Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: QKAihpQTyucE2xNrHAvNzYRq/pPAz40/1+wIymzSWzc=
Subject key identifier: B6:DB:A5:4F:46:BA:81:5D:83:EB:22:A4:E3:AA:33:40:3B:B6:20:EA
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0198D8512A2750DA9DB0EF8FEEB3C39CA592
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 114A
Signing time: Sat 23 Aug 2025 19:04:14 +0000
Manifest this update: Sat 23 Aug 2025 19:04:14 +0000
Manifest next update: Sun 24 Aug 2025 19:04:14 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: seNv+sKOzpe614efQqnbTa53limT+ohfNivbmiUS5sU=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:51:2a:27:50:da:9d:b0:ef:8f:ee:b3:c3:9c:a5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Aug 23 19:04:14 2025 GMT
Not After : Aug 24 19:04:14 2025 GMT
Subject: CN=b6dba54f46ba815d83eb22a4e3aa33403bb620ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5f:e0:ed:49:ef:6c:2c:71:33:7e:68:23:d8:
8c:5b:0c:3c:f1:a8:e8:3a:5a:63:ad:10:b1:99:c1:
7e:24:f5:72:be:7e:bc:59:c1:57:74:b1:92:dd:65:
e1:50:c6:0f:2c:31:d8:1a:7a:3e:f8:e8:73:85:77:
c0:3f:09:c6:b0:60:f9:1f:75:85:2a:d5:12:61:66:
20:4e:27:da:6f:08:03:5c:50:6e:d3:19:67:b1:c8:
a3:df:df:da:8e:91:a6:e6:d8:cd:9e:8d:41:31:83:
a1:13:9b:d2:bc:e7:52:1e:65:37:09:bc:3d:f0:7d:
15:bd:4d:d4:e0:4d:58:e6:04:69:7c:86:ef:e7:66:
95:46:df:14:84:a1:d8:cd:92:b2:c9:35:35:ca:25:
44:8e:cc:c1:31:68:2c:04:a2:c7:3b:7d:1f:67:c6:
2f:65:7b:fa:08:72:59:5f:d7:22:74:15:fe:19:6f:
fc:f2:19:09:41:49:49:11:a6:c5:41:51:ac:4d:58:
55:3f:50:aa:66:ed:b0:00:a8:48:8b:e5:71:0d:7f:
4b:08:12:60:9c:9c:f0:c0:16:19:d1:8b:a2:89:71:
61:37:4d:54:96:51:45:ef:e0:55:fe:61:cb:9b:2a:
f5:6b:65:61:5e:fb:c6:94:1d:e9:d5:0f:a8:d4:2d:
2b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DB:A5:4F:46:BA:81:5D:83:EB:22:A4:E3:AA:33:40:3B:B6:20:EA
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:89:09:72:e7:5b:38:15:a1:a0:e9:a0:93:d8:2b:57:02:c3:
14:14:32:ab:b1:8e:ef:0a:8a:74:a6:83:7b:e8:67:ee:4d:46:
b5:fe:9d:30:1d:5a:1e:70:e5:70:ab:ff:c5:40:94:3b:0a:3a:
52:f4:c6:28:c2:ba:6f:62:0e:23:8b:9f:2c:1d:e0:8d:3c:e0:
8c:ac:9f:ac:93:66:5f:c6:27:ae:b2:ca:16:f7:ba:a4:41:fb:
39:ad:e3:cc:78:66:7f:5e:45:83:18:b7:32:03:66:99:fc:3f:
4e:21:f5:8d:06:31:d0:58:4b:c9:7c:08:01:0e:d2:0e:1f:26:
46:30:ea:07:fb:2e:dc:62:b9:d5:4a:c2:28:19:64:5c:07:f0:
82:e9:6d:51:90:16:67:1a:d8:dc:14:2f:a7:d4:fe:0e:bc:61:
cb:75:c9:71:1c:76:af:56:40:fb:a9:1f:38:ed:0b:b5:4c:ca:
6c:4d:1b:03:28:f6:c8:8b:55:2e:cb:e6:ad:9b:98:da:a7:66:
53:70:d0:e8:69:e7:6d:1c:b1:72:36:c2:6b:e0:d1:5c:6f:15:
42:e0:13:1c:76:4c:2c:b9:11:89:0f:b8:d3:af:71:68:42:12:
98:8e:29:db:9f:0e:9d:a0:e7:21:94:32:d0:7c:1b:07:38:b1:
17:95:4f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:06:30 2025 by rpki-client