Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: hFoxbVZw27AZ6/NbGxAPDx1X1SFj6DF4l6ojtWIiURQ=
Subject key identifier: E7:0A:23:15:DE:77:70:C1:7F:A6:9A:FD:2E:A6:BC:9A:21:33:50:41
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 0197B6D793E0470532271C56A2ED623742DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0C9A
Signing time: Sat 28 Jun 2025 14:01:10 +0000
Manifest this update: Sat 28 Jun 2025 14:01:10 +0000
Manifest next update: Sun 29 Jun 2025 14:01:10 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: K4nN2I7RC0KMjE6wzRTsJ0JSuBmNbogDsYJC66U+lJQ=)
2: ackszuiJCTUVf3NL6BGlMWZR6mU.roa (hash: eS/ev9znkjBG3HaRk+tKGqjX3/CUPsNsHqj4Rs2K9+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:93:e0:47:05:32:27:1c:56:a2:ed:62:37:42:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Jun 28 14:01:10 2025 GMT
Not After : Jun 29 14:01:10 2025 GMT
Subject: CN=e70a2315de7770c17fa69afd2ea6bc9a21335041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a1:84:6a:3e:03:2e:87:01:c0:86:b4:be:6f:
d6:19:5a:39:67:57:57:20:be:b0:9e:20:ab:0d:ac:
b0:3c:76:ec:a1:02:06:de:5b:47:05:6d:b5:e4:df:
5b:5a:c7:1e:9c:f6:49:32:91:a1:c5:67:da:77:21:
c2:1f:b4:38:12:05:5f:b7:38:a7:4c:c3:97:c1:a7:
ee:0b:b4:95:87:7f:ae:8d:f6:92:06:a9:89:41:46:
97:f9:13:19:f6:51:51:b9:40:35:97:12:f6:dc:2a:
4a:70:38:2a:48:ac:00:77:b7:7c:70:7c:d6:7b:c0:
3b:5a:b5:7e:31:00:af:28:9d:1a:68:df:12:be:73:
0a:82:b6:fe:81:cd:13:36:65:f2:c9:32:a0:c9:e1:
17:a4:05:90:1d:d8:ff:a9:d7:22:95:e5:79:3e:e0:
78:ef:ce:99:ba:d5:03:ca:56:d3:c6:cf:c5:73:0f:
bf:01:86:bf:dd:bb:a6:a0:43:30:d5:a8:a5:4d:9b:
c5:69:28:52:67:b5:4f:56:4a:44:32:12:e8:8e:2c:
0e:11:cf:24:70:4b:a3:8e:d5:22:f0:b0:e0:a4:c7:
1a:e7:33:6f:65:7a:05:33:be:c5:a6:fa:9a:65:2b:
f9:46:55:a8:75:e0:0d:0b:51:f0:ec:f4:b7:55:7c:
e1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0A:23:15:DE:77:70:C1:7F:A6:9A:FD:2E:A6:BC:9A:21:33:50:41
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a4:5f:7c:62:63:ac:35:bb:8f:47:c6:ae:db:93:2d:ca:6c:
08:63:05:de:01:4c:75:33:22:04:ff:2a:e2:72:9a:a2:a5:fa:
44:b5:58:36:66:5b:92:ad:aa:b8:ed:89:23:d9:46:13:29:1f:
e9:21:2e:47:2b:aa:c1:53:72:b8:76:e9:bf:ab:d3:cc:bb:38:
3a:03:a9:f1:5f:8b:a6:40:01:ad:83:09:6c:89:7f:b2:3c:f7:
eb:ae:08:cf:70:53:8a:62:4c:45:67:39:57:c9:f5:6c:13:a5:
1c:8a:95:46:c7:e9:39:56:b2:40:6f:c5:72:89:aa:fc:88:26:
3c:8f:cd:28:47:e0:d2:a3:bb:07:5d:f8:8a:19:93:b0:91:b3:
4f:d3:4e:47:79:a4:2e:ca:25:c2:d1:09:23:1e:f6:b8:a5:20:
99:c0:57:e1:10:55:48:0d:f5:22:00:cb:18:2d:6d:61:db:a8:
7c:dc:8b:5a:03:25:9c:50:38:92:28:24:a5:54:c9:7d:f5:2b:
bb:6f:a7:b9:e3:9d:25:da:31:12:62:db:71:62:dc:c1:1a:69:
a7:42:b5:e5:21:bd:6d:6e:58:ff:9e:17:92:db:06:a7:e7:29:
06:dd:1b:b2:51:fa:d2:96:e5:6e:25:36:8d:e9:96:3b:2e:4c:
16:fd:43:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:26:09 2025 by rpki-client