Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: K3WerLDE9XKg6MnoAStm0ovlOAMlvA+Z6UfV/fXVakU=
Subject key identifier: 53:47:19:B7:47:CB:59:5A:E8:E0:B2:17:43:1B:1A:50:57:91:43:6E
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 0198D54DE1EFC19CDB2D4CAE7A66B80926F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 126F
Signing time: Sat 23 Aug 2025 05:01:47 +0000
Manifest this update: Sat 23 Aug 2025 05:01:47 +0000
Manifest next update: Sun 24 Aug 2025 05:01:47 +0000
Files and hashes: 1: CSj4rvQmRyDsyaDEw0jstidXLzo.roa (hash: 3pSnEcRnf/ULKrT/Poc1HoH7UgR2xUCZ7SNrN3hfNmI=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: 6C2Em6Jnn2IZIvDBUcPJJa8nciw0ogZmkxhty6hQwns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:e1:ef:c1:9c:db:2d:4c:ae:7a:66:b8:09:26:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Aug 23 05:01:47 2025 GMT
Not After : Aug 24 05:01:47 2025 GMT
Subject: CN=534719b747cb595ae8e0b217431b1a505791436e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ff:04:24:17:39:86:b7:c2:28:20:75:07:58:
58:83:5d:ca:c5:85:0a:cd:81:65:61:e6:e8:a4:ef:
35:08:21:64:14:88:ae:53:76:2e:60:29:1a:98:eb:
64:f0:36:fc:2b:54:9d:64:cd:1d:ce:b5:2a:50:06:
19:60:07:78:3b:17:b2:66:d2:f4:8c:b7:44:69:ae:
2c:db:4e:6e:48:74:cb:ad:94:19:6b:d9:9c:eb:b0:
b5:0c:eb:5e:4e:ac:6b:8f:d0:f2:5f:1e:d1:1d:a2:
3f:1f:9c:90:a1:da:f6:b0:e4:76:9d:e0:0d:5f:9b:
5e:55:7a:d2:ed:84:c2:de:da:f5:69:65:a6:7d:7d:
70:76:df:21:be:f0:28:ba:82:5d:0b:40:94:f1:f8:
79:27:38:b2:ff:fd:53:63:55:ec:d9:c8:07:f3:c6:
f1:18:5b:df:c6:5a:13:7a:7e:94:3a:f9:8c:8a:00:
a7:6c:36:1b:15:a2:3e:0c:e6:05:83:42:58:f7:cb:
d0:55:b1:77:05:bc:00:fd:61:da:9f:12:95:d6:8e:
9a:89:e4:a3:fb:c8:39:05:53:49:8c:fd:6d:ed:d2:
26:51:99:93:4c:2f:dd:7c:85:71:e6:3a:55:f6:ff:
22:78:45:70:cc:e2:5a:33:9b:42:b4:ec:60:ba:7f:
1b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:47:19:B7:47:CB:59:5A:E8:E0:B2:17:43:1B:1A:50:57:91:43:6E
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:63:fc:56:e8:4b:04:f8:2f:fb:d7:ef:b0:82:9a:6a:a1:d5:
81:e1:de:9d:a3:fe:8c:98:6d:37:f5:33:a7:3e:9f:0b:f4:39:
79:2d:e6:a9:98:a1:cd:00:3b:58:19:8a:f3:fc:76:21:9e:5e:
a2:00:0f:42:b2:98:f2:d0:d1:a7:86:eb:6d:2e:35:7d:d7:c4:
f9:cd:a1:85:8e:b7:39:fd:19:d9:95:36:96:12:ef:ce:36:f9:
f5:9a:b3:13:f1:e2:36:05:04:26:38:9f:49:46:ab:0b:46:0d:
c9:fe:e5:20:7b:cb:c9:13:f7:85:da:be:9f:7f:06:fe:cd:03:
28:b1:0f:4d:90:df:cb:c0:52:74:16:36:20:e1:3d:fb:4f:c9:
97:59:54:4b:65:e3:dc:47:61:5a:fa:df:47:d4:a4:7f:d1:b5:
4a:1d:99:8a:32:38:e2:61:3a:00:8a:89:77:74:88:82:1f:71:
85:fd:2a:be:1e:2a:44:76:3b:9f:49:34:d5:29:fb:ba:df:3a:
50:65:86:75:4e:41:a9:8b:fd:0b:38:18:e6:da:6e:08:27:56:
dd:de:15:e9:87:67:0f:a8:01:d6:1d:45:42:a1:ff:bf:63:9e:
f3:3b:77:8c:27:a6:b6:54:f9:44:63:92:83:16:a9:10:64:37:
e5:41:5e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:31 2025 by rpki-client