Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json)
Hash identifier: gwGtP+Ao6YrBURgpHP8mfp7IKVR6rYsEjyzRrbWLNik=
Subject key identifier: C9:D3:59:51:1F:DC:F2:E6:FC:AF:44:AF:41:EC:FE:85:94:E7:C0:CA
Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Certificate serial: 0197B7B2FB06C01E985B64A96611D8B36290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 18:00:49 +0000
Manifest this update: Sat 28 Jun 2025 18:00:49 +0000
Manifest next update: Sun 29 Jun 2025 18:00:49 +0000
Files and hashes: 1: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: vcBB/bjrZY5mCArG9jfc1Cr0suzh3D5qAtjVDveEoeE=)
2: Z-7u2MA1CjZD5hYP8TfU-VSZNR8.roa (hash: /80xhWNAq5Vxx5IxhDuQbH3UW7oLWMSaFXrTwbB6FYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:fb:06:c0:1e:98:5b:64:a9:66:11:d8:b3:62:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Validity
Not Before: Jun 28 18:00:49 2025 GMT
Not After : Jun 29 18:00:49 2025 GMT
Subject: CN=c9d359511fdcf2e6fcaf44af41ecfe8594e7c0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:14:36:ee:1f:30:ba:ab:fd:5a:ab:a2:0b:aa:
e8:9a:e0:d6:2e:ed:40:ad:ff:c6:cd:b2:32:6c:ad:
67:1f:a3:44:0a:d0:b2:22:12:ca:a2:64:79:90:93:
d2:49:c4:c1:f5:1d:aa:03:ac:42:0d:9a:f3:cc:87:
51:46:ed:a9:4d:30:f5:59:80:3d:dd:ed:68:7b:ba:
9e:1d:f3:70:f6:b6:5a:55:22:f8:0c:e3:15:de:67:
fd:27:5c:c8:a1:83:37:c4:40:bd:2b:08:90:d9:d7:
cc:b0:f3:d0:f3:d5:46:1e:59:d9:9c:98:c8:40:6a:
42:ab:14:70:65:43:e2:a6:d4:b3:5f:c8:b5:4b:67:
ab:1f:10:32:a6:87:da:21:ea:4c:d1:79:68:83:32:
0a:b1:2b:2f:ac:08:44:e8:ae:44:5c:b0:fe:7b:ba:
2b:81:c5:93:7e:90:cb:1a:4a:ba:a1:e0:f3:4e:51:
d2:28:37:1f:41:70:48:69:67:af:3c:30:e4:79:04:
41:cc:e2:3f:44:5f:65:6c:8a:7f:ef:b6:c6:db:02:
ba:33:fa:7e:4d:45:43:51:b5:55:56:66:0c:3b:28:
16:30:b7:15:29:22:86:38:17:9f:05:79:9a:dd:35:
26:0d:91:f0:88:b6:fb:f3:19:1c:61:b1:8b:cf:b6:
7c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D3:59:51:1F:DC:F2:E6:FC:AF:44:AF:41:EC:FE:85:94:E7:C0:CA
X509v3 Authority Key Identifier:
keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:81:c0:3f:d1:a9:da:4b:ea:61:bc:a9:26:70:17:6c:f4:86:
19:e3:45:3a:60:ae:96:3b:01:ca:8f:b0:30:8e:e5:a9:77:79:
5b:fd:23:d1:04:ea:fc:b8:b2:23:6a:18:35:4d:ed:cd:89:2d:
13:2e:a3:66:2a:84:f6:81:89:42:e0:0b:46:b3:c1:50:a1:7b:
4b:74:da:69:e6:7f:c3:8c:9c:a5:03:c2:1d:a8:bd:da:17:81:
1a:e0:44:d4:03:63:e6:88:85:33:09:a6:3a:74:1d:c5:9b:48:
0c:73:37:00:4f:bd:45:16:e8:08:a1:7b:f0:0f:cc:18:21:41:
79:15:36:fa:46:7c:08:ee:7b:63:be:ce:bf:98:bf:5b:e3:05:
cf:29:49:df:35:01:b3:0a:8b:03:66:c6:02:cc:08:cf:0e:df:
a0:07:0c:00:f7:34:5f:50:49:e5:91:91:69:db:0c:f7:94:31:
25:d7:d1:53:4f:ef:a3:4e:5f:21:d3:76:f0:b8:55:a2:9a:3c:
ed:ac:93:af:e9:22:93:d8:00:92:eb:bb:bc:e9:68:04:70:10:
1c:c8:fb:d5:0b:17:73:a6:03:01:97:2d:61:26:8a:d3:8b:5d:
24:7c:cf:d2:00:33:15:27:95:c3:67:b6:f2:c5:ad:7e:db:eb:
70:94:57:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:49 2025 by rpki-client