Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
File: HQrO6hf1PecI-ac6vAyHFk0gfQg.mft (raw, json)
Hash identifier: sjZh6M/te/TeOtuQewtq8fIV9RuG2H01Fj27pf5mbSI=
Subject key identifier: BD:F0:2C:02:DD:54:32:25:FF:B6:1D:C5:53:EA:70:F9:1F:7D:50:65
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 0198D65F02DD90D287DA06E9B3D07E593832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
Manifest number: 136D
Signing time: Sat 23 Aug 2025 10:00:07 +0000
Manifest this update: Sat 23 Aug 2025 10:00:07 +0000
Manifest next update: Sun 24 Aug 2025 10:00:07 +0000
Files and hashes: 1: 9zhTOpiuNqKnk778yI8rOgQQ8-A.roa (hash: ABWXF/FnYjdj8H9UnlqrtLWEbBYpls+daSI459eMuZM=)
2: HQrO6hf1PecI-ac6vAyHFk0gfQg.crl (hash: /BgOy/Y+Bk+TTtUqsAaUyyOE6UVEdGGlbCpXfU32oEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:02:dd:90:d2:87:da:06:e9:b3:d0:7e:59:38:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: Aug 23 10:00:07 2025 GMT
Not After : Aug 24 10:00:07 2025 GMT
Subject: CN=bdf02c02dd543225ffb61dc553ea70f91f7d5065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8a:43:fe:7e:d4:f7:6c:e9:3e:f7:12:d9:f1:
95:de:65:37:06:39:31:cb:0f:56:40:94:78:bb:17:
02:a6:ab:ee:54:ac:75:61:08:ee:d7:05:6d:85:96:
21:3b:15:bd:35:f6:0e:e0:e9:08:08:ac:65:e7:fc:
7e:d7:2c:c8:f1:00:ab:e2:b0:5e:63:d9:dd:cf:bc:
8d:fe:cf:60:21:d1:5f:61:67:f4:9a:d4:94:73:9f:
14:82:5e:53:25:e4:6b:d1:a6:59:78:ae:e1:e5:69:
73:fd:f9:f7:05:58:81:3f:81:4e:b0:02:4d:65:dc:
97:23:f4:fd:9f:78:54:ad:80:e5:ac:b3:7f:58:47:
c2:ee:35:2d:98:0f:b8:ad:f4:f5:9b:f5:57:fe:ae:
15:a7:61:7d:fa:38:b3:e4:88:2f:b2:fc:25:b4:43:
bc:23:2b:15:9b:6d:77:09:ee:3a:aa:c6:cd:45:0f:
fa:bc:6a:27:09:18:23:d9:05:1c:6e:19:3d:cb:89:
ec:ee:8f:9e:7e:30:a4:5a:49:4d:8f:62:1f:3f:d0:
ca:e1:57:73:83:ba:86:30:90:d7:87:fc:5f:90:e0:
30:2e:52:2e:72:db:78:7b:51:ca:84:1d:26:52:ab:
3a:64:70:1e:54:29:75:8b:8b:7a:87:94:4e:25:8d:
b6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F0:2C:02:DD:54:32:25:FF:B6:1D:C5:53:EA:70:F9:1F:7D:50:65
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:c3:c2:5f:fd:2f:b7:ab:38:41:20:12:77:2a:2c:04:da:69:
d3:17:3a:39:96:a2:32:40:e4:f0:f0:8c:2f:37:38:1b:ac:ec:
75:e4:e7:d3:65:d5:62:67:0f:e5:3a:2c:d3:1c:cf:95:25:be:
1e:71:c5:51:cc:49:d9:44:21:27:89:29:7e:d0:ed:7d:51:0f:
d0:39:1e:65:61:71:46:3e:32:2f:f3:00:a4:8f:5f:86:50:5a:
e0:39:e0:42:43:c5:09:e9:e2:13:c6:bd:d8:ed:86:50:de:cc:
b4:69:56:c2:bf:3c:b0:00:57:f8:c9:21:55:83:db:5c:f8:36:
f5:79:87:f2:6f:53:25:93:6b:cd:fa:fe:4d:46:81:35:3b:08:
ed:eb:80:e9:64:56:bb:70:42:81:57:29:7d:77:63:97:10:54:
0d:94:8f:12:aa:ba:6d:c3:f8:7e:60:c1:e2:04:25:a2:fb:4f:
3b:39:46:ee:10:d6:a2:36:82:04:8d:b1:cb:f8:02:3a:0e:30:
9d:93:4b:31:ba:6b:4d:51:f9:bc:24:9a:00:c2:68:d3:e6:02:
30:67:1c:df:3b:bf:f4:97:fe:48:3e:fa:1e:18:5f:a2:5b:5d:
ca:cc:d0:68:96:e5:44:e6:87:b4:7c:b1:10:cb:f6:87:4d:df:
d6:01:75:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:55 2025 by rpki-client