Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
File: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft (raw, json)
Hash identifier: lqGMTK/TN+YysL4qt6z+Oz1ng+MJihUjSmvj+6FdeeU=
Subject key identifier: 1C:60:16:90:14:16:3C:7D:85:EB:7C:C0:92:4E:C2:CE:41:AD:99:C3
Authority key identifier: 1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
Certificate issuer: /CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Certificate serial: 0198D5BBC614FC47187DF1E30A8FCDEFE2A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 07:01:49 +0000
Manifest this update: Sat 23 Aug 2025 07:01:49 +0000
Manifest next update: Sun 24 Aug 2025 07:01:49 +0000
Files and hashes: 1: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl (hash: RgUPY3YZiGi1hfYdKCe2XI8QEuZ2RHbuN4oOwvaMsUI=)
2: hIagYPgcgLqF5hqMfUhJY2-sJAs.roa (hash: ZaaWq0BbjJoluHI5ROX+aFarBCsxRa8oHhsXlvsyUeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c6:14:fc:47:18:7d:f1:e3:0a:8f:cd:ef:e2:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Validity
Not Before: Aug 23 07:01:49 2025 GMT
Not After : Aug 24 07:01:49 2025 GMT
Subject: CN=1c60169014163c7d85eb7cc0924ec2ce41ad99c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:a8:0f:47:85:09:5e:41:d4:00:ba:3c:9f:
82:34:25:02:23:75:fe:f7:eb:ca:ac:75:49:5b:38:
1c:8b:40:86:69:c4:ce:61:e8:48:2a:98:f7:51:38:
95:0b:26:53:ee:09:d6:ae:8d:5d:e6:d6:96:67:92:
8f:d6:08:a7:b5:8a:d9:5f:57:9d:9f:7e:c5:43:e8:
c7:77:9d:0c:33:a5:c7:b4:d1:98:0a:77:43:34:8e:
c8:ed:1c:96:28:18:80:8d:17:53:7a:59:f5:19:d6:
0f:90:97:be:3a:8e:60:22:95:46:71:65:31:4a:63:
63:0b:74:59:df:f1:30:61:46:b7:41:01:fe:6f:57:
01:6c:48:4d:78:eb:d5:2c:d1:61:31:0a:ea:43:cb:
09:b8:aa:91:b7:19:2c:cc:c9:32:42:ca:05:9d:9f:
00:7b:24:b3:05:31:e7:1c:02:01:52:f2:b6:05:15:
8c:1a:71:3d:4d:e3:74:f0:d7:4e:9e:7e:23:84:8d:
5e:43:de:e8:bb:e3:d0:a2:13:bf:06:af:5a:77:51:
44:2e:2f:a8:d6:1d:79:db:29:2b:42:4d:33:7f:2b:
ac:b7:b3:10:99:00:19:53:55:25:32:35:10:5e:ac:
73:80:6a:da:5d:92:3e:f4:0e:9e:a5:d7:a6:c6:cc:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:60:16:90:14:16:3C:7D:85:EB:7C:C0:92:4E:C2:CE:41:AD:99:C3
X509v3 Authority Key Identifier:
keyid:1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e1:81:2e:9e:3d:e8:f9:75:49:6d:fc:38:ec:20:b0:f2:f9:
21:15:cd:f1:87:ba:db:99:6e:f4:69:01:ad:e0:07:24:87:b9:
4c:8c:78:6b:d3:42:d7:31:cf:f3:ce:35:e1:bc:7a:e3:bc:0a:
ce:db:2a:a2:6d:17:b4:2e:3d:b4:f3:d0:97:fa:04:7d:9f:4d:
c4:69:a3:09:68:d6:69:b2:d7:71:5d:d0:f6:81:af:a6:77:55:
b0:76:18:99:96:71:67:ed:97:a2:9a:bf:34:35:bd:66:08:f7:
b2:79:02:f7:2e:65:7d:15:b3:e0:46:a6:6e:95:23:96:b0:65:
58:c9:30:5a:2a:a4:6a:2d:57:e6:02:af:ec:6f:b0:7f:c9:ea:
7c:0f:10:60:9b:41:46:98:a1:ec:51:f7:75:34:60:56:b0:6d:
c2:fe:d3:01:5f:34:ed:00:7d:ad:42:ba:f8:a9:ec:62:a6:be:
93:f5:cd:a0:e0:48:e5:2c:98:02:89:e5:85:90:b3:70:30:8e:
f7:d5:3b:d7:e2:d4:83:8b:dc:57:26:5a:ef:bc:f7:79:6e:74:
e3:f2:0d:07:1d:97:5f:5c:c7:22:52:96:1f:80:5d:a5:c0:fe:
b0:b8:c6:a6:16:df:c8:2a:2e:7a:1d:9e:2b:07:88:aa:82:98:
8c:0b:b2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:22:43 2025 by rpki-client