Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: lKOkY2CBenCV72f+qCas8yXCgT4nki2zM+JcV1BRdzs=
Subject key identifier: 4B:06:89:98:2B:E4:2B:67:E9:27:D7:44:E0:E6:4C:37:70:AE:50:9A
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 0197B77BF27F91BDFE5CE581C0DFD81E6C43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 01C7
Signing time: Sat 28 Jun 2025 17:00:42 +0000
Manifest this update: Sat 28 Jun 2025 17:00:42 +0000
Manifest next update: Sun 29 Jun 2025 17:00:42 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 0vHSTEOzWfhibwz9tFDpBCtLD+lSJQ7AlByN95/xm4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f2:7f:91:bd:fe:5c:e5:81:c0:df:d8:1e:6c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Jun 28 17:00:42 2025 GMT
Not After : Jun 29 17:00:42 2025 GMT
Subject: CN=4b0689982be42b67e927d744e0e64c3770ae509a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:bf:4b:d6:71:15:20:00:d4:b4:cc:f1:31:
2d:87:0c:c8:06:68:f2:3d:83:c5:44:b5:9c:4c:bc:
f8:ac:a6:4c:8e:c7:09:aa:88:b8:80:e9:74:05:a0:
a4:2c:43:4b:a9:62:7e:1e:f4:92:96:3f:c7:35:ea:
ec:61:02:b3:7c:28:9e:14:3a:20:02:fc:9d:95:aa:
5e:fd:da:c7:6c:72:41:11:9b:3a:71:69:d7:c1:00:
1f:85:e9:f5:d0:10:ae:2b:77:3a:f3:4e:a3:2e:79:
2b:a7:a9:cd:f0:a0:ae:2b:6f:f9:14:24:5b:81:92:
66:08:64:d2:71:0b:1a:0a:44:f1:57:3a:0f:75:9a:
b2:22:ad:cc:e0:35:01:75:8f:38:6c:8d:31:56:2b:
03:ae:3d:e3:2e:c2:61:0e:ac:fe:2c:5b:44:b5:22:
60:55:c2:25:c0:bc:27:ce:cd:48:8d:7c:54:3b:c2:
70:fd:34:84:75:60:00:e2:31:21:eb:37:e3:bf:38:
42:14:a8:8d:0d:20:cc:99:d3:b5:68:38:10:05:77:
27:80:6f:2f:a3:12:67:bb:45:04:60:62:c7:c3:d0:
4c:bb:d7:f7:30:90:9a:ca:d7:50:77:5e:c9:09:f1:
3f:c0:12:7e:d5:86:cb:2a:05:03:bb:fd:f8:b0:38:
b6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:06:89:98:2B:E4:2B:67:E9:27:D7:44:E0:E6:4C:37:70:AE:50:9A
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:03:da:cd:85:20:25:e4:b8:af:ea:c2:51:df:3c:c8:f9:0d:
0e:a2:a4:22:72:ff:03:8c:05:42:5b:c6:3c:7a:de:6d:19:99:
16:63:a4:29:15:b0:5e:78:1c:30:a8:26:8c:73:d2:9b:4f:fc:
ff:13:32:a7:ed:79:5e:a4:2e:fd:5b:70:66:e5:61:cc:9e:1e:
19:15:75:6c:1f:de:87:2e:0f:c8:7f:6c:30:56:16:5f:40:aa:
8b:d9:b9:5b:26:de:3c:6e:aa:96:a0:1d:a4:49:40:e4:4a:bf:
bd:8a:11:5c:af:f1:84:34:f3:29:51:b0:5f:6d:69:c4:1d:2b:
e1:bb:4e:da:e6:4c:77:91:cc:4c:01:60:61:d1:af:59:81:21:
cd:a9:a8:ea:5b:88:40:5e:c9:6f:73:2d:d5:72:05:5b:80:f0:
83:2f:75:df:d0:40:56:5f:47:c2:d2:4f:28:ad:26:86:5c:7c:
68:62:5a:fe:5a:05:87:f9:0c:6d:b9:93:bf:5c:29:6e:4e:5b:
31:19:4e:87:e4:83:3a:32:9d:e7:91:98:dd:1b:89:13:03:0c:
d7:2e:5f:c5:b4:16:d3:4a:d9:13:b4:36:14:d6:ac:19:23:b4:
36:8e:58:c5:0c:93:94:95:a9:b1:e7:d0:f7:f0:2c:fb:ae:c6:
7f:da:5e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:11:26 2025 by rpki-client