Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: HNs3m1o+jWOmnuTzks22hKQdZbn+vNMwmjVOK/fwikQ=
Subject key identifier: 7C:68:83:A4:EF:48:41:E2:E5:71:66:A8:0F:24:CB:E8:89:A0:9B:5F
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 0198D65FB53E57095BFEBFC8376063A8AB99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 10FC
Signing time: Sat 23 Aug 2025 10:00:53 +0000
Manifest this update: Sat 23 Aug 2025 10:00:53 +0000
Manifest next update: Sun 24 Aug 2025 10:00:53 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: GYMCuAt1B77grnf8xIi0RQCwUR5ri4q3dmqPHt9pgGw=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:b5:3e:57:09:5b:fe:bf:c8:37:60:63:a8:ab:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Aug 23 10:00:53 2025 GMT
Not After : Aug 24 10:00:53 2025 GMT
Subject: CN=7c6883a4ef4841e2e57166a80f24cbe889a09b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ab:6d:18:9d:0f:4d:a3:a0:ce:45:d6:19:51:
65:eb:09:1d:3a:6d:bc:a4:82:bd:3b:e9:71:cf:b6:
af:a5:b9:9a:c0:ee:2b:aa:54:69:15:58:92:41:eb:
31:0e:9d:77:05:cd:b9:25:68:ea:19:5c:4c:e6:63:
20:25:94:40:b5:52:fe:13:cd:6f:c2:66:5d:9d:e3:
15:7f:ec:80:47:6a:ec:5d:f7:d1:a0:ab:8d:6a:3d:
18:91:f4:cf:a7:40:6e:a3:92:7e:49:6d:52:f7:94:
04:01:ae:97:6d:69:cc:16:d3:11:fd:b8:73:0b:8a:
24:42:11:10:29:60:be:6e:76:66:15:8b:c7:96:5e:
ea:72:e4:70:e7:e5:c3:92:e9:27:32:ee:9f:ce:fc:
40:86:73:7a:52:c4:b9:fc:fa:70:b7:bc:aa:5d:3b:
4b:42:e4:c7:a2:25:e2:3c:a3:d6:f5:7b:d6:29:6d:
1f:ec:e5:c0:a5:eb:34:d5:6d:5b:9a:cb:df:93:9c:
79:b2:37:db:df:9a:ec:e8:f7:fc:73:a7:3d:bc:c8:
7a:df:18:d0:b7:4b:20:f7:71:4b:d7:a0:f7:41:89:
51:d3:b7:97:1c:76:0f:e2:87:00:5d:71:e3:84:38:
d3:ea:6a:44:4e:77:f6:e9:1c:fa:65:77:25:8c:f8:
80:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:68:83:A4:EF:48:41:E2:E5:71:66:A8:0F:24:CB:E8:89:A0:9B:5F
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:73:14:56:22:b6:05:a1:97:54:d8:ae:d9:2c:7a:a2:e5:d1:
c6:34:be:b8:65:3f:93:c5:20:0c:1e:1c:b3:34:ab:38:02:7c:
8b:af:e4:75:c9:3e:05:d2:23:b3:42:91:28:2e:c7:e5:ad:46:
a9:46:af:1b:b5:14:14:1d:8a:09:e5:0e:b1:b6:ef:a4:ea:1b:
eb:a2:21:99:61:50:19:08:b0:4d:c6:0b:37:cb:7d:6c:54:2c:
2c:c0:19:5d:46:cd:61:3e:ff:c7:0f:ee:04:b2:ab:d1:c9:89:
f1:da:5f:ca:74:d9:dd:2f:5f:45:ed:53:d6:5f:98:c5:ce:8c:
92:c8:f1:e5:5d:d0:64:d5:4a:89:47:59:73:ca:48:51:d2:35:
ef:78:71:d1:bd:c8:c7:18:d3:95:0e:00:81:db:42:f9:ad:10:
3c:76:38:3f:8f:61:c0:32:f5:91:40:1d:28:b8:0f:bc:cd:8b:
4c:b8:86:cd:82:e1:84:e1:53:c9:40:9e:06:34:8a:fb:bb:12:
a0:f3:0a:e7:75:32:5c:c1:08:51:5b:6e:c4:16:f2:44:66:c7:
ce:61:35:c3:bd:b8:69:1c:c9:e2:bf:24:34:0e:9b:13:dc:2b:
bf:97:3e:7e:c1:ec:8e:47:bb:68:1d:2a:1d:d5:30:ef:80:e0:
24:52:36:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:21:57 2025 by rpki-client