Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json)
Hash identifier: QoTlqQC9xJS/dquBHZgk19A4NIL/RFAe8WYG1ghCpGM=
Subject key identifier: 84:D6:C0:4B:01:6F:DB:1B:E2:4D:86:4F:30:D9:8E:40:05:AC:69:B0
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 0198D4E09465859B1FE11573163EE4372965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
Manifest number: 0982
Signing time: Sat 23 Aug 2025 03:02:24 +0000
Manifest this update: Sat 23 Aug 2025 03:02:24 +0000
Manifest next update: Sun 24 Aug 2025 03:02:24 +0000
Files and hashes: 1: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: a0fYCQzNEz0CpxVXZgFXVrl2u+8/gUJ/h+vf/v4o0Ms=)
2: uaDvodSl9Qqt6SU3QvEP4PKpm0c.roa (hash: KfFNiihZ95ffen8bkT+elj9FXLgX4E04ZxK55q4T9Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:94:65:85:9b:1f:e1:15:73:16:3e:e4:37:29:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: Aug 23 03:02:24 2025 GMT
Not After : Aug 24 03:02:24 2025 GMT
Subject: CN=84d6c04b016fdb1be24d864f30d98e4005ac69b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:51:7b:be:d6:be:f5:70:a8:ce:df:48:ea:62:
be:bd:ca:6e:57:7e:c2:6e:6a:c0:bf:a7:31:fd:d9:
d0:2b:0d:52:15:c0:91:42:73:1b:c2:64:06:bb:ff:
8f:31:2d:dd:7c:65:bc:02:a8:8c:ed:fa:5a:ac:47:
50:21:82:ed:f5:33:91:98:9b:12:3c:67:c9:38:bb:
65:69:8d:2c:c1:4b:81:c9:67:ef:00:ba:55:c8:4f:
78:39:f3:fb:d1:f0:8d:e5:a3:e0:f6:19:88:73:3f:
51:d6:ae:bb:a6:4e:9c:db:9e:46:39:bf:d9:f0:b5:
3c:5b:4f:0a:f7:67:b7:7a:1d:8e:19:b9:ac:5f:5d:
86:f7:72:4a:55:14:7d:f9:11:5d:6a:ef:3b:69:b0:
23:95:4c:22:f9:ec:48:c6:5c:d6:f2:45:3e:a3:85:
7a:5c:44:78:15:c4:90:58:f8:d0:96:68:46:51:3a:
70:b4:cb:4a:47:1e:6a:e6:d9:41:d6:2f:b2:fb:c1:
e0:97:6d:1a:7c:e2:34:ff:3d:5b:fc:8c:80:91:f3:
b4:09:00:22:a7:62:75:02:a6:35:ec:e7:ce:76:82:
6c:71:d3:49:3c:6b:d4:a2:02:df:e5:66:32:a1:46:
6b:c9:d3:9d:9e:27:f7:cf:f0:8c:65:62:97:78:40:
6b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D6:C0:4B:01:6F:DB:1B:E2:4D:86:4F:30:D9:8E:40:05:AC:69:B0
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:76:f0:30:79:9b:2b:21:72:36:90:86:f8:b8:bb:84:b9:eb:
1d:d0:78:ae:07:b0:20:03:c7:0e:62:7f:af:d3:a7:59:25:60:
66:ba:4e:be:98:eb:42:f5:9e:9c:69:e2:cc:0a:cb:26:d2:2d:
03:06:60:3f:e6:d9:1d:62:bd:e8:dd:04:1e:33:03:59:fc:4d:
b1:2e:dc:53:a1:00:e1:60:00:86:c3:34:0e:9b:25:df:2e:a5:
e6:7c:0b:54:8a:44:8c:7f:05:18:f7:5c:b1:da:f9:d4:af:96:
75:71:75:20:e1:ea:c1:be:f0:3b:13:60:22:3a:e4:a7:85:98:
d2:53:77:d6:ae:1a:04:ff:43:65:d5:cd:f8:69:05:c3:62:db:
b3:a0:fa:5b:4a:84:6b:12:3f:6b:77:e2:a2:d4:24:05:f3:86:
61:84:62:49:07:f6:7d:d4:cc:45:ca:b4:7c:2b:b5:d2:c4:25:
dd:03:9e:3d:42:28:30:47:5a:59:f7:d4:43:7c:33:f3:16:05:
0a:dd:24:44:45:84:f2:8a:f3:c0:fb:c0:c6:d7:d9:54:6f:4f:
76:8d:c6:d7:e1:11:8e:e4:43:c5:71:92:a4:ec:07:f9:87:d1:
dc:5d:8b:0d:39:66:ad:e9:df:b2:9f:66:82:f7:d8:e1:9a:37:
20:62:ef:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:01:45 2025 by rpki-client