Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: xMutqcNUVAfjavk/IWzQkDuBGOFAuTxjQQYSBMDGbPg=
Subject key identifier: 07:11:FB:EA:86:66:F1:1E:FB:34:D0:5C:B9:2D:8B:C0:11:70:D6:0E
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0198D5BBA0E0E1A0B15174EC021573D67E91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1658
Signing time: Sat 23 Aug 2025 07:01:40 +0000
Manifest this update: Sat 23 Aug 2025 07:01:40 +0000
Manifest next update: Sun 24 Aug 2025 07:01:40 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: ZN4WgsmrkFeQw6id2VNK/z8L/rwU6ehRdDpqFgebkJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:a0:e0:e1:a0:b1:51:74:ec:02:15:73:d6:7e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Aug 23 07:01:40 2025 GMT
Not After : Aug 24 07:01:40 2025 GMT
Subject: CN=0711fbea8666f11efb34d05cb92d8bc01170d60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8b:9a:76:36:2c:60:f2:88:23:d1:c3:4e:37:
31:f3:aa:33:50:a8:5e:ef:89:f6:55:d4:c7:30:ee:
f9:ac:c9:56:26:06:27:42:34:60:47:ed:fa:a4:57:
2a:25:12:f8:4e:72:6b:25:e6:e0:bb:49:4f:93:da:
10:5a:45:a7:42:ed:03:4f:b8:4f:14:49:ef:ae:71:
cd:f5:8d:be:58:15:a6:ae:e6:41:8c:71:c1:a5:b4:
af:d4:40:bf:fc:c1:0f:9d:08:ad:1b:39:1b:29:2c:
29:18:f6:12:eb:fd:40:eb:34:f2:f5:99:b2:60:f2:
5e:34:22:00:ed:93:9d:04:02:17:43:33:af:09:1b:
57:6f:c9:82:08:c7:ad:be:50:65:53:d3:d7:12:21:
3b:d1:e4:8c:43:0e:06:bb:52:b4:bd:79:85:10:23:
e7:78:57:12:01:01:de:64:5c:f8:2f:e7:b3:96:4b:
ee:80:e9:59:c5:22:94:fd:4d:bf:c4:b6:16:78:93:
76:2c:38:59:9f:b1:fb:70:fe:86:b5:3f:40:e3:21:
a6:af:5a:33:8e:4f:c3:7a:6b:c3:5e:1b:00:7b:3e:
e5:19:4b:c0:8c:54:ea:42:2c:9a:30:19:d9:11:30:
66:ba:7b:bf:26:15:db:18:53:ed:9c:20:4f:17:d6:
79:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:11:FB:EA:86:66:F1:1E:FB:34:D0:5C:B9:2D:8B:C0:11:70:D6:0E
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:97:72:86:e8:d7:28:a6:42:40:b4:38:3b:75:06:8b:62:6e:
08:6e:df:14:ac:34:76:fd:22:7a:87:23:3a:fc:31:1e:28:fc:
63:b9:99:bd:88:54:05:ba:8f:a0:7e:15:4c:9d:07:09:c2:1c:
3d:20:d2:a6:a0:74:59:5e:85:eb:bf:be:ca:c3:db:bc:35:53:
13:e4:e6:65:73:b1:34:d8:6c:8c:08:03:ed:b3:a7:11:35:c6:
7d:aa:19:dd:9e:35:22:c2:7a:eb:b6:5c:ac:79:80:cc:69:26:
dc:79:a4:8a:b0:61:74:44:e2:c6:c3:78:00:3a:e6:74:7a:79:
a5:a7:d9:bb:91:91:fb:56:4d:3a:a2:15:da:66:d0:c0:54:de:
03:ee:b4:48:c1:ef:e5:9f:40:d2:1b:d8:85:98:33:48:6e:14:
0e:64:ce:39:da:8a:8c:95:35:fa:18:0e:4c:2d:db:60:19:9a:
09:36:87:1e:a4:f4:7d:64:dd:3c:62:38:59:34:0a:89:5b:36:
74:59:f6:da:27:ec:e9:dc:f0:8a:d9:c7:01:73:ab:fd:f8:ee:
46:88:98:65:eb:16:94:e0:91:20:db:d6:0e:1a:e3:56:c6:4b:
c8:2a:51:f7:e0:78:e3:1b:24:b8:01:93:a4:01:b4:06:ee:d9:
9c:05:ce:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:44:06 2025 by rpki-client