Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json)
Hash identifier: COUIEXwKRxTMlQD2O98g3g9FN5TAV9RWn2lHDsrxhV4=
Subject key identifier: D7:27:4F:86:15:8A:0F:34:D6:B4:60:44:9B:8A:FF:16:C8:44:D2:32
Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Certificate serial: 0198D65F1CC11091B142F654E6028AA54E0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
Manifest number: 119B
Signing time: Sat 23 Aug 2025 10:00:14 +0000
Manifest this update: Sat 23 Aug 2025 10:00:14 +0000
Manifest next update: Sun 24 Aug 2025 10:00:14 +0000
Files and hashes: 1: DLIEmy-lWsyrr-sd36twYuEevio.roa (hash: aUcurTUu0ie7YyEr+ll+2DTq3WZheC8vTveKU2r56C8=)
2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: UX2rRTVwaXTZ4xKLF6M5Imvdpt3FcW4Iw1rrWytZ1zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:1c:c1:10:91:b1:42:f6:54:e6:02:8a:a5:4e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Validity
Not Before: Aug 23 10:00:14 2025 GMT
Not After : Aug 24 10:00:14 2025 GMT
Subject: CN=d7274f86158a0f34d6b460449b8aff16c844d232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:59:64:22:db:4a:6a:98:e9:e7:a5:19:0d:e1:
68:de:41:1f:e3:21:e5:87:98:7f:74:63:57:2f:09:
ba:7c:3a:41:a1:3d:f1:38:a1:5b:13:76:4f:5e:7b:
ad:5e:64:11:7d:29:d2:f9:61:5a:3c:9f:b3:79:83:
27:e9:40:91:45:8e:3a:2f:47:99:4b:eb:87:cd:03:
b9:d6:26:30:d0:11:40:c5:18:d7:ea:82:01:41:a7:
d9:b4:7c:43:39:cb:88:59:d7:a1:b0:c1:b9:0e:49:
f3:11:95:b0:1f:bc:a1:ce:79:b7:69:94:5e:db:49:
18:9e:ea:8e:99:23:94:bb:b7:69:61:32:02:f1:3b:
9b:65:f7:be:c7:cf:00:c5:57:f1:a6:e0:88:90:c2:
1d:65:04:e3:fa:60:ef:88:5c:c3:6d:11:45:7e:4c:
cc:ec:26:09:51:e8:84:b6:2e:ca:2b:1f:34:bb:6e:
37:fc:b8:e7:f2:c5:c4:70:4b:72:ef:75:a1:1f:a7:
bf:83:56:5e:ba:04:43:61:8c:a1:f8:3c:c2:31:72:
63:3f:cb:87:9f:ba:e3:d4:65:b3:67:4d:f4:f3:c0:
ad:05:7a:81:6f:ee:2e:65:ee:8e:23:4f:b8:59:a9:
08:0e:3b:a5:f7:5f:e0:16:91:2f:13:3b:e6:ab:7c:
5c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:27:4F:86:15:8A:0F:34:D6:B4:60:44:9B:8A:FF:16:C8:44:D2:32
X509v3 Authority Key Identifier:
keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f8:5c:94:de:52:23:0e:67:5f:f0:fb:d9:7a:20:0b:d1:7a:
dd:e9:2b:75:d0:4d:22:2f:5c:e7:4e:31:60:63:62:56:5f:4c:
cc:75:50:ab:95:1a:4a:01:1c:49:e1:db:93:b3:35:10:68:8e:
b3:42:31:f5:54:1b:40:ea:e0:85:5e:c2:b2:dd:c5:6b:32:ad:
e1:f1:bb:52:ee:7d:f7:ca:ff:1f:53:59:7d:5d:23:6b:9b:76:
03:84:c2:74:8e:cf:69:ba:a9:fc:8c:b3:f5:66:ec:f1:fc:f5:
a9:37:61:ba:f3:4d:ad:77:b7:99:aa:a1:ee:0d:0a:6f:2e:78:
3c:22:4b:a8:ba:6a:f3:cd:d8:7a:24:7b:c5:37:b1:c6:90:1c:
27:a0:c8:3a:e7:3d:2c:54:36:f3:4b:10:85:1f:e7:8b:68:01:
89:4f:ea:8c:12:19:9a:1a:7b:fb:55:7c:e3:ae:af:b0:ac:4d:
b8:7c:7f:8d:6f:2e:20:3a:9e:48:4d:0f:02:35:f2:6e:22:4c:
94:86:4d:8e:60:99:54:4e:01:fe:1d:85:f2:65:61:c7:f2:9d:
d4:08:6c:79:6f:97:d0:4a:e7:48:8a:13:fe:18:68:98:f6:15:
2c:b5:0a:cc:ae:5f:13:4c:0a:fd:ad:7b:bc:76:87:ab:de:90:
30:d4:f2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:49 2025 by rpki-client