Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: 7JAxCaVh+Pc16wvHAoVixyL+lvFv6vfRLRFEQlgTzrI=
Subject key identifier: A9:32:3E:73:64:99:3F:A7:98:34:88:1C:07:F1:EB:04:11:03:69:01
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 0198D6600BB70EFD2A1FA404B10405A6C07E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 01F2
Signing time: Sat 23 Aug 2025 10:01:15 +0000
Manifest this update: Sat 23 Aug 2025 10:01:15 +0000
Manifest next update: Sun 24 Aug 2025 10:01:15 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: mmj1nsFaUSIX+FzfKwF+sH0A3bakFbTQFIMinIqZrXY=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:0b:b7:0e:fd:2a:1f:a4:04:b1:04:05:a6:c0:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Aug 23 10:01:15 2025 GMT
Not After : Aug 24 10:01:15 2025 GMT
Subject: CN=a9323e7364993fa79834881c07f1eb0411036901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a2:4f:61:61:15:dc:59:14:b7:fa:ef:61:be:
13:e6:6b:96:a1:e1:e9:f3:3f:82:44:fa:2f:ba:a2:
66:39:d7:0c:d0:13:18:95:cb:3d:e0:4d:f5:d7:47:
1d:92:e4:ee:40:6a:b1:35:99:21:45:46:40:0d:bf:
cb:3a:5c:27:36:7f:9e:10:09:ed:24:39:8f:fc:80:
d1:ce:35:8e:27:a3:ed:59:8a:0d:83:ab:c4:23:75:
84:f4:92:0a:b1:55:1b:98:1e:27:56:58:f3:80:4c:
fd:30:bf:0d:b9:0f:42:cc:4e:7e:75:be:e7:ad:79:
5e:f5:15:98:0c:8c:5f:b5:e8:a6:12:a4:7b:05:90:
fe:fd:16:f4:cc:a7:f0:75:46:98:eb:bf:1e:8f:b6:
44:d2:19:d9:5e:6e:3a:8b:23:0f:59:7b:6f:20:a9:
a3:68:77:08:40:9d:ce:40:8b:cc:4b:f8:f0:f7:45:
94:ec:2f:46:16:fa:ed:1c:50:36:af:df:1d:32:1f:
6a:86:68:19:cd:d5:4e:1d:27:31:0b:44:e0:61:3b:
45:4e:15:21:2d:0b:6b:28:3e:71:55:1b:01:1f:bc:
74:42:1f:76:80:da:c5:16:b3:02:d6:f7:c4:ce:22:
0d:2a:38:60:4a:7d:3b:47:1c:0b:4b:0f:b4:4c:7c:
75:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:32:3E:73:64:99:3F:A7:98:34:88:1C:07:F1:EB:04:11:03:69:01
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:ee:b8:3d:f4:aa:55:18:1c:51:77:af:8f:5e:d0:e2:d5:02:
54:38:47:8c:f3:8c:fc:f3:92:2d:ea:8e:2d:bb:72:5f:8e:2a:
0d:35:c9:d2:b0:9c:e5:36:0d:f5:d4:09:f3:ee:0f:95:09:86:
36:b5:65:ad:2f:13:b0:a0:14:da:86:9e:f6:26:51:56:2e:b0:
b9:52:54:34:d5:40:b6:f1:0c:23:ba:d1:0d:50:b9:39:33:16:
29:a2:1f:86:8a:2a:5e:47:41:08:3a:4a:aa:c4:19:4a:a7:6d:
2f:33:e0:aa:c7:05:87:b0:eb:f1:2f:ea:c9:0c:b9:86:d4:86:
9d:77:e1:96:42:5f:45:9c:d0:a4:ac:77:b3:db:2d:e6:2a:0a:
e1:e9:98:2a:50:ff:d9:3a:b0:d9:16:f7:35:93:24:a5:e7:4b:
69:b9:8c:7c:82:1e:22:48:8b:98:68:15:99:71:5e:66:d6:1a:
67:6b:85:82:d8:29:84:34:24:01:59:6a:dd:5a:54:c3:e7:8d:
0a:80:06:5c:35:93:34:96:ce:06:82:92:84:ef:97:7f:bf:68:
39:6e:cc:57:cf:49:87:29:cc:62:55:c2:d4:31:66:a4:c7:16:
31:7c:4b:2f:64:34:74:dd:f1:4c:d3:9a:77:9e:b8:a3:06:42:
60:0e:66:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:29:38 2025 by rpki-client