Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: 9p5PgPpqg3cR1eGngg2FNVkka16ISSWF+LBsE/9e2QI=
Subject key identifier: BE:0F:15:19:6C:42:A5:B4:59:86:90:FA:5B:1A:FA:38:95:94:79:46
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 0197B7B330C5474ADB244E50923CE1AD29D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0976
Signing time: Sat 28 Jun 2025 18:01:03 +0000
Manifest this update: Sat 28 Jun 2025 18:01:03 +0000
Manifest next update: Sun 29 Jun 2025 18:01:03 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: fNgvWPmc2q306aq29BmKBaPA+bdlE2+tj1f4zU/vPtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:30:c5:47:4a:db:24:4e:50:92:3c:e1:ad:29:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Jun 28 18:01:03 2025 GMT
Not After : Jun 29 18:01:03 2025 GMT
Subject: CN=be0f15196c42a5b4598690fa5b1afa3895947946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:54:08:78:68:2d:89:58:47:d6:01:1c:25:e6:
92:a4:72:f9:3b:95:f6:8b:a1:af:c8:41:b0:e9:fb:
0c:29:bd:43:b5:1a:7c:2a:9e:ed:68:32:e4:34:87:
f3:5a:74:4c:b1:70:78:fa:b9:0e:84:d4:0b:54:59:
cd:36:48:24:a6:93:27:38:64:5d:5c:49:2d:fb:cc:
b5:83:34:9f:85:9e:08:8b:bd:ae:c9:46:68:74:c9:
4c:c9:27:6e:ff:d7:1b:83:31:f2:ec:d0:fb:50:c8:
8a:dd:5f:05:b1:47:75:7e:ab:a4:6a:49:25:61:e8:
b9:16:a5:fb:9c:c0:9b:d6:df:28:95:76:75:fb:c2:
d4:88:b6:91:71:67:f7:af:99:21:fb:09:c2:cb:16:
68:71:65:f6:7e:77:fb:dd:8e:42:82:ab:6f:00:b2:
a3:6d:ca:b4:4f:8c:a4:95:ab:a1:77:e5:d2:9a:94:
05:6f:c2:fd:a9:41:ef:bb:20:3b:fb:09:b1:44:7c:
cc:7b:33:78:be:67:ab:02:2d:13:1a:3c:cb:8b:85:
67:4b:49:7f:b5:21:3a:a8:e9:92:f2:d9:ba:6b:4c:
52:fe:5b:1b:4d:fc:2c:7a:98:2d:8d:07:6b:1b:49:
0f:ce:41:f2:ac:1d:4b:93:04:26:38:05:0e:8c:c5:
4f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0F:15:19:6C:42:A5:B4:59:86:90:FA:5B:1A:FA:38:95:94:79:46
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:25:a6:20:38:0b:c9:15:86:47:b5:5a:60:b6:97:5b:1a:ed:
9e:ac:a2:5f:76:39:ed:12:18:b1:5c:45:c5:9d:21:ae:42:89:
f4:be:3f:2f:39:a4:a6:41:3e:2e:dc:5a:ec:e6:19:4d:64:fc:
08:68:dd:e8:ea:47:27:36:33:7f:fc:c8:55:25:9c:8b:15:f4:
97:0b:0a:0f:8e:e2:6c:b4:79:23:9d:b2:c5:25:10:84:1e:ee:
20:37:fd:3d:5d:17:6f:58:fa:33:2f:d1:78:38:94:8b:a1:87:
45:fe:a4:4b:95:5d:fd:5d:02:6d:6d:95:93:8f:7a:59:40:9e:
38:12:1c:1e:85:03:a9:e6:03:d4:7b:3d:b7:60:20:28:46:96:
9a:e2:5d:67:43:e0:05:5c:a0:a0:cc:af:b9:bd:23:cb:88:da:
4e:66:7e:d0:cc:8d:ae:5b:4e:88:11:75:74:bd:59:ed:09:69:
be:5b:72:31:c2:f4:12:dd:4f:cf:70:33:b5:46:4e:c7:80:73:
da:e0:73:20:75:99:69:13:7f:42:66:be:17:ed:50:a4:00:36:
b3:a1:39:e5:53:ca:68:c8:fd:7f:b3:e6:ec:d1:fa:e4:7e:2e:
0b:74:57:73:81:35:5c:74:7d:50:7e:12:78:a6:62:2f:ab:f1:
7f:65:bc:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:27:14 2025 by rpki-client