Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: 8XsYEPL9+dQ3R2tCFfJShI3oksHDC3erOTm9r42U+EE=
Subject key identifier: 80:FA:5A:A1:1F:0C:39:86:A5:BD:DD:71:95:D0:7E:61:16:FE:D6:93
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 0197B88EC491B9BA8BC87DFB4C500A817115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 015E
Signing time: Sat 28 Jun 2025 22:00:53 +0000
Manifest this update: Sat 28 Jun 2025 22:00:53 +0000
Manifest next update: Sun 29 Jun 2025 22:00:53 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: EvJLTtXWloxLvM58BN8kcQ3igJFW4HahUTzXoCajbQ0=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:c4:91:b9:ba:8b:c8:7d:fb:4c:50:0a:81:71:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Jun 28 22:00:53 2025 GMT
Not After : Jun 29 22:00:53 2025 GMT
Subject: CN=80fa5aa11f0c3986a5bddd7195d07e6116fed693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:85:dd:ad:0b:43:15:4a:23:90:cf:86:47:49:
a6:71:78:55:f5:36:53:c1:91:00:61:e8:c5:b8:c2:
b4:1a:5d:d1:ae:f0:be:02:78:d9:14:a5:0b:7b:e2:
c2:dc:53:dc:73:43:d5:0c:b4:ac:5f:b7:19:68:ea:
b7:b2:39:55:7b:f9:ea:d3:19:3d:4c:3e:fd:90:1d:
66:e3:97:25:2b:e7:13:ed:8a:0b:7d:25:98:2c:e3:
b3:59:c3:c9:1e:0d:31:aa:34:a6:8f:f1:ef:d8:da:
5f:d7:a0:1d:01:ba:ab:1f:c7:81:2f:42:e9:85:18:
4a:0e:ca:a9:9b:3d:bb:8a:2a:68:88:a6:85:6e:8b:
eb:80:eb:fd:9c:e6:42:93:67:47:92:2b:fd:07:d8:
3b:1b:78:2d:4b:0c:d7:f3:35:b6:54:4b:3c:bd:bb:
7c:f5:9e:ac:95:e1:96:43:a1:cd:8b:17:b1:18:47:
7b:0d:94:8c:76:c0:b2:18:69:9b:38:74:59:de:99:
ab:6d:1a:d9:f0:e5:20:41:ea:79:c4:9e:92:00:11:
27:ca:7b:6e:51:2d:c5:3a:b5:9f:ef:af:0d:fd:d5:
18:27:ff:8c:53:fd:33:cc:25:e5:8e:4c:4f:c2:68:
6b:db:95:17:e8:fe:71:d2:84:af:b5:53:87:03:b0:
f8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FA:5A:A1:1F:0C:39:86:A5:BD:DD:71:95:D0:7E:61:16:FE:D6:93
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:be:ba:85:61:61:c9:86:08:41:39:84:75:d7:ba:b5:47:a8:
0b:e4:b3:6b:c5:ea:e7:55:cb:ab:10:16:a2:da:67:1f:2a:cc:
1b:d9:a4:ac:e1:cb:5a:c9:af:78:d7:6a:a5:db:50:85:c3:78:
70:d4:cc:11:27:37:11:bf:42:3f:65:59:24:91:fa:c4:0b:b1:
ad:e7:33:75:ab:21:b0:92:2d:86:8f:8a:ab:9c:cd:48:38:5f:
3f:da:22:68:7e:3b:eb:45:1f:d1:46:0e:55:7c:8c:22:5f:85:
25:6b:16:51:d9:1f:73:14:0f:16:ca:29:f0:86:02:69:ff:dc:
d2:4b:48:5a:09:aa:4d:42:77:bd:59:8b:6d:55:e7:b8:42:29:
bf:f8:ba:14:28:19:6a:5c:1e:5a:57:11:eb:43:bb:d4:77:ae:
10:90:4c:69:e6:b0:9b:34:d7:ab:8f:f1:66:1e:35:e6:7d:a5:
6d:7e:4f:8e:d1:d4:90:d8:aa:63:e8:85:7b:0d:4c:90:63:6f:
a1:a4:70:e6:44:36:9d:8b:78:28:02:43:60:82:20:03:4c:b0:
ee:89:68:49:1f:79:90:91:3f:d5:98:ec:fe:4a:ba:55:ad:d4:
38:4a:58:09:5d:e7:d3:6f:bf:36:58:4b:f2:d2:7e:d1:4a:fd:
97:aa:68:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:18:55 2025 by rpki-client