Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: SzWs6Cw+CrXvq3RDLQ/8BYeAb/S5clPoPjs+6e6mMq8=
Subject key identifier: AD:41:5D:39:BE:57:8F:20:5E:CF:78:11:B7:ED:80:48:47:1D:91:CE
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 0197B8FDA1B68CF5146A85B657BC4CBE646B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 00:01:58 +0000
Manifest this update: Sun 29 Jun 2025 00:01:58 +0000
Manifest next update: Mon 30 Jun 2025 00:01:58 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: R+IghcMQOR7yyOIu6cc19eiaOO+m/he6q6EqXF3Mxi8=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:a1:b6:8c:f5:14:6a:85:b6:57:bc:4c:be:64:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Jun 29 00:01:58 2025 GMT
Not After : Jun 30 00:01:58 2025 GMT
Subject: CN=ad415d39be578f205ecf7811b7ed8048471d91ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2b:58:61:f0:cf:89:ca:fc:7e:3a:67:5e:a5:
23:a0:48:aa:ca:07:cd:5f:06:86:5c:7c:d7:62:10:
eb:c5:3e:fd:e0:52:c1:b6:c4:00:5d:dd:51:75:cc:
e4:9e:c8:ca:de:50:23:b9:41:0a:a2:bd:8b:3d:7b:
20:5a:ef:26:66:48:28:a3:2a:18:ce:97:b7:c8:b4:
b1:5c:37:ee:03:0f:14:3d:c5:43:86:1c:65:e2:d7:
5a:22:79:81:4a:92:2f:3c:0b:1e:d0:9c:c9:3a:8f:
c6:2c:ef:35:61:b0:66:19:1d:06:68:64:ff:9a:15:
01:48:45:21:fb:8c:ad:8f:e7:a0:89:82:20:33:9a:
3a:07:63:6a:6d:6f:e2:f1:3d:4c:47:af:6b:82:bb:
61:f7:db:d1:39:16:d4:2f:70:15:de:42:ea:d0:d1:
a0:5f:09:65:7d:e1:c7:af:bc:7f:d9:d3:60:86:56:
74:12:7e:61:47:23:21:38:7f:9a:9f:e3:cc:0a:15:
14:28:37:dc:ac:8e:b3:3b:5d:85:b8:0a:91:82:02:
ff:b3:f1:82:42:03:bc:24:ea:41:1f:6f:12:ac:00:
18:be:7c:3d:72:fa:67:b0:8c:7d:5b:4a:57:95:91:
e4:e1:b5:d1:7d:19:33:08:8a:44:f9:88:3d:30:07:
46:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:41:5D:39:BE:57:8F:20:5E:CF:78:11:B7:ED:80:48:47:1D:91:CE
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:f8:6a:2c:11:6e:59:86:23:0b:3e:4c:c0:e2:67:22:66:d6:
0a:d5:ec:71:9e:5c:c2:27:ef:7e:df:8e:2e:2c:f4:ec:51:5e:
9e:6a:e2:32:f8:02:f5:74:0a:3d:95:96:7d:d1:a9:03:81:19:
7a:80:cb:02:8a:ce:90:8c:d5:71:ce:52:d7:51:b0:2d:77:c0:
70:c1:e4:17:3f:74:4b:80:b8:92:5d:f4:d6:7b:25:af:f3:99:
1a:dc:1d:a8:a6:70:7e:4e:2d:d1:38:2b:97:47:07:aa:ad:92:
4b:8e:45:2d:4f:62:69:0d:90:51:ed:be:1b:a0:10:01:33:f1:
4a:ba:44:7f:1c:01:7b:47:ac:56:82:0c:8c:d0:2d:fe:c8:f5:
91:9c:c5:81:a2:1a:54:cc:0a:42:e8:60:7c:de:69:66:b6:4a:
a2:53:9b:c3:df:6f:af:41:08:64:9c:33:7a:c5:28:6b:d6:0a:
af:5a:42:3e:dc:46:cb:4c:65:c9:02:f6:54:f9:2a:7b:cd:b1:
29:b6:ee:8b:cf:ce:be:6c:08:b6:e9:00:87:42:82:e3:39:36:
f6:e9:b0:bd:39:63:51:f9:94:a3:fb:04:e7:d5:13:df:0e:68:
67:5f:32:d5:cf:ae:b6:5c:b3:7c:64:45:20:6c:c7:41:9b:ce:
5e:ff:50:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:14:48 2025 by rpki-client