Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: lijEI2bMd9kYqIEf28LwbhtRr1iCK09tbmVSKxUqc/w=
Subject key identifier: 0C:24:32:CA:D3:0E:03:1F:3A:42:17:28:D6:FC:B0:DE:40:F0:40:FF
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 0197B77C1B6025062DC0AB109F0A183CC980
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 11DB
Signing time: Sat 28 Jun 2025 17:00:53 +0000
Manifest this update: Sat 28 Jun 2025 17:00:53 +0000
Manifest next update: Sun 29 Jun 2025 17:00:53 +0000
Files and hashes: 1: CSj4rvQmRyDsyaDEw0jstidXLzo.roa (hash: 3pSnEcRnf/ULKrT/Poc1HoH7UgR2xUCZ7SNrN3hfNmI=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: dCGbRl6kHwrbdTOuozNYz7qi0ewxw9a4sfKqHtUI2AE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:1b:60:25:06:2d:c0:ab:10:9f:0a:18:3c:c9:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Jun 28 17:00:53 2025 GMT
Not After : Jun 29 17:00:53 2025 GMT
Subject: CN=0c2432cad30e031f3a421728d6fcb0de40f040ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2a:4e:b9:86:6a:da:38:2b:a5:c5:5b:d8:34:
c0:4f:9b:a8:04:1d:3a:8d:79:22:5f:a9:65:38:fe:
a1:c6:2b:5d:77:33:90:96:8d:e1:0f:6d:58:91:b8:
82:25:44:bb:d3:43:af:90:6c:44:83:30:a6:62:37:
cd:c4:84:9b:67:77:8a:e2:6b:72:fa:a8:a7:ce:19:
9e:c7:06:c8:85:5a:57:1d:b2:63:3e:6a:0e:a0:10:
73:a6:f0:17:57:1e:0f:4e:ea:ae:ba:b8:44:3f:ee:
87:01:31:6d:17:97:01:9a:8b:53:5f:7f:2e:ba:48:
fc:c2:01:38:9e:e7:0d:80:46:2d:a0:1c:34:ee:8f:
b4:75:1f:50:a0:71:82:c9:37:b5:e4:e7:95:7e:95:
20:12:4a:8c:7c:00:10:8f:8a:1d:75:82:5e:f8:5b:
ee:13:cf:70:9c:89:48:bd:a9:5d:98:88:27:19:6b:
4f:73:13:94:67:8a:e2:54:93:73:35:f3:b2:ac:ed:
0f:95:8a:4c:7f:1b:53:40:3e:99:9a:f6:fb:54:9b:
24:5b:7b:ea:e2:e8:0e:2e:92:6d:ab:5c:b5:97:21:
de:8a:15:b4:ff:95:65:38:0d:bf:53:3b:84:fc:c4:
91:c6:4b:44:2a:f7:e1:98:c2:d1:81:3f:24:a7:30:
b5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:32:CA:D3:0E:03:1F:3A:42:17:28:D6:FC:B0:DE:40:F0:40:FF
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:11:fa:fe:51:09:47:3e:ad:72:2a:05:5b:56:65:cf:47:c9:
a2:1c:fc:3f:94:00:85:0d:d0:10:bd:c2:b0:09:1d:f2:cf:a4:
ba:70:e8:69:2c:3e:f8:af:35:3e:bd:ef:70:fe:70:91:48:e1:
f7:57:d5:88:67:ab:77:b3:22:9e:c1:53:27:27:8c:53:0c:00:
3a:43:31:1a:9f:77:94:36:f4:4f:66:da:95:13:69:07:5c:df:
77:66:68:39:d9:01:53:11:d3:c8:44:79:b7:ba:32:bb:94:fb:
f9:d5:2f:31:b3:cb:bf:cc:28:a0:e7:01:31:af:66:3a:a2:2e:
04:36:8a:f4:8a:d4:8a:7e:f1:7f:8c:6d:72:97:e1:49:c7:bc:
7e:16:7c:73:58:f6:1e:49:5a:4d:af:5c:bb:40:d7:cb:02:b1:
90:14:fc:c1:97:6a:85:b3:27:86:b5:78:6b:bf:4d:e4:b8:53:
f0:c7:6c:ed:09:87:c1:e2:bc:e3:1b:87:b7:80:03:3a:d4:0a:
bb:0a:93:34:99:6a:77:34:da:62:95:f6:42:0c:b5:d1:ad:e0:
33:e4:0d:8d:f6:55:d0:f6:c8:54:a4:c0:44:a7:4d:fa:40:8a:
5d:e7:89:37:ba:cd:1a:0d:4a:bf:b5:88:4f:1d:c2:95:f2:e3:
a7:40:b5:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:19:25 2025 by rpki-client