Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: y1DbzgLLgBz2tv5wVsDfWRC8pE8GzFwCf3rrS3m1iHY=
Subject key identifier: 85:4B:F9:A3:D7:AA:25:35:1F:E0:41:21:8E:B9:30:05:CD:59:A2:6F
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 0198D5F1292DC9FB25C7A29A700635388A9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 025D
Signing time: Sat 23 Aug 2025 08:00:08 +0000
Manifest this update: Sat 23 Aug 2025 08:00:08 +0000
Manifest next update: Sun 24 Aug 2025 08:00:08 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: EwckG/aqHAyajXCjluxUeuTenShgXFPqnIYH6U+RqAI=)
2: c3OL94EDPQLb4CRqP5cj8oMrCsw.roa (hash: 34I7V6n7QXJwJzSLeOXd+BiYE6TrztMTe0wu1SMTuxY=)
3: wSGsamIp2JavINuAG5Ge2cvZdUw.roa (hash: Yu+PmAJW3EqzZtBozauuFMpDk9UoMVCMv7Pei6FBkQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:29:2d:c9:fb:25:c7:a2:9a:70:06:35:38:8a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Aug 23 08:00:08 2025 GMT
Not After : Aug 24 08:00:08 2025 GMT
Subject: CN=854bf9a3d7aa25351fe041218eb93005cd59a26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d0:92:7b:9b:02:0b:11:5e:d4:27:f3:ed:1f:
52:ed:fc:d6:9e:49:47:bc:71:27:cf:52:15:f0:64:
21:26:6e:bd:8b:41:45:19:b1:3d:65:3b:06:9f:52:
69:18:59:4f:dc:f1:58:8e:d6:83:56:bc:57:cf:07:
a4:72:f9:fe:37:b8:3c:60:02:e3:92:bd:8d:ca:7f:
6d:2a:4a:c0:c8:99:6e:db:cf:5c:79:52:03:4d:22:
1a:42:5d:fb:b2:b8:26:47:e8:9d:98:f5:b2:31:e8:
1f:21:2e:4a:b5:38:f3:65:c5:da:12:1f:30:cf:02:
24:12:f9:83:46:39:68:59:9c:c0:de:cd:3c:2c:1d:
1e:13:e8:e3:a8:d1:20:1e:b5:57:0e:dd:26:a5:e0:
09:37:6b:f9:2f:67:bb:39:2f:9e:76:fc:fa:fa:00:
fd:36:bb:be:27:b9:99:3f:7a:a1:ce:1a:e4:2b:f0:
7d:5f:2e:f3:7c:40:d2:d8:34:9f:54:50:fc:5d:60:
fc:af:29:03:b3:c9:54:b4:b2:40:ec:0a:31:0c:f6:
bc:af:e9:dd:27:19:db:0a:a5:ea:53:e9:11:8d:e5:
a3:6b:8f:eb:7f:90:62:32:5b:60:2c:3a:a6:7b:af:
08:3c:f9:6d:fa:37:5a:33:c3:42:38:75:ca:f6:56:
13:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4B:F9:A3:D7:AA:25:35:1F:E0:41:21:8E:B9:30:05:CD:59:A2:6F
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:11:65:7d:dc:4a:eb:f2:3f:d5:41:48:16:29:42:e1:dc:ed:
f5:3b:29:10:d5:6c:54:9f:6a:7c:5d:dc:ec:7e:29:f2:4f:51:
90:93:da:1f:77:26:6c:48:3e:83:74:fa:ca:4d:32:0e:69:2f:
3e:0c:b2:3f:9d:dc:ee:69:29:62:22:48:b7:9b:bd:a5:00:36:
35:0b:5e:f1:a8:07:73:c4:c0:54:6e:ca:d5:d2:d6:12:ff:a4:
64:f6:d3:ce:f7:39:c9:e1:5b:4f:14:52:0f:b9:4d:88:2b:8e:
f1:28:76:5d:4b:33:cc:8b:d8:d7:ff:5c:6e:b2:d0:88:26:b5:
f4:39:04:88:35:f7:e6:1d:37:86:a5:d9:1c:86:1d:a8:70:11:
55:51:66:de:6b:2d:48:0d:f5:d7:6b:52:77:45:b7:85:e7:fd:
95:2a:0a:42:d3:b8:e5:90:3f:4a:68:c0:49:79:2d:be:c6:c8:
86:cd:43:48:c0:07:fe:df:b6:66:7a:88:95:29:b0:be:fd:d0:
7f:77:14:8c:50:72:47:07:19:ac:29:f5:df:9f:96:ec:e5:71:
6a:57:5a:05:a9:c3:62:49:5e:78:46:10:b1:9d:39:57:ba:1a:
ac:5e:cf:62:e9:fc:35:cb:43:20:63:f4:8d:e9:e9:91:31:10:
c2:98:18:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:27:20 2025 by rpki-client