Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
File: HvNtbboJfqbUsq2k52PoTss9gXo.mft (raw, json)
Hash identifier: gd8hJ7LD/zrDV2K68poEnxki/B+U6jgV4clLfxWZ9dI=
Subject key identifier: 55:07:84:EE:EC:23:4C:F5:42:C3:C5:85:20:6E:CE:5D:C2:87:EB:B6
Authority key identifier: 1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
Certificate issuer: /CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Certificate serial: 0197B74518606CD1F2FB1CF150AA30BD6819
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
Manifest number: 04A0
Signing time: Sat 28 Jun 2025 16:00:48 +0000
Manifest this update: Sat 28 Jun 2025 16:00:48 +0000
Manifest next update: Sun 29 Jun 2025 16:00:48 +0000
Files and hashes: 1: 1-fDLqnKfMZzfosw8Gra-kuHRukQ.roa (hash: 91Wi2oW4Wdmr3Kf24VCGVEfXWacp6jcVuiTMlTsIcZQ=)
2: HvNtbboJfqbUsq2k52PoTss9gXo.crl (hash: 8U9n0/If1vlDSc8ZkbwcVhXg3r54nnRFefyVTkfLFxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:18:60:6c:d1:f2:fb:1c:f1:50:aa:30:bd:68:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Validity
Not Before: Jun 28 16:00:48 2025 GMT
Not After : Jun 29 16:00:48 2025 GMT
Subject: CN=550784eeec234cf542c3c585206ece5dc287ebb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:19:db:b0:79:cf:e7:67:41:36:84:3d:ae:77:
ca:c1:27:b2:3e:13:9b:a0:be:0c:6a:35:15:c0:ee:
3c:8b:ff:15:22:4f:a3:ee:7a:c2:d7:f2:10:2d:2d:
09:fd:bd:68:71:19:bd:fc:ef:f2:4d:af:58:11:66:
3a:64:e1:30:ee:b9:77:57:87:e4:de:1a:c9:63:fb:
7b:71:f1:6c:e0:61:f6:e5:5e:71:e8:41:cd:31:48:
82:f4:3d:51:d8:38:39:ca:31:a6:16:3f:1e:3b:03:
56:37:20:80:79:8e:50:fc:d9:54:6e:9a:d9:59:48:
9d:84:cc:d7:0a:44:4b:93:de:20:58:21:62:d7:ea:
71:c0:3a:70:b2:c1:e8:fc:9e:79:cd:dc:a3:15:f0:
ed:81:46:b9:23:64:a4:24:c6:f5:51:c1:15:9b:d4:
bb:eb:58:45:10:10:88:9e:c9:ac:c7:47:76:a5:5b:
6c:4e:39:b6:d7:92:fd:a5:ff:5b:fd:97:ff:00:fa:
7a:48:05:07:6f:fa:c2:17:44:49:5c:ce:bc:d6:11:
cf:e8:95:db:02:c1:24:b8:ef:d8:be:a4:6e:b4:51:
c4:54:99:43:67:0c:da:13:f8:10:33:37:1b:d8:37:
db:72:20:5f:e2:f4:1e:21:c8:82:10:ca:aa:b1:11:
d4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:07:84:EE:EC:23:4C:F5:42:C3:C5:85:20:6E:CE:5D:C2:87:EB:B6
X509v3 Authority Key Identifier:
keyid:1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:d3:f9:ea:cd:5a:ea:6e:4f:30:07:55:1d:96:7b:7a:da:13:
ff:1c:1e:45:cb:54:2d:ac:7f:9e:e4:31:de:d0:02:97:ce:dd:
89:b9:35:4d:c3:24:72:b8:9b:7e:d0:c4:64:e8:8e:37:c7:30:
42:cd:71:69:b4:e0:6f:56:d8:45:ac:69:4c:52:0f:15:55:f3:
49:42:9d:0f:33:7f:51:4d:78:8b:0f:50:97:0f:e6:ad:99:58:
32:1c:ff:2a:68:f7:75:d4:30:f0:5a:93:2c:90:33:ee:4e:b4:
e9:b3:2d:45:c9:94:25:2e:e7:6f:72:01:5d:f2:ee:4e:20:f7:
8a:09:6d:d2:28:e8:8a:f4:22:b4:73:47:9e:c5:a1:3d:f6:5f:
cd:e6:f3:f6:09:6b:65:cd:0c:6b:e5:f5:dd:c0:20:ec:fc:68:
84:6b:51:55:47:6f:73:e4:11:28:1e:da:32:1b:dd:08:96:37:
46:07:4e:f3:2a:b5:78:d5:d6:74:bd:9e:be:c0:d9:f1:cb:23:
ff:98:d8:e3:26:7b:bb:27:60:d3:c7:34:c0:da:b4:46:a2:61:
c1:f9:02:dc:5c:88:86:41:2e:66:f6:a1:8f:46:df:88:77:63:
df:64:ea:0d:82:1c:d2:0f:41:94:37:df:6c:d4:f6:5e:50:ef:
a0:6b:b5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:47 2025 by rpki-client