Signing time: Sat 28 Jun 2025 16:01:05 +0000
Manifest this update: Sat 28 Jun 2025 16:01:05 +0000
Manifest next update: Sun 29 Jun 2025 16:01:05 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: SEncVoliF51W/K9o21Y9A9mfkMBK69hMQAjBoovPz30=)
2: MCvxtXhDv-4sOFSG3-70es9IbCc.roa (hash: zG6t5oGWGri6Roj7Zds9875D3+Pp2Gk1iyyfA9Fh0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:5d:96:c4:c6:79:2e:c4:e0:9d:5c:d9:65:bb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Jun 28 16:01:05 2025 GMT
Not After : Jun 29 16:01:05 2025 GMT
Subject: CN=108c58a417ae5fd43b6123973276faf16f817663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:31:fe:24:3e:8b:46:21:8e:1f:ef:13:10:
2e:22:29:26:2d:98:77:0a:f5:09:63:b8:69:fe:7f:
50:9f:4f:b4:db:6d:cd:cb:00:0d:09:40:dc:bf:de:
1f:8c:f9:c2:4e:65:e0:ce:18:74:62:9a:13:58:94:
21:33:a4:76:8f:5e:5d:74:32:88:31:f4:c5:f6:98:
69:1b:b9:b8:43:43:65:fc:9b:a6:d3:22:9d:58:a1:
03:af:db:96:3f:47:14:8d:fb:50:43:06:23:e1:7f:
34:72:a6:0e:07:bb:88:97:59:5d:f7:7b:d2:07:2f:
00:8a:2b:44:6b:8d:2f:24:c2:78:6c:2c:8e:b2:88:
3c:18:7f:90:de:44:fc:68:bd:49:c5:0f:bf:6f:19:
56:82:25:84:3f:93:dd:7e:5d:dd:01:25:4d:e2:db:
9b:03:c3:86:50:85:84:21:dc:4f:01:65:9e:50:4d:
bd:53:08:92:04:7f:6d:24:e5:cd:02:e2:b1:af:63:
7f:27:4c:93:a2:91:f4:e9:3b:bc:b9:5d:bf:5c:ed:
a2:0a:df:17:1c:d8:82:ce:56:c1:80:01:e6:c1:25:
70:58:b3:bb:c7:b1:ba:94:62:0a:87:fc:95:bb:a8:
f1:ef:3e:06:6d:a5:c9:6f:04:14:aa:64:80:80:65:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8C:58:A4:17:AE:5F:D4:3B:61:23:97:32:76:FA:F1:6F:81:76:63
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d8:c3:66:a1:24:36:4b:9b:b1:d7:ab:08:43:b5:49:6c:23:
84:b4:5b:c0:4d:b0:06:f3:a2:9b:28:8a:1b:cb:8c:21:ac:30:
4f:35:83:2d:bc:5d:28:68:87:43:11:d9:89:98:d3:da:9d:ac:
4a:6f:63:cf:59:40:84:7b:7a:fb:23:98:cc:18:89:d8:ad:af:
3d:12:6e:82:41:05:78:1f:10:fc:ae:6c:34:0b:0d:44:58:b1:
31:31:09:84:df:0f:a6:cf:60:31:7c:73:2a:9e:7c:09:a5:76:
aa:f6:0a:90:7b:8d:c0:68:2f:98:c2:c3:17:d0:c1:fe:a9:86:
55:73:8f:86:83:e5:13:93:7f:19:2f:ff:25:bd:32:ce:64:00:
27:af:4f:17:78:1f:59:3b:55:b4:50:ab:11:24:8d:06:1a:86:
63:22:c4:77:9d:bf:93:ac:69:b7:a1:8d:3c:2c:9e:75:e1:46:
b2:91:fb:0e:f7:4a:33:ac:06:91:c6:cd:04:6a:98:61:25:1d:
40:70:a1:0b:12:17:fd:3c:fe:af:1e:3b:3e:4c:e7:2b:a4:c7:
b2:57:f6:75:a4:12:96:7e:0c:89:66:3a:2e:59:39:5b:da:76:
f7:01:31:5e:3e:9a:f7:6b:14:21:22:69:12:be:68:a7:37:f1:
fc:b1:95:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:22 2025 by rpki-client