Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: q2G3ODuRYMgt4XvCgJNT1kZHneAWCQpaXiLgdzP+qqc=
Subject key identifier: EE:02:D6:48:53:86:80:14:8E:EA:20:D4:19:D5:22:2F:55:1C:62:F5
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 0197B74514D7F46E523286B1D2CA551C60D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1302
Signing time: Sat 28 Jun 2025 16:00:47 +0000
Manifest this update: Sat 28 Jun 2025 16:00:47 +0000
Manifest next update: Sun 29 Jun 2025 16:00:47 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: TKtez3TAZSDdeInHTjlmMtZ2tv8NxJ7Eo3hjTRwM1TM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:14:d7:f4:6e:52:32:86:b1:d2:ca:55:1c:60:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Jun 28 16:00:47 2025 GMT
Not After : Jun 29 16:00:47 2025 GMT
Subject: CN=ee02d648538680148eea20d419d5222f551c62f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:3e:ca:7c:ec:d2:ec:ee:6c:8d:18:e2:42:
05:31:3f:32:af:b0:3e:15:97:05:93:c3:a2:0d:66:
4e:06:e4:e7:7b:7e:62:e7:be:e3:35:f4:ed:62:1d:
5d:0f:2f:21:01:45:77:b9:f9:12:56:1c:d8:93:8b:
8f:5b:a0:db:0d:06:e4:ab:89:46:6b:6a:06:d1:18:
4a:33:5c:7a:98:37:44:25:ef:40:91:e6:bd:30:2f:
f9:87:66:03:0a:da:7d:6a:79:6d:61:c9:13:3d:2e:
7c:e0:59:ad:e9:ac:15:c8:66:d9:de:b3:80:e2:d6:
c4:15:92:6b:62:67:73:89:3a:f9:37:7b:da:05:7a:
da:83:7c:c1:34:cf:af:43:07:db:7e:3c:76:a0:30:
0c:14:c4:9f:78:1d:cd:04:7e:a7:58:e3:60:22:0e:
42:05:21:59:a9:a1:4b:63:49:ef:e5:4d:87:03:43:
35:8e:12:ec:c8:fe:f3:b1:d0:98:5c:e0:c0:00:c0:
69:d8:ef:35:e0:00:08:9f:a0:55:d4:94:23:65:a3:
1c:03:11:32:e6:6e:5e:26:28:f0:c4:d4:4f:a8:60:
96:07:b2:e1:22:69:ca:77:c0:49:d8:29:0f:20:3a:
d6:64:3b:8c:07:e9:ff:e4:db:80:db:87:95:2d:ef:
4c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:02:D6:48:53:86:80:14:8E:EA:20:D4:19:D5:22:2F:55:1C:62:F5
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:4f:74:06:2e:47:7e:66:93:ef:d3:fc:9a:6e:2b:33:c0:49:
86:d0:d6:be:03:14:b0:37:be:6e:ed:0b:c1:e9:78:2d:7d:27:
69:1c:fa:bb:d6:83:01:62:6c:e9:ad:ad:b1:10:ad:d5:e0:ee:
76:ad:d1:4c:02:ba:5f:39:be:6a:71:cb:fd:2f:4f:d1:3c:44:
c4:76:38:a3:59:19:fa:b7:41:8a:76:23:78:9b:b1:26:c6:18:
e3:f4:3c:98:b2:9c:10:65:3d:5d:67:e3:8b:b2:88:b6:26:54:
a9:3a:27:63:a0:0f:d8:c3:b1:22:ae:45:38:6f:a3:e6:ae:9d:
a7:24:ec:53:e1:42:bf:a6:b9:87:4a:c6:bd:a8:9b:9e:d1:58:
04:ff:b4:dd:6f:66:ec:49:ee:d1:7d:2d:89:ae:5a:23:20:4e:
64:82:da:0a:ac:e7:c3:27:5a:75:80:7d:49:20:9b:d5:d4:1b:
bd:8a:91:fa:67:1d:84:1d:49:ce:6f:5c:54:ec:b3:9e:26:26:
bc:2e:eb:04:ac:b2:f9:66:e3:6a:c9:f4:cf:48:2a:31:78:0c:
68:26:90:c1:d0:c0:1f:50:01:64:14:cf:ac:0c:ea:92:3b:c9:
d3:45:6a:d9:e4:c2:27:27:0a:71:0e:6b:f6:f7:8c:0b:c3:37:
07:98:09:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:26:46 2025 by rpki-client