Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json)
Hash identifier: APohCWye2iwEmAQ3dujBNlrOJLrwxQ04ID/sDtZtl9E=
Subject key identifier: 26:94:99:28:17:59:B4:4B:E6:77:83:CC:3C:FC:D3:23:7D:CE:D2:C2
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 0198D5F1B82701516F12AC04BF5553A25B48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
Manifest number: 0E00
Signing time: Sat 23 Aug 2025 08:00:44 +0000
Manifest this update: Sat 23 Aug 2025 08:00:44 +0000
Manifest next update: Sun 24 Aug 2025 08:00:44 +0000
Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: aAeXEO5yMirhmyVxESHyCHqPVbiqOTMwpEnq504bymA=)
2: Z9H2rikLSuyuU-ikn9teDCmjdUc.roa (hash: cRtnYLPeRJbchnmn6bYlPaowZvCX5uRJgotf5z/cank=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:b8:27:01:51:6f:12:ac:04:bf:55:53:a2:5b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: Aug 23 08:00:44 2025 GMT
Not After : Aug 24 08:00:44 2025 GMT
Subject: CN=269499281759b44be67783cc3cfcd3237dced2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:86:94:3c:0b:0b:15:1f:b2:2f:01:8f:4b:8e:
db:0c:9e:5b:9f:ba:4f:05:1e:01:5a:05:4f:d2:b9:
75:4f:7f:95:45:e1:73:6d:a0:08:5a:95:db:26:ee:
12:b6:b3:87:92:ff:8a:7b:bf:d5:69:3d:2e:18:d7:
fb:d4:4f:4f:73:ad:6c:11:06:90:2a:2c:f1:d9:73:
ec:46:17:19:e6:ce:31:14:3d:4c:28:35:48:56:52:
f5:4a:2e:00:d1:45:c9:6e:2b:07:76:c5:d4:bb:03:
9b:e9:5b:93:13:41:5e:77:06:77:03:54:36:e4:4c:
a3:a2:2e:72:06:3f:00:4b:75:2c:53:cd:9d:ce:81:
b2:b8:7d:4b:05:53:91:ce:33:d5:28:a8:14:e2:be:
0a:0e:de:61:5e:03:a8:41:7f:ea:ac:5c:fa:44:5d:
55:3e:4c:ad:9d:cc:44:f6:59:0b:e3:b6:4d:be:ea:
10:4c:6f:1b:42:c4:a4:d9:c3:4a:94:e0:d4:12:f5:
c0:5a:a9:c1:75:0b:2e:19:66:ba:75:23:f0:f9:5c:
a4:db:8f:cb:7d:31:e5:c8:2c:93:3c:e9:56:e5:91:
ae:e3:d5:5f:00:b7:bf:41:cb:7f:aa:7c:8e:8d:c1:
b6:bb:c2:78:5a:a8:2c:30:3d:20:7d:ff:2f:05:64:
d9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:94:99:28:17:59:B4:4B:E6:77:83:CC:3C:FC:D3:23:7D:CE:D2:C2
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:d9:58:c7:a9:fe:73:4c:aa:8b:f9:8a:37:f4:f0:76:f3:1e:
53:d8:30:7d:73:51:8c:bf:d1:a9:55:0f:93:0f:57:e4:ab:97:
3a:26:d8:5e:d6:f3:ab:06:29:51:85:bd:81:06:b2:01:14:c0:
82:58:9c:89:f5:5c:6d:c4:5d:38:c6:ce:2e:2a:78:f6:e0:96:
dd:ea:a9:48:a3:16:a0:96:a0:a9:90:9f:a3:15:0b:b1:ef:39:
52:a3:b0:0d:1b:d5:45:72:1e:d1:45:d8:51:88:44:9a:42:b9:
35:6f:3e:3a:3a:6c:1d:f9:ca:ec:16:19:c8:ca:ed:19:04:04:
e3:6f:16:bf:41:da:58:1f:6d:0e:e7:5b:e1:89:5f:01:a7:0f:
51:ea:0a:e0:96:5b:44:47:ca:b3:75:63:9f:52:aa:88:1e:3b:
5f:50:59:1e:24:37:aa:b5:c2:bb:23:64:7a:1e:e3:ba:a4:48:
11:d3:a0:03:46:2d:9b:53:19:32:e7:f7:cf:4c:20:23:b9:54:
e2:a8:d0:03:6f:42:15:81:f3:f8:fd:70:f4:20:9e:b2:97:29:
29:11:b5:a8:93:60:ec:4e:2b:1d:fc:24:b7:29:c7:cf:db:31:
50:9c:ed:7c:c0:6b:ce:bc:cd:d2:de:68:fa:6e:33:7e:98:4f:
af:98:c4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:50 2025 by rpki-client