Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json)
Hash identifier: m8tUM0OhxEvuw7GwRzNHT1ASRLzzsIDeJdKvfi+cURw=
Subject key identifier: 10:77:B8:CB:20:9B:AA:56:AB:67:65:8D:27:A4:8C:EB:BC:AA:F6:18
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 0197B82125AE1A5F4A021FC354310F0E27BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
Manifest number: 0D6C
Signing time: Sat 28 Jun 2025 20:01:09 +0000
Manifest this update: Sat 28 Jun 2025 20:01:09 +0000
Manifest next update: Sun 29 Jun 2025 20:01:09 +0000
Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: fALWJXiVisGY6qyhBRCn5imH6WNwkGZanunrS5xwfyQ=)
2: Z9H2rikLSuyuU-ikn9teDCmjdUc.roa (hash: cRtnYLPeRJbchnmn6bYlPaowZvCX5uRJgotf5z/cank=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:25:ae:1a:5f:4a:02:1f:c3:54:31:0f:0e:27:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: Jun 28 20:01:09 2025 GMT
Not After : Jun 29 20:01:09 2025 GMT
Subject: CN=1077b8cb209baa56ab67658d27a48cebbcaaf618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:10:3e:39:7f:df:f1:bb:c3:79:ac:f6:aa:c5:
ec:f4:9c:61:3d:52:90:83:9f:a2:87:cf:3a:8b:a4:
11:c1:dc:da:62:9e:a2:ca:2f:d3:70:7a:30:9a:24:
ae:99:85:0d:c7:e8:5d:44:eb:91:88:e7:84:0f:11:
95:b7:db:bf:c4:f2:5c:fb:31:79:43:ff:b6:ad:53:
35:ee:46:f2:23:db:54:60:49:97:30:80:45:d9:ba:
28:e1:af:60:5c:f0:90:d8:d1:93:b6:52:ef:18:45:
b6:bd:82:56:8c:5d:ca:af:a6:7b:be:21:b1:8b:ec:
66:64:17:3e:37:00:b5:d7:5f:4f:a4:f3:c8:0f:72:
fd:5e:85:74:a7:82:41:85:ec:7c:90:92:63:69:72:
37:2f:0a:72:c7:32:ab:e3:8f:f5:fb:18:a9:95:cb:
e0:3f:ca:a6:6e:5f:df:54:08:fe:2e:fe:cc:22:8c:
af:71:94:19:d1:af:86:fb:9d:34:2a:9f:12:3e:bf:
a6:48:2b:58:57:2d:55:32:7f:bd:03:0f:d7:53:17:
73:ac:6f:f3:13:1c:d4:f3:9b:da:cc:2f:6b:d0:cb:
95:f1:cb:39:f9:a7:b5:fd:61:b0:39:01:18:f9:89:
7c:6d:42:ef:ac:e4:b9:75:6c:fd:a6:16:c3:0e:44:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:77:B8:CB:20:9B:AA:56:AB:67:65:8D:27:A4:8C:EB:BC:AA:F6:18
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c2:1d:a6:96:25:c7:c3:a6:cd:e2:25:12:b9:e5:93:fb:b2:
09:dd:26:f0:c0:92:2f:cd:6f:0f:12:80:92:4b:b7:14:59:5e:
fd:08:70:5e:83:eb:cf:75:56:7f:27:a2:40:83:c9:0c:87:6f:
d7:9a:1b:1a:c2:ad:81:9e:55:35:fe:e1:bf:8a:14:78:f2:e5:
d2:07:da:59:2a:4e:2a:f3:17:5c:5a:d6:0c:e1:1f:ea:08:7a:
7a:40:ac:95:4a:56:a0:b8:6b:7d:24:f9:19:22:c3:0b:5c:bf:
b7:54:a7:f1:36:19:c4:e6:45:8d:bd:11:33:fb:f2:dd:34:ff:
a7:4e:ce:36:1c:79:d1:b0:a0:3d:00:70:df:95:2b:db:8d:7e:
3e:7f:35:32:aa:c7:89:4b:66:41:f6:50:27:4f:a2:19:27:e4:
fb:b6:8a:3b:89:da:c7:36:27:54:dd:11:52:f4:32:b0:2a:97:
5c:e9:00:db:cc:99:7f:10:9f:6a:73:cb:9a:79:4f:0a:11:a4:
5e:5f:3f:62:92:e5:1c:cd:a4:22:08:38:69:67:75:12:0e:c6:
f4:a6:b3:d7:93:d2:ad:e1:62:dc:31:63:71:b0:be:4c:b0:57:
d1:a9:c8:f0:3b:1b:96:1d:9e:85:96:e1:ed:ec:fd:74:d5:55:
37:65:18:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:09 2025 by rpki-client