Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: Vh/DhwpoMLao2erbwmTUUYLJ4g0eXLYOlpPRQcldQPM=
Subject key identifier: 7A:DB:45:64:A6:EA:AE:D3:64:35:A8:97:9B:CC:5C:2D:2D:68:32:C9
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 0198D4E01D6251AE1B80F5F18536569AEEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0A7E
Signing time: Sat 23 Aug 2025 03:01:53 +0000
Manifest this update: Sat 23 Aug 2025 03:01:53 +0000
Manifest next update: Sun 24 Aug 2025 03:01:53 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: 77Jd3YnjTN20RhV3ToWNSlJFwuke0/xj+e4dC4+irH4=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:1d:62:51:ae:1b:80:f5:f1:85:36:56:9a:ee:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Aug 23 03:01:53 2025 GMT
Not After : Aug 24 03:01:53 2025 GMT
Subject: CN=7adb4564a6eaaed36435a8979bcc5c2d2d6832c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:7e:c8:d9:af:f3:50:96:75:ac:01:72:63:
04:32:c3:f4:a6:28:a2:fd:39:bc:6a:2c:56:a5:2a:
b0:85:33:95:a7:4d:76:4f:15:a8:c2:b5:a9:46:65:
26:b5:1d:1d:bc:fc:8e:df:e0:24:9c:7d:10:fe:dc:
2a:22:64:7f:70:cc:49:83:b2:2a:74:5f:10:31:3c:
aa:6e:00:ac:7c:58:73:34:54:f5:fd:b0:8e:30:ae:
5b:e8:12:f5:05:ef:dc:72:7f:a9:97:51:1f:13:46:
e0:31:14:3a:ad:b0:38:f9:0c:70:fd:ac:f6:87:4c:
2f:ca:2b:91:b5:10:ac:0f:f0:b2:6c:6a:e7:4c:01:
a4:5c:05:03:c3:ce:08:b4:21:b6:45:3b:1a:ba:d7:
01:f6:70:64:e3:08:d8:76:26:c3:60:1e:19:b7:eb:
ca:38:e3:03:ec:fe:d1:55:e7:c0:79:86:29:e8:5b:
f1:05:b7:ce:75:fa:fb:a3:d5:92:07:78:e6:4c:4b:
49:8b:04:90:6f:a1:11:4d:33:0d:ed:86:9c:07:79:
55:99:b2:60:56:8f:25:4d:db:e1:5c:d4:9f:3e:47:
86:41:c2:0f:e3:e2:c1:27:4e:36:71:7d:56:2c:c8:
84:73:62:c4:92:24:6c:22:3f:17:08:e1:82:b8:76:
e2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DB:45:64:A6:EA:AE:D3:64:35:A8:97:9B:CC:5C:2D:2D:68:32:C9
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:05:dc:8a:37:6a:c3:84:64:23:e8:2d:50:33:4a:a8:b8:8d:
92:30:fc:9d:1f:74:fd:3a:7c:fd:cf:e8:5e:dc:17:7a:1e:e6:
ba:a9:77:70:e6:ab:68:1f:52:fe:f7:fc:e4:a3:fe:89:f9:6f:
66:49:ba:ed:92:49:d9:bd:f3:11:83:10:e8:bb:93:52:df:11:
35:80:13:db:fa:e7:e8:5d:55:79:47:34:b6:6f:7a:e4:58:27:
39:ea:a7:1c:d3:17:65:af:86:2a:d5:31:e5:0b:65:36:8c:31:
ed:5b:66:11:0d:8d:fa:89:e7:34:61:fb:3b:43:3a:b0:32:b2:
9e:0b:ae:b7:ee:17:83:e9:4f:aa:ae:c0:fa:8e:57:14:c2:4e:
88:dd:55:f3:1a:db:8a:d0:95:94:9b:16:9d:00:47:85:6f:1e:
84:04:70:24:78:4c:40:8b:e2:4e:a7:c3:85:cc:4d:a9:43:86:
e2:74:75:cb:38:ce:4f:52:74:8e:88:f1:5f:99:e9:b3:88:14:
54:ea:cd:3c:bf:56:ab:ea:72:6e:51:e0:fd:61:74:25:0f:39:
95:6b:b4:ad:c4:01:2e:b2:89:00:88:8b:91:4b:66:4d:e0:e6:
9e:88:8e:fb:d8:ff:52:07:27:c8:99:d3:67:88:f1:a9:b7:5a:
cd:18:42:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:34 2025 by rpki-client