Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
File: HhkRubtcij4eK4pRFl-KcaCSxo0.mft (raw, json)
Hash identifier: yDL+08vmhVXH5LM87YZZsvAypikXvkfpDHJw0HUza/I=
Subject key identifier: FC:F4:24:F3:1D:57:42:CF:08:87:96:4C:EA:4F:86:62:59:72:D0:B7
Authority key identifier: 1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
Certificate issuer: /CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Certificate serial: 0197B7EA9E4C4B65C1225456A833875EB449
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
Manifest number: 116E
Signing time: Sat 28 Jun 2025 19:01:35 +0000
Manifest this update: Sat 28 Jun 2025 19:01:35 +0000
Manifest next update: Sun 29 Jun 2025 19:01:35 +0000
Files and hashes: 1: HhkRubtcij4eK4pRFl-KcaCSxo0.crl (hash: /2L7er4X/TztqQTW3es37GyTibsb+qCVRRikhtO+DoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:9e:4c:4b:65:c1:22:54:56:a8:33:87:5e:b4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Validity
Not Before: Jun 28 19:01:35 2025 GMT
Not After : Jun 29 19:01:35 2025 GMT
Subject: CN=fcf424f31d5742cf0887964cea4f86625972d0b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:32:e4:1b:63:67:7a:3d:56:2f:55:ab:f2:05:
53:61:57:26:ef:a7:35:9d:e7:fc:37:fa:6d:1a:9f:
e0:46:f8:5f:fd:2c:ab:39:5a:03:18:fe:a3:b2:69:
10:88:a8:ad:3c:ad:f1:50:06:53:13:41:a6:2f:62:
1e:2d:3f:9e:17:34:9d:1e:90:ae:12:04:4f:6f:9b:
e8:8f:ad:f5:54:ff:00:08:dd:f7:ec:3e:79:42:e0:
da:4d:ce:58:bd:5d:f9:66:84:e9:64:50:86:2e:69:
80:90:3f:02:c1:33:15:89:d4:17:4b:ed:38:63:33:
7f:22:57:29:fb:5d:ea:7f:22:88:82:7d:99:49:68:
93:0a:a6:c7:8e:b5:a8:b8:da:23:0c:4e:f3:e3:4a:
c6:24:07:fd:2a:68:b9:b5:d8:c1:7e:a4:9f:e6:b2:
ec:d6:84:f5:70:dc:b9:f6:02:6e:43:4c:5c:fa:c1:
4e:3d:ec:8d:49:b6:b9:da:59:8e:93:c6:cd:1b:29:
48:7a:f6:51:23:1c:db:dd:b5:d5:7a:a5:86:50:c5:
28:74:ad:96:c8:75:2e:6d:99:0b:50:54:68:38:a8:
ce:1a:ce:2e:c3:0a:2a:08:26:66:59:ea:21:37:98:
c1:07:1c:62:9a:e8:d8:6c:84:e2:c7:aa:9b:8d:ce:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F4:24:F3:1D:57:42:CF:08:87:96:4C:EA:4F:86:62:59:72:D0:B7
X509v3 Authority Key Identifier:
keyid:1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ba:6a:1e:80:c8:00:13:21:38:07:47:4d:ff:0f:fa:53:e3:
62:27:ca:cd:4c:a1:8d:23:a6:02:3a:7c:1a:89:f3:e0:bb:fb:
f2:8d:6d:02:da:86:51:bb:82:fa:d5:29:ec:ba:5b:eb:97:8a:
ee:c4:7c:3b:ca:b9:5b:db:80:d1:a7:91:eb:53:69:ee:ac:44:
86:1b:c6:a5:74:80:bf:0c:06:53:77:fa:38:5c:4d:ab:9d:61:
f4:12:7f:63:d8:e2:06:32:6b:ea:5c:20:18:2c:ed:1c:f2:d0:
1b:00:12:4c:d6:14:f4:16:c5:88:54:cb:6a:52:77:24:00:53:
fd:94:ca:66:c5:2d:bc:bb:62:59:91:a0:a1:85:c2:e7:e3:da:
13:ee:c7:87:2b:eb:18:7f:e8:a5:dc:c1:01:c9:b8:88:b6:f7:
6f:94:1b:93:2f:9f:0a:bb:95:24:90:75:d3:da:87:c6:a3:c1:
f1:51:42:55:30:4e:f1:14:c4:e6:47:97:e7:f0:70:a1:b6:c4:
a6:d2:02:71:9c:d5:0f:9b:a4:f2:a4:70:ed:32:b5:8c:a8:84:
32:81:56:eb:1e:6e:19:77:a0:18:f2:a2:d4:c8:ea:46:dc:f5:
fe:e0:14:59:e5:1a:4c:49:88:9c:54:c0:a3:67:0c:8e:ff:31:
42:51:00:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:15:50 2025 by rpki-client