Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: CWj6fLspj2W98nwfiFsiUW0VIQ918Zm+lTXLoxUs/9Q=
Subject key identifier: DD:59:31:E4:93:E0:F8:19:F9:2B:01:61:39:3D:0F:80:0C:E5:1D:5C
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 0197C3B723A58879018DEAD4926AE06AFBDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 0E93
Signing time: Tue 01 Jul 2025 02:00:48 +0000
Manifest this update: Tue 01 Jul 2025 02:00:48 +0000
Manifest next update: Wed 02 Jul 2025 02:00:48 +0000
Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: 0lfYzlkrrxRG8DzMkr5MXLMkadiFpLMzYpwISv/F35Q=)
2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:b7:23:a5:88:79:01:8d:ea:d4:92:6a:e0:6a:fb:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Jul 1 02:00:48 2025 GMT
Not After : Jul 2 02:00:48 2025 GMT
Subject: CN=dd5931e493e0f819f92b0161393d0f800ce51d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:84:a3:2a:c0:15:aa:66:8c:33:d5:0c:f7:db:
a3:70:34:66:db:97:ee:48:c0:5b:f1:7c:78:b3:51:
51:70:71:0d:a8:2c:df:7b:15:7a:fb:df:18:45:e7:
ed:db:5c:8e:79:d9:d0:c9:89:db:34:4e:5d:3f:62:
23:ba:d6:a0:19:27:bf:78:ca:47:0f:1a:c0:d2:c7:
19:ec:c6:4f:3d:c5:9f:61:57:92:09:52:72:b7:7c:
9d:4d:af:92:24:57:94:03:92:69:0e:86:84:13:03:
76:21:73:d0:ca:99:fd:43:95:59:8d:de:48:b9:23:
b8:ba:44:1f:b4:57:e3:6e:e1:b5:c3:fb:54:77:c9:
fc:21:c3:39:a9:7b:07:91:54:1e:d6:11:85:f0:3e:
46:03:78:2f:5e:da:46:17:fe:1d:01:10:43:25:7b:
b2:dc:e7:dd:80:54:2a:b3:bd:8a:a0:71:eb:a1:75:
8b:d3:d1:6e:d9:0b:61:19:f7:05:6d:d7:c4:68:0c:
69:d9:2c:89:d9:7b:84:ed:ae:9b:9d:79:bf:23:ff:
b1:96:01:34:3d:48:42:21:3a:dc:89:71:48:d5:cd:
45:71:1f:ef:76:ee:e2:54:df:15:30:67:d0:45:ac:
ec:2d:7f:ed:31:b8:ef:1d:fe:77:3a:eb:b7:09:4b:
a7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:59:31:E4:93:E0:F8:19:F9:2B:01:61:39:3D:0F:80:0C:E5:1D:5C
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:95:5a:55:e4:19:f0:e6:d7:28:34:ce:ae:9f:27:f4:31:35:
45:ee:ac:14:18:20:8f:d7:df:6e:67:93:5e:3f:99:0c:7d:12:
aa:ae:6e:0c:4f:e1:19:91:27:53:18:55:e9:a3:89:77:e2:47:
12:8c:50:61:32:97:45:43:e5:63:99:2c:db:02:9b:ec:a0:97:
64:b9:8d:fa:a8:a5:ed:eb:8e:d6:60:2a:15:c4:af:86:60:84:
e6:93:24:ce:fd:12:27:81:c9:fc:4e:d7:8d:52:f6:b7:0e:6e:
1a:dc:6c:1d:8e:6f:0b:00:90:1d:e2:15:e0:e4:17:50:a1:0a:
ac:96:88:cf:91:35:93:04:14:dc:50:bc:0c:a4:bf:89:f2:2c:
89:ae:2b:be:18:a9:ce:90:b7:67:1b:c7:59:26:cf:c1:c5:19:
10:20:1d:41:1e:bc:d6:e2:87:55:90:f7:41:56:f1:23:c1:f9:
08:c0:2b:17:3f:b7:22:b6:c5:ba:1c:d2:32:f7:a2:0c:05:59:
d7:43:2c:e0:0f:62:aa:27:0b:c0:37:fd:39:7c:d3:ba:31:4a:
49:6e:8a:be:82:5a:f8:0e:ec:83:cc:ef:a7:ae:2c:34:1f:0b:
45:fa:c0:bf:ba:f2:4e:bf:bc:9d:0c:ec:bb:4a:f6:ae:8c:93:
61:91:09:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:06:30 2025 by rpki-client