Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: cS20EFI7YoaYthjhJM/YpReaypIcV5uuQhVWoEYTDyk=
Subject key identifier: 62:7E:7E:29:13:8B:E7:1E:68:79:A2:F2:30:7E:5C:52:9E:05:6C:30
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0197B88F61040A0237E98271A831EBD58BA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 10B5
Signing time: Sat 28 Jun 2025 22:01:33 +0000
Manifest this update: Sat 28 Jun 2025 22:01:33 +0000
Manifest next update: Sun 29 Jun 2025 22:01:33 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: TZVM3pA2mAmBl6ezoHj0xLeiuXQNWcTCUibMSu7l3m4=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:61:04:0a:02:37:e9:82:71:a8:31:eb:d5:8b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jun 28 22:01:33 2025 GMT
Not After : Jun 29 22:01:33 2025 GMT
Subject: CN=627e7e29138be71e6879a2f2307e5c529e056c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9d:0a:5f:1f:1f:d0:c1:7c:50:8a:69:12:a1:
5e:7c:b8:bd:e6:28:1d:75:8c:a8:39:d4:f5:b9:03:
46:59:e0:b1:64:b7:28:e5:70:ca:13:aa:c2:26:02:
a4:bd:21:96:bf:01:c8:67:77:94:75:bf:bb:91:3e:
8c:25:c2:69:a3:be:11:91:5a:77:7f:28:b0:83:76:
ec:55:30:af:bd:d4:93:5f:2d:b6:8e:15:c9:b7:c3:
bf:43:e0:97:5d:ca:9d:9b:0a:19:9a:51:a1:ba:0b:
b8:92:ec:91:74:57:1f:29:ec:32:51:f2:db:8b:41:
2a:b7:69:17:96:67:e1:01:2c:4d:ed:b0:d4:6c:d1:
bb:8f:1f:30:0a:df:24:fd:ed:62:f3:7d:20:b1:7c:
82:af:76:53:44:c8:8f:8f:5b:1e:2e:de:15:d6:9f:
63:73:19:02:50:26:af:e6:79:a9:4a:b0:30:43:2a:
fa:fb:03:04:61:92:6f:b4:51:bd:bc:98:22:80:df:
da:f6:22:0a:21:61:60:bf:b8:8c:c6:22:e5:80:56:
71:a4:c4:bb:2d:37:36:00:7b:cd:63:44:3c:59:03:
af:f4:6a:23:fe:cb:08:20:23:fb:ea:a4:a4:db:0c:
7f:a2:c2:f2:63:cc:f3:b2:e3:fc:b5:c2:e8:a5:07:
5f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7E:7E:29:13:8B:E7:1E:68:79:A2:F2:30:7E:5C:52:9E:05:6C:30
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:d4:d0:39:b7:4a:1e:ca:4a:8c:b3:8a:ea:42:29:6b:eb:db:
fb:3d:d4:1d:ed:aa:80:98:29:f2:a6:a6:9d:38:7f:8e:26:72:
bf:0f:1c:46:a5:dc:db:6f:db:7d:89:bc:53:db:c8:54:c4:7f:
43:07:a6:05:59:cf:72:8b:09:de:32:73:6a:6d:24:26:7a:75:
7b:f4:a1:a1:41:df:c0:13:fa:c2:0a:91:51:d9:1a:45:65:42:
a8:f4:89:6b:98:25:5f:90:4e:ff:30:f5:b5:34:7a:e4:fc:13:
42:31:a6:67:a6:24:f0:df:eb:c4:6a:53:60:e2:71:25:14:83:
58:3e:0c:bf:60:5a:63:eb:5f:30:9b:4d:83:d2:46:e7:cd:26:
5a:fa:d5:d1:73:4a:d5:10:fb:2a:48:30:06:c8:25:2d:ca:bc:
93:22:c1:1d:e4:f6:51:62:75:76:ba:70:03:24:77:5e:9c:08:
9f:a5:08:d4:d3:19:14:fd:52:62:31:b0:a7:44:e8:d0:2f:50:
f5:2c:66:e7:b5:b0:02:9a:3f:52:e4:6f:94:98:d1:f3:0b:6a:
5e:e2:d4:cf:df:c4:bb:d6:6a:e6:a4:32:00:b1:06:59:d3:3c:
0f:75:94:cc:6f:09:c6:39:d2:66:17:dc:d9:b1:f4:d9:73:ad:
59:e0:59:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:00 2025 by rpki-client