Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: oUzGgWW3h1FuuPORqcK+gDUb2l3uv9RsCHntFcxLRVg=
Subject key identifier: 4C:69:AA:8B:D0:09:30:72:B0:C6:D5:78:BC:98:0F:5D:EA:46:83:90
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0197B7EA73913A2AD8DF5160207934428500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 15C4
Signing time: Sat 28 Jun 2025 19:01:24 +0000
Manifest this update: Sat 28 Jun 2025 19:01:24 +0000
Manifest next update: Sun 29 Jun 2025 19:01:24 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: HhWCRX0QG0fKonaqkg67svdGHdvcJFlEOSdLvHZWS64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:73:91:3a:2a:d8:df:51:60:20:79:34:42:85:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Jun 28 19:01:24 2025 GMT
Not After : Jun 29 19:01:24 2025 GMT
Subject: CN=4c69aa8bd0093072b0c6d578bc980f5dea468390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:92:0e:1c:4f:5c:38:c6:c4:a5:28:05:ed:3f:
e1:dc:e7:60:13:09:9d:a0:91:23:ea:88:7b:27:ef:
47:08:8f:9a:17:e3:85:6c:f9:1f:68:27:03:65:19:
0b:90:44:81:84:db:b5:35:22:33:3a:9d:3b:3d:7e:
a1:d4:74:f0:b7:2d:8e:a3:41:ae:47:84:83:51:bf:
85:7a:1c:49:10:f3:5f:8f:db:fa:92:b3:42:dd:8b:
cc:95:08:65:10:54:d1:62:b4:c6:6c:fe:7d:26:7b:
11:c7:5d:ca:0a:c0:07:9a:d9:95:f1:6d:5e:aa:18:
68:72:d8:62:8f:da:d4:ff:a2:e7:d7:7a:ab:3f:19:
26:a7:79:40:29:6f:07:d3:bf:ca:2e:0a:99:26:bc:
4d:21:fd:b3:84:19:ba:2a:ad:d9:3d:fb:fc:58:30:
a0:8b:57:d4:6b:44:59:b8:82:65:fe:dd:40:94:aa:
50:48:4d:cf:11:7e:80:06:17:47:90:7f:46:10:04:
d8:55:e9:62:b5:53:5b:d5:eb:b0:f8:7f:9a:87:c9:
05:bc:78:f6:e9:08:d4:4a:83:ce:60:5f:8a:5b:4a:
5d:e9:4a:eb:2a:79:8a:7f:b4:a1:61:5f:4f:05:9b:
3c:b8:c3:e5:18:4c:29:d9:a0:52:02:77:bb:79:8b:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:69:AA:8B:D0:09:30:72:B0:C6:D5:78:BC:98:0F:5D:EA:46:83:90
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:36:33:8f:c6:33:c1:dd:02:7b:2b:3a:76:73:d6:cb:c2:02:
49:96:70:7d:d8:25:80:de:d1:59:dc:a4:b4:7b:69:bd:ba:27:
f1:9b:3c:04:73:20:e8:50:ff:49:35:03:96:3f:b8:a2:41:bd:
8d:34:dc:a2:b9:37:ba:16:0d:bc:31:03:3c:01:2d:c2:4e:51:
c4:fd:b4:d6:24:5d:90:aa:25:a8:3c:52:37:21:38:0a:a6:66:
d6:a6:7e:05:f3:b1:d2:58:0d:ee:a9:f0:62:bf:93:62:90:53:
7f:a6:ed:0b:f3:db:33:e3:16:37:47:8b:85:99:08:bd:04:f0:
3b:18:77:f1:cf:97:2b:56:dc:3b:ba:01:2c:30:fd:9a:7a:39:
63:40:3d:60:c5:80:6a:31:b1:03:2b:d7:58:0e:47:03:b3:0b:
1d:3a:fd:85:88:30:4a:6e:a8:96:82:b1:59:3f:84:89:7d:03:
0b:c4:f3:e6:c7:c2:10:c6:b1:47:6b:b2:e6:e9:a4:6c:14:a6:
a2:7f:c7:8e:a3:4b:5b:ba:3c:2c:98:50:d5:09:0c:d8:5b:8e:
d9:64:e6:62:ab:cc:fe:eb:ce:bc:1c:78:ff:6c:66:e0:b5:18:
c8:b1:13:a5:43:e7:d5:e5:67:3c:db:e0:fe:06:37:9b:aa:15:
b5:4c:f4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:11:38 2025 by rpki-client