Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
File: HQrO6hf1PecI-ac6vAyHFk0gfQg.mft (raw, json)
Hash identifier: /7nQGtdomju4tNkr8gTeAs/1+8k6vC1o6mTepSW6LDo=
Subject key identifier: 12:15:BD:7D:BB:3A:1E:23:E0:DD:81:70:D3:13:03:11:37:9F:E0:F4
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 0197B6A0C0D66D2B86A20596E7B99BDA130C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
Manifest number: 12D8
Signing time: Sat 28 Jun 2025 13:01:17 +0000
Manifest this update: Sat 28 Jun 2025 13:01:17 +0000
Manifest next update: Sun 29 Jun 2025 13:01:17 +0000
Files and hashes: 1: 9zhTOpiuNqKnk778yI8rOgQQ8-A.roa (hash: ABWXF/FnYjdj8H9UnlqrtLWEbBYpls+daSI459eMuZM=)
2: HQrO6hf1PecI-ac6vAyHFk0gfQg.crl (hash: NoxQB7EY5eW5oVtC/jt4+cNy8Zuc9AsUo8MWuEMZvvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c0:d6:6d:2b:86:a2:05:96:e7:b9:9b:da:13:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: Jun 28 13:01:17 2025 GMT
Not After : Jun 29 13:01:17 2025 GMT
Subject: CN=1215bd7dbb3a1e23e0dd8170d3130311379fe0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:67:5f:18:8c:b1:a9:dd:fd:b5:e6:cc:85:d1:
f0:f7:2e:99:13:d6:bb:92:ed:7d:d6:b3:a5:02:1d:
e9:2a:fb:30:eb:cb:73:0e:49:de:0d:a3:77:7c:1d:
fb:9c:89:28:7a:7b:6e:66:88:f2:02:94:ea:a5:58:
23:5b:b5:0e:ea:4c:7f:7c:23:17:7b:04:71:14:a3:
3a:5d:33:78:c7:53:95:6e:33:5b:2a:14:96:82:a2:
ed:5e:81:1e:23:a7:46:7b:87:4e:6d:9e:3e:23:07:
e3:34:c1:37:26:c4:94:28:8c:75:a2:0c:23:53:f5:
6b:90:a2:01:58:0c:b8:92:d4:2f:c6:e9:03:98:7d:
60:8d:19:41:2d:c7:1b:99:e8:01:a5:cc:fb:fa:47:
4f:cc:1b:8e:c4:9e:5c:90:14:03:d8:65:45:63:9c:
e6:c3:be:36:c3:b8:7c:82:ea:03:68:f5:44:3c:d3:
15:46:6a:79:a1:3f:5d:ce:57:bf:af:44:36:7a:64:
fa:cb:fe:2d:2e:07:c5:f7:a5:34:6f:c8:f8:b5:4e:
ca:ba:ba:d6:b3:1d:13:76:ae:fd:1e:d9:23:ba:c5:
8a:f9:b7:99:c3:5b:59:32:4a:9e:08:97:30:ab:81:
16:14:e7:8d:e3:82:5d:90:02:ff:bc:e9:06:0d:37:
cf:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:15:BD:7D:BB:3A:1E:23:E0:DD:81:70:D3:13:03:11:37:9F:E0:F4
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:66:de:c7:0f:e4:6d:b2:de:72:83:02:90:3e:a8:da:4b:80:
0e:9e:7f:8b:b6:4f:1e:8f:4d:27:2f:65:5d:4d:78:7d:d2:f3:
c2:75:36:14:2f:74:6d:79:47:31:47:ad:9f:31:3d:84:3b:cb:
94:64:76:0f:19:fa:2c:3b:c0:ba:32:c9:29:17:49:cb:3c:09:
70:c8:76:cd:f8:ee:ec:1b:19:43:16:fe:d4:db:ed:ea:1f:2d:
32:c7:16:e2:ff:df:c9:bb:ca:02:12:bd:a5:85:b3:aa:6d:f2:
1e:e6:73:22:50:67:bc:41:bc:f1:06:00:0d:30:d9:24:09:eb:
7f:59:ee:3b:2b:14:77:a4:19:44:f4:9f:79:7e:0e:25:41:21:
cd:1c:72:fa:e6:ba:18:55:4d:a6:c5:4e:88:e4:ff:3a:75:5a:
a9:42:25:94:8b:23:37:67:35:c8:8a:22:29:2a:27:3f:d6:4e:
5d:b0:a6:68:23:90:56:35:a1:85:08:73:a5:e3:c0:a9:73:d0:
3b:6f:76:e6:eb:64:b9:46:4b:67:9f:ee:51:a9:a9:a9:ba:60:
21:2c:80:1c:69:77:19:bd:53:ca:d3:10:9c:2b:c6:f4:20:5b:
b2:ea:2e:a6:bd:8d:a7:f3:07:2d:a5:c4:5c:20:43:c8:8a:4e:
d4:a4:f0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:57 2025 by rpki-client