Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
File: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft (raw, json)
Hash identifier: XUgreHR8s3qi5cUzgMzcIwrpmVJ5LVVzyf4VwhOCfdo=
Subject key identifier: 9A:2F:CC:7D:A8:62:26:11:BE:5B:2C:0E:ED:F4:8B:EA:20:FC:02:C9
Authority key identifier: 1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
Certificate issuer: /CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Certificate serial: 0197B7EA3CDD4C53FA8FEF6DF81B065AD545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
Manifest number: 1548
Signing time: Sat 28 Jun 2025 19:01:10 +0000
Manifest this update: Sat 28 Jun 2025 19:01:10 +0000
Manifest next update: Sun 29 Jun 2025 19:01:10 +0000
Files and hashes: 1: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl (hash: jzytsbNIAR5ctp5FsAdpXmVZcbHWooXWvKFFSh18GaU=)
2: hIagYPgcgLqF5hqMfUhJY2-sJAs.roa (hash: ZaaWq0BbjJoluHI5ROX+aFarBCsxRa8oHhsXlvsyUeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:3c:dd:4c:53:fa:8f:ef:6d:f8:1b:06:5a:d5:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Validity
Not Before: Jun 28 19:01:10 2025 GMT
Not After : Jun 29 19:01:10 2025 GMT
Subject: CN=9a2fcc7da8622611be5b2c0eedf48bea20fc02c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:db:08:c3:bc:9e:74:3a:6b:ea:a8:57:e1:cf:
83:11:f8:8b:e1:e2:8f:23:84:eb:bd:03:8f:75:14:
30:3a:68:9a:cb:85:d5:0e:6f:48:65:a6:4b:48:a9:
f0:e0:6f:4e:2d:43:ed:13:34:55:fe:c3:2a:1e:bc:
4d:39:96:52:04:31:8f:ef:e0:97:7c:56:91:01:f9:
1b:40:27:5f:4c:09:52:b5:1e:38:52:f8:f2:e5:53:
00:7c:f7:9e:70:be:1d:89:8f:39:af:14:82:40:9e:
e3:88:29:1a:43:cd:ab:04:d9:5c:c1:00:f7:bb:50:
41:6d:07:38:29:fb:3d:76:c9:5d:2e:24:7c:1f:5e:
29:cb:b7:b6:31:6a:51:db:f4:cc:5f:f4:28:63:bb:
cb:1f:c0:9c:98:1e:56:6a:e3:1f:cd:31:2f:1b:c1:
1c:af:29:cd:9c:5a:bf:d4:9b:3a:c0:ea:b8:5f:3c:
e1:68:11:9a:f7:38:94:f9:f4:4a:03:ba:a8:cb:c6:
07:8a:ea:55:31:7c:d7:a0:31:73:1e:8d:a5:1a:84:
9f:f3:01:f3:1d:ef:49:be:40:c4:34:1a:50:df:28:
5b:ea:93:0f:fc:a8:e3:60:b0:c4:87:eb:d6:19:dc:
58:9e:1f:af:b5:75:77:00:fc:bd:2f:fa:bd:93:3b:
06:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2F:CC:7D:A8:62:26:11:BE:5B:2C:0E:ED:F4:8B:EA:20:FC:02:C9
X509v3 Authority Key Identifier:
keyid:1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:20:26:2a:02:51:6e:4e:55:b9:5f:73:1e:3d:42:19:f9:a4:
5c:73:9c:47:0a:3c:2c:c4:d4:03:de:78:03:d6:bd:28:71:85:
26:88:ae:55:f1:0c:4a:46:50:c6:a2:ad:ad:dd:b9:bf:af:10:
0c:fb:f3:9a:07:88:c8:a0:a7:03:d1:61:88:ac:57:b0:61:ba:
28:7c:30:b4:74:19:15:69:3b:6f:90:e3:4e:07:94:12:d7:f5:
18:69:36:d7:cd:2a:fb:f7:6b:b6:74:40:fe:3a:cd:30:7a:68:
23:1d:2e:74:e7:2f:b6:c1:ae:8e:32:85:8b:3f:e1:1b:c5:9a:
75:af:ab:2b:2f:36:57:54:eb:6d:e6:a8:66:13:24:44:eb:fd:
6d:c6:0d:88:5b:59:48:db:bf:c7:32:31:01:c6:57:91:81:6e:
65:d7:7f:2c:41:df:64:53:d6:8a:8d:5f:51:ad:13:d8:53:47:
d4:02:08:3f:70:a0:24:02:d9:42:fb:60:bb:bd:47:fc:35:59:
42:b6:6b:71:10:a8:da:24:7a:84:dd:56:0b:f5:42:a8:16:12:
f8:36:1a:01:e7:98:2a:2a:e6:5e:8a:30:d8:70:1e:4e:ac:46:
3d:fd:88:90:c7:a7:6c:64:4a:5f:6c:9f:cc:4a:9f:61:48:85:
a1:12:f8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:31 2025 by rpki-client