Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
File: HvNtbboJfqbUsq2k52PoTss9gXo.mft (raw, json)
Hash identifier: GzzJ1knUvXUVgEnDIIuNV5FoWieEGVpOW4E6H6fHgxw=
Subject key identifier: 07:5C:53:93:C2:1F:C2:A5:FC:67:ED:8B:5F:39:40:55:2E:93:9A:55
Authority key identifier: 1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
Certificate issuer: /CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Certificate serial: 0198D515F951E286C00062BD51E4AAEDA7FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
Manifest number: 0534
Signing time: Sat 23 Aug 2025 04:00:43 +0000
Manifest this update: Sat 23 Aug 2025 04:00:43 +0000
Manifest next update: Sun 24 Aug 2025 04:00:43 +0000
Files and hashes: 1: 1-fDLqnKfMZzfosw8Gra-kuHRukQ.roa (hash: 91Wi2oW4Wdmr3Kf24VCGVEfXWacp6jcVuiTMlTsIcZQ=)
2: HvNtbboJfqbUsq2k52PoTss9gXo.crl (hash: FsZd4J8W4NzkTbevD/E1eQV8iEXLC+x6DmrPmLyPDxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f9:51:e2:86:c0:00:62:bd:51:e4:aa:ed:a7:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Validity
Not Before: Aug 23 04:00:43 2025 GMT
Not After : Aug 24 04:00:43 2025 GMT
Subject: CN=075c5393c21fc2a5fc67ed8b5f3940552e939a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:82:50:4f:db:1a:9e:75:f3:d4:02:05:c8:
fb:2d:13:36:25:8d:2f:d4:db:59:ad:be:12:2a:13:
ee:8a:e7:e1:60:84:de:e4:9c:71:65:b8:a3:2f:f3:
2b:cd:b7:65:b4:cd:fd:65:29:8d:81:2b:51:b3:df:
15:35:17:25:a9:7c:e4:09:1a:93:5a:cf:b7:76:b1:
70:77:2b:a3:29:7e:06:b7:87:66:24:e1:7c:00:fe:
c0:81:fa:95:9b:6f:33:2e:9a:dc:78:7c:7a:bc:d8:
24:9f:f4:d2:f8:c6:63:35:b7:37:79:a2:b3:9b:d6:
01:5b:32:2a:72:f5:2f:2a:ee:77:34:70:9e:df:32:
4d:93:c8:50:8e:26:81:c3:8c:3d:b9:13:84:2b:a2:
f6:5f:23:b6:8b:c9:e3:50:4b:1c:45:67:da:aa:38:
4d:5e:d3:ba:a5:ca:d2:8f:c3:79:5d:ae:8b:15:08:
75:e7:48:be:b1:17:60:e2:fb:27:1b:a7:dd:2f:a8:
91:04:19:6d:92:a4:a8:e6:3a:ea:79:26:26:29:bf:
1c:98:83:d0:05:4c:05:93:a9:8e:ea:0f:b1:ba:9a:
21:4b:a3:b9:21:05:b9:7f:13:58:28:4e:dd:09:3b:
af:3b:d0:15:3e:b0:71:b7:30:4a:49:d8:d5:34:b5:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5C:53:93:C2:1F:C2:A5:FC:67:ED:8B:5F:39:40:55:2E:93:9A:55
X509v3 Authority Key Identifier:
keyid:1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:48:29:a6:83:f4:11:b5:6b:aa:ca:4b:62:bc:f1:66:47:66:
1f:c1:a3:f4:11:1a:3d:94:9d:7e:14:84:25:b5:e9:2e:67:57:
22:e4:00:d7:49:58:c3:d9:40:2a:4b:a0:e9:5c:39:b1:1c:86:
c8:96:5f:e7:bd:34:06:ca:ab:f6:37:f1:cc:94:e1:0a:02:e0:
89:3d:9e:d4:68:46:47:7d:be:f6:4c:7f:32:74:96:e8:7e:49:
aa:89:84:7b:e5:a2:a5:29:96:7c:48:86:49:3b:d8:95:d2:f4:
f6:62:fe:ec:49:f2:a0:b3:50:34:ae:06:de:c2:aa:02:ec:b0:
26:d3:e9:5c:2f:d7:39:ac:c4:5d:66:05:c0:e8:5e:f3:c3:b4:
a5:37:e9:b3:5f:b0:ef:dd:f8:89:79:54:c1:ca:a1:bc:47:5c:
b2:fe:3e:fa:fa:36:84:4f:2d:3c:49:a9:a0:e7:4b:79:45:f0:
44:f9:bb:14:0d:30:44:56:8b:56:be:37:3f:2f:e8:1d:ab:56:
e0:dc:ca:2a:66:4c:da:11:7c:5c:ac:a9:c6:2c:b9:1e:96:20:
9d:f3:d1:64:53:f4:77:b0:a4:f4:86:8f:a3:0f:7b:29:c6:9e:
eb:7a:f7:3e:a3:41:eb:e9:2b:d4:39:db:72:bc:83:be:6c:02:
4d:b0:29:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:51:48 2025 by rpki-client