Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: J2XdIHWmmD9fnAl0a+I0JxkEnGRL6iv/BhiOTSokLbs=
Subject key identifier: BD:5F:77:DE:09:ED:15:03:5F:63:C4:CB:6F:F3:4A:7B:5A:6B:0B:CA
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 0198D4E011650849D350B9C82B29878CC339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: 0ywRxJBuzjefjPFdGP1jBflPKrGCSk+OAlarGW2BTc8=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:11:65:08:49:d3:50:b9:c8:2b:29:87:8c:c3:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=bd5f77de09ed15035f63c4cb6ff34a7b5a6b0bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d2:25:7c:34:6d:a5:9e:60:43:94:94:8a:3e:
51:82:ba:4a:38:4f:d5:4b:f2:6f:d6:07:5b:01:eb:
90:3c:ec:b2:1c:cc:24:08:64:06:c5:fd:c5:ba:3e:
01:a8:10:e0:50:eb:55:03:ae:dc:77:77:e3:d1:d4:
6d:0a:bb:11:df:20:c7:eb:78:eb:80:d4:57:a6:7e:
1f:2a:51:1c:18:1e:af:7d:4b:97:e6:3e:80:bd:5d:
5a:11:60:78:f4:86:58:a9:47:e7:0d:dc:63:55:8f:
d2:31:79:21:cd:34:5f:80:2a:ee:6b:c6:1b:a9:b7:
9e:74:b8:8a:9e:ae:19:3c:7d:2d:b9:0c:bf:70:a2:
34:48:9d:4a:c0:d6:90:2d:9b:c7:ad:12:bb:31:a0:
b9:b5:64:88:6d:c5:aa:a7:fd:86:f3:4d:83:fd:c8:
46:d9:f1:00:21:16:63:c0:71:11:f6:43:15:73:53:
6f:7e:23:64:92:ff:65:5d:e7:2d:3c:1a:f9:8e:0b:
31:77:4e:37:e8:cc:7e:96:fa:ab:ff:4b:24:e1:d8:
7b:96:1a:0b:d7:93:01:12:32:f0:8f:f3:38:a1:79:
ed:04:48:f2:8d:28:b6:c9:ba:5a:a7:ab:02:c4:df:
d6:c9:d2:31:c6:07:97:47:a6:4c:f3:1e:c9:86:32:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5F:77:DE:09:ED:15:03:5F:63:C4:CB:6F:F3:4A:7B:5A:6B:0B:CA
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:52:eb:f9:c7:d3:80:40:e3:91:5d:a4:ac:2c:22:f9:ea:08:
ff:ee:bb:1b:ae:0d:17:4f:44:e3:4d:7b:5e:05:bf:a7:2f:1b:
96:6d:18:49:50:37:f6:fc:68:4f:7d:7c:47:03:60:6c:af:fc:
f8:c1:1a:64:3a:cb:83:6b:fc:44:1f:10:41:2c:6a:dc:79:c7:
47:47:a4:d1:e5:b4:a1:d1:ea:25:12:75:b8:8d:80:ec:f1:8a:
12:c0:e5:97:20:2a:e7:e4:da:1f:69:6a:82:cf:dc:c5:cd:a5:
22:cc:5a:5c:31:06:27:a6:f2:25:f6:ef:1e:85:a1:54:33:8b:
6b:72:17:87:e5:22:d4:cc:a0:3c:7b:7f:ff:6a:b1:96:f3:7e:
34:29:11:3f:12:8e:c3:4c:5e:53:9f:fd:a0:e1:e2:0a:4d:90:
a8:f1:1c:2f:00:a0:2b:21:68:44:6c:50:39:00:7e:c4:a4:4b:
c2:ad:ad:65:05:40:cd:bd:5b:c4:d6:f7:a7:97:56:9f:c9:5a:
c0:a5:d1:a7:e8:b1:10:d2:3a:15:06:3d:33:16:49:a3:34:64:
14:76:05:e8:0f:66:8a:58:72:59:9a:e5:4a:97:0b:7c:e2:c8:
a8:91:ae:f3:c1:88:f1:d9:e2:a1:7b:81:24:8d:0e:1b:57:81:
cb:ec:a2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:33 2025 by rpki-client