Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: GfzRs5FnQrJuyQpegUZWWTDmBtPn3KAkWj5pLavmgCY=
Subject key identifier: D7:13:23:1E:E4:61:01:85:71:34:53:39:51:11:FD:08:9C:25:19:F9
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 0198D583DB28EC0C706C9E04EAF8050975C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0A0A
Signing time: Sat 23 Aug 2025 06:00:44 +0000
Manifest this update: Sat 23 Aug 2025 06:00:44 +0000
Manifest next update: Sun 24 Aug 2025 06:00:44 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: HTyBP1xIWYHNl9omEie6e2TrHuyipDm7VSYHDLkN4EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:db:28:ec:0c:70:6c:9e:04:ea:f8:05:09:75:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Aug 23 06:00:44 2025 GMT
Not After : Aug 24 06:00:44 2025 GMT
Subject: CN=d713231ee4610185713453395111fd089c2519f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:63:b3:15:a5:f8:f6:6d:dc:04:e1:48:e3:d8:
85:e8:92:71:e8:e3:c9:9c:d7:bb:13:f1:c4:c9:c1:
74:c8:bd:67:f6:d8:a6:17:d6:8d:cd:c6:6d:dc:04:
ca:dc:ad:78:a5:e1:bf:d1:7b:af:7a:5e:a7:ff:9e:
38:16:b6:44:4d:4d:7c:c3:3f:30:ad:a7:a7:02:e2:
ad:3d:98:26:47:19:48:66:02:e5:35:72:25:20:71:
2d:33:02:5c:81:2a:91:00:30:cd:43:14:65:ce:8e:
e1:62:77:01:41:b7:9d:b5:f6:9e:d8:49:ff:9f:8a:
02:89:0a:d2:db:a0:87:3b:ab:5c:84:b2:ec:78:19:
bb:ba:1f:62:ec:c4:58:a6:cb:66:19:31:93:a6:9f:
22:6f:94:c9:ed:53:e9:c1:e8:f6:7f:81:83:99:94:
b6:0a:99:fc:fe:2b:d1:0f:91:2f:eb:ea:ba:7d:83:
df:f1:c5:a9:fc:55:ac:6f:c1:4f:e0:ea:70:b5:a2:
ae:69:26:9f:37:f9:52:f5:7c:2d:87:d2:16:f5:1f:
dc:31:3c:7b:3b:15:43:48:f0:6f:e4:ee:6a:f1:ba:
45:b0:23:97:5b:dc:b2:a3:21:4b:ad:16:d2:62:d6:
90:54:38:3c:5b:6d:49:f9:23:a6:b9:99:3c:de:31:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:13:23:1E:E4:61:01:85:71:34:53:39:51:11:FD:08:9C:25:19:F9
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:9f:a9:78:0b:55:ea:c0:82:af:76:43:e0:bf:dd:2c:52:60:
bb:02:55:aa:0b:1c:8a:17:d5:90:8b:21:09:e2:19:5e:56:87:
82:e6:78:47:7f:f5:71:8f:80:dd:f2:2c:de:2f:c4:ed:ce:ec:
14:cc:e3:9e:a8:38:32:a7:59:25:26:dd:48:99:62:70:98:90:
4f:e0:91:91:a6:bf:6d:23:c3:84:3b:e9:88:af:a4:40:07:97:
68:07:6c:bd:8d:7e:a5:82:cd:01:52:07:94:69:c8:d0:e6:6c:
f8:ff:86:e6:d3:62:94:77:b9:39:2e:55:d7:86:04:f4:7e:c7:
50:d7:92:b9:f6:32:ec:5e:20:4e:f2:f4:38:8a:fc:f1:5c:59:
63:75:e8:db:3e:44:23:88:5e:82:b6:31:b4:06:ae:0b:8e:15:
e6:74:cc:b2:5a:08:ed:9c:b9:b6:65:18:60:93:e2:60:75:23:
80:a0:fe:5d:df:c3:14:61:0f:62:b7:d4:00:ba:57:aa:1f:e1:
87:c7:71:62:58:6b:44:5e:ae:30:7e:a3:09:bc:92:dd:c1:2b:
59:43:61:a2:13:5a:a9:b0:0f:10:40:bc:5f:8b:d6:40:58:50:
0b:cb:78:92:1b:18:8b:18:ef:f6:02:76:2c:96:85:a2:59:05:
36:09:aa:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:51 2025 by rpki-client