Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: mboIU/saDlC8532TgAQvF5sz1Lt7RkhLE9OLZo4tHeU=
Subject key identifier: 2F:4B:51:60:39:57:44:8F:AC:46:F1:EA:3B:A5:D9:E1:98:B7:CF:22
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 0197B70F0F92C9F51F8B336329685FC91E95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 09EA
Signing time: Sat 28 Jun 2025 15:01:46 +0000
Manifest this update: Sat 28 Jun 2025 15:01:46 +0000
Manifest next update: Sun 29 Jun 2025 15:01:46 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: PyFPJp45tE5PnDwhDuz1OiAOiqzdj/yj1rSAktsLwLM=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:0f:92:c9:f5:1f:8b:33:63:29:68:5f:c9:1e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Jun 28 15:01:46 2025 GMT
Not After : Jun 29 15:01:46 2025 GMT
Subject: CN=2f4b51603957448fac46f1ea3ba5d9e198b7cf22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:28:f4:f0:40:07:95:84:2c:84:3c:d6:28:2a:
d9:9c:2b:26:11:75:5c:ef:58:bb:4a:d2:e9:c0:92:
d9:36:27:88:5c:eb:81:1c:4b:e4:f5:ff:38:4f:96:
8d:e4:74:d1:4e:a2:f6:1e:21:e5:ba:38:e0:ee:b6:
c0:6a:ca:5b:89:09:28:a4:9c:30:8d:a9:be:b1:4e:
da:54:cb:de:7f:b3:41:6e:63:6b:0c:3b:94:0b:9d:
ab:a5:f7:b8:7e:12:39:22:bd:6a:52:1c:b7:3b:e5:
a9:cd:5b:d4:1f:a3:82:8f:2f:f1:51:0d:b4:12:ec:
f1:fe:ba:55:a0:30:49:92:99:1b:dd:d7:b2:29:f7:
64:c1:e1:d7:78:8e:fc:05:94:c3:d1:e5:04:6c:e3:
f2:8b:f5:92:3d:69:9c:58:79:54:b9:ba:eb:ca:d7:
69:ff:e7:20:95:70:04:25:ae:7b:86:74:62:f1:7f:
b0:5f:21:3b:fe:f2:01:87:72:36:f1:81:bd:73:44:
e9:77:ea:a1:6e:33:be:b7:ed:87:35:e2:83:43:e1:
8e:ca:10:de:ec:46:1a:1a:28:2f:de:cc:ff:4f:18:
cc:45:73:e4:45:01:8c:f5:fe:95:17:52:a3:68:9b:
b6:93:2f:a4:86:ea:e4:f5:51:56:f6:bd:d5:63:57:
bd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4B:51:60:39:57:44:8F:AC:46:F1:EA:3B:A5:D9:E1:98:B7:CF:22
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:8a:73:60:ac:38:83:6a:f0:bd:db:9e:0a:b9:9a:99:63:26:
d4:53:aa:77:be:55:66:94:01:9f:66:6d:3a:07:21:53:5f:f1:
59:f0:3b:af:80:c1:dc:84:a7:3d:31:af:7a:32:f7:7d:2f:2d:
09:30:05:63:e1:21:62:cb:94:60:7f:c6:f9:c0:21:39:b7:fd:
43:6f:73:6e:46:6d:f9:30:71:0c:84:56:7f:31:b9:8b:94:d7:
b5:88:88:76:8e:26:30:4e:f2:c0:15:c8:f5:19:cc:42:ab:21:
e5:e8:09:57:ad:d2:bf:60:a2:f3:39:56:84:1c:c5:cb:9d:96:
20:dc:ee:66:02:7d:9f:3b:70:b1:5c:e8:5a:e0:00:04:12:52:
a5:5a:21:1c:30:92:cc:85:fe:4e:17:5f:ab:a5:c5:b6:8f:c5:
d1:cf:45:30:a4:86:a1:b8:c3:7b:76:cd:4f:ed:88:23:75:01:
45:cf:84:55:ab:27:9b:37:a5:08:82:2b:eb:0a:26:d1:15:11:
6a:73:cc:9f:40:21:59:d6:c4:ae:b7:6e:16:50:8d:53:0c:ac:
0b:0b:44:d6:af:40:89:e6:b8:f4:d8:35:39:30:f7:fd:1c:9b:
09:72:64:87:96:ab:41:a7:01:27:0f:91:19:65:b7:7a:b7:03:
d0:fa:1b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:20:38 2025 by rpki-client