Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: zLOxk5RK7dFD77LJ4Cdf4ISvHhGnXkTpWDUTlr3CmK0=
Subject key identifier: 8A:03:AE:BA:A0:C8:97:43:12:60:45:1D:82:C9:57:41:D1:6C:04:E8
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 0197BA7DB1A5C4C1B36C571AE5BAAF4C4A1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 1069
Signing time: Sun 29 Jun 2025 07:01:28 +0000
Manifest this update: Sun 29 Jun 2025 07:01:28 +0000
Manifest next update: Mon 30 Jun 2025 07:01:28 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: 8nVc8n9ELlyCDt1LImWFy1RzVgifMzadqMqMA9YIlYY=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:b1:a5:c4:c1:b3:6c:57:1a:e5:ba:af:4c:4a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Jun 29 07:01:28 2025 GMT
Not After : Jun 30 07:01:28 2025 GMT
Subject: CN=8a03aebaa0c897431260451d82c95741d16c04e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:36:3a:2d:43:d0:b2:22:ad:e2:19:1f:1f:fe:
65:4e:a5:a6:1a:0b:17:76:ca:57:13:f0:de:c0:1c:
78:04:76:f7:b1:e9:cf:31:4b:a2:f5:79:f3:cf:fa:
69:7b:9d:bf:76:98:a5:59:3c:5e:bf:f6:a7:39:5f:
e5:da:1b:7b:84:fc:dc:92:df:a7:6d:e0:f9:36:e8:
45:75:82:a5:69:df:a1:e9:37:55:a7:f3:9c:20:9d:
89:6d:e8:ae:70:73:c6:9f:9d:93:c1:57:15:34:93:
6b:c2:c7:69:6c:62:d7:c3:4a:83:5b:e8:59:8c:83:
1c:26:b9:4d:93:22:9a:ca:7b:cc:ad:1c:26:cf:d0:
22:c5:29:68:f0:1f:70:26:64:46:60:74:3d:6d:13:
ba:cf:5a:46:00:77:aa:49:4c:1b:2e:a5:7d:bb:19:
2e:78:88:ab:0a:6c:de:81:47:98:b2:c7:ce:b6:bf:
24:eb:ab:69:40:ff:52:ee:23:98:4c:61:d3:c9:43:
34:f5:94:e7:26:a9:2d:53:2a:af:e7:de:a7:90:18:
b7:44:c9:40:61:9c:9d:08:fd:2f:a6:97:bb:ea:a2:
8d:16:0b:0a:84:1c:10:80:a7:39:a9:dd:0e:c4:b9:
35:38:0e:77:59:98:98:0d:13:86:44:12:ea:fe:0c:
82:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:03:AE:BA:A0:C8:97:43:12:60:45:1D:82:C9:57:41:D1:6C:04:E8
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:ee:81:34:cb:e2:e1:45:35:20:47:21:07:5a:8a:a3:86:a8:
ba:4e:85:d0:3a:b7:a8:7c:7a:fb:ab:66:73:4c:e0:6c:b9:70:
79:c5:a5:7e:a5:48:da:2c:91:7b:6a:5d:2b:3f:ad:80:1a:30:
65:d9:a1:b6:0d:35:c0:a4:89:7d:4d:d9:94:b6:b7:c6:8b:98:
3b:53:ba:82:90:45:80:a8:1a:0c:8e:c8:99:f6:8b:59:cf:d3:
93:08:0c:9d:ed:dd:69:fd:86:fe:c9:c1:ff:1c:a1:f0:bf:d3:
53:54:57:0b:14:4b:be:47:aa:4d:64:59:40:50:0d:7b:e5:0d:
a0:4a:8f:71:a4:18:53:df:e3:11:b0:b1:14:21:a1:a4:00:83:
43:dd:c4:1f:6e:d3:87:64:9d:c9:a6:9b:41:3c:74:c1:8c:90:
a9:c4:15:ee:48:3b:56:e8:a0:2a:e4:5e:a5:19:74:5b:f1:2a:
28:2e:bd:26:3a:37:b2:22:81:4b:7c:7c:b2:fd:93:7c:2e:f8:
78:00:a9:33:eb:e6:77:ab:d9:92:e4:4e:0c:04:b5:2c:5c:c4:
f2:d7:2c:af:e5:51:d9:ed:1e:ca:eb:ad:e1:2c:5b:86:f8:7a:
86:a5:a6:ee:8b:13:3f:b7:99:da:43:6a:08:cf:8f:af:7a:84:
88:cc:75:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:58:27 2025 by rpki-client