Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: dcTN5n9faVVt62vVkFRbAB66oOoUBCPbGgCoWRsTHKI=
Subject key identifier: D2:B8:CC:D4:4F:9C:97:82:A9:AC:79:5E:77:B6:26:9C:64:6C:4C:4D
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 0198D69867E060EFC3B2112EAA0A73840E78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0DCF
Signing time: Sat 23 Aug 2025 11:02:48 +0000
Manifest this update: Sat 23 Aug 2025 11:02:48 +0000
Manifest next update: Sun 24 Aug 2025 11:02:48 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: Zpusta49hHLoeHBlQceZDuOc30nTl2bvoW99Z2mrEKA=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:67:e0:60:ef:c3:b2:11:2e:aa:0a:73:84:0e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Aug 23 11:02:48 2025 GMT
Not After : Aug 24 11:02:48 2025 GMT
Subject: CN=d2b8ccd44f9c9782a9ac795e77b6269c646c4c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1f:55:d2:d3:83:ab:96:97:b8:a5:ed:a4:57:
f3:22:02:d1:7c:af:10:eb:4e:d0:fc:d0:24:02:03:
2c:a2:2d:49:a5:5c:f9:35:0b:e8:68:f4:68:56:0f:
c5:02:ae:7c:2e:d0:0e:9a:ec:9b:8f:dd:28:8c:3f:
69:0f:c9:c1:1b:03:2f:57:76:79:89:45:12:1f:d3:
7a:4c:63:6d:07:d5:13:02:cf:1a:1e:29:60:3c:fe:
59:99:d9:13:38:43:a0:c2:c7:1e:a4:5e:2c:0b:5b:
20:28:4c:44:55:4b:e1:c3:8d:4f:26:b1:c7:c3:e9:
62:11:06:72:e1:95:13:b4:df:18:50:6a:45:50:ce:
6a:44:74:13:35:19:b1:1a:2f:7a:a8:c0:46:b7:93:
14:5e:7c:9c:21:95:f4:ad:67:a7:2d:36:27:8b:cb:
f4:ce:b6:02:48:cb:fb:a4:60:12:b6:33:9c:1b:5f:
82:d8:b9:17:15:1f:ac:82:ca:48:07:c1:25:98:26:
08:7d:dc:22:3b:da:ae:f1:c2:04:f5:13:9e:91:a6:
f2:cc:b4:5f:69:f6:4a:26:98:c8:1a:db:13:94:00:
c1:37:07:91:4e:c9:3b:ed:12:41:17:d8:6e:b7:04:
72:f8:a5:76:60:b5:e0:c6:14:ef:45:ca:b2:82:3d:
0c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B8:CC:D4:4F:9C:97:82:A9:AC:79:5E:77:B6:26:9C:64:6C:4C:4D
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:ca:c0:47:25:81:d4:35:2f:e4:3f:a3:0a:4b:05:32:0c:73:
1c:96:dd:3c:6e:e4:72:85:5c:b5:4f:b5:1e:8e:5b:cd:dc:47:
52:e7:d8:40:88:43:3a:58:cf:9e:ac:c2:6d:3f:3c:4e:ba:fc:
4f:9e:67:60:50:41:72:d2:a0:d5:0f:16:95:f5:a9:4d:60:fb:
37:26:a5:74:72:2a:c6:ca:d3:05:b9:27:08:24:6f:2c:71:24:
f8:31:25:61:9b:37:d4:6a:99:8f:da:19:18:7b:ca:24:35:f3:
cc:34:f6:bc:ff:85:96:cf:8c:d7:0b:df:a0:2e:a9:28:9f:8f:
22:a7:a9:2d:90:5b:1d:50:a7:fe:a4:b5:65:c2:cc:17:aa:a4:
e3:1d:6d:35:35:d3:a2:d4:d0:75:ef:fb:89:00:d0:5f:17:5b:
28:37:60:d6:29:0d:1e:4b:68:93:94:46:36:fa:a6:c8:a8:36:
81:3f:49:22:61:89:98:f2:bd:6c:d4:3c:0b:0b:92:bb:52:9b:
74:1a:09:44:5e:16:5a:4e:11:2a:9f:26:e3:93:ad:dd:b9:a9:
dd:28:2c:f3:99:bd:af:71:6d:25:82:90:3d:d5:c2:50:3b:81:
72:53:13:7d:77:fb:cf:d2:16:d3:18:aa:58:be:c7:34:7a:a2:
f1:69:fa:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:07:23 2025 by rpki-client