Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
File: HEIt1-1z0cAEhQAzv5V5tP716dE.mft (raw, json)
Hash identifier: qkYAv7hg+6AX760wNUI4TjkvCukU/ajge1yUtLyXnHQ=
Subject key identifier: 3E:D1:D1:EB:E6:54:47:78:3F:8C:40:D5:76:AD:0F:DA:59:98:35:34
Authority key identifier: 1C:42:2D:D7:ED:73:D1:C0:04:85:00:33:BF:95:79:B4:FE:F5:E9:D1
Certificate issuer: /CN=1c422dd7ed73d1c004850033bf9579b4fef5e9d1
Certificate serial: 0198D5F138DAA7D5E1C878152769D40F6D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
Manifest number: 010D
Signing time: Sat 23 Aug 2025 08:00:12 +0000
Manifest this update: Sat 23 Aug 2025 08:00:12 +0000
Manifest next update: Sun 24 Aug 2025 08:00:12 +0000
Files and hashes: 1: 4xTwGwEgqqNgpztG8b7-qFnWnmQ.roa (hash: G+NieVImXlejNVzPXtYNNAfkIKyCKo0Pau1bwovvw64=)
2: HEIt1-1z0cAEhQAzv5V5tP716dE.crl (hash: 4m3cG1XWO9f1mI4PIXiNn/5Nji0muDee6ujVoJ323V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:38:da:a7:d5:e1:c8:78:15:27:69:d4:0f:6d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c422dd7ed73d1c004850033bf9579b4fef5e9d1
Validity
Not Before: Aug 23 08:00:12 2025 GMT
Not After : Aug 24 08:00:12 2025 GMT
Subject: CN=3ed1d1ebe65447783f8c40d576ad0fda59983534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c6:50:ea:17:61:aa:34:da:f8:18:4d:78:26:
17:48:b4:af:35:f2:2d:77:92:2b:7b:1c:1d:34:17:
ff:89:e6:67:7d:3f:07:79:49:57:82:3b:58:d5:67:
91:40:df:d0:b0:8b:84:82:4e:c4:b7:0d:eb:2f:33:
51:de:cf:e8:8a:76:23:97:90:73:3b:a2:ed:50:07:
8e:17:da:12:ae:83:b5:18:92:f6:7a:01:76:70:ae:
11:b6:c4:ca:0c:d9:f5:85:03:94:07:df:da:5b:1e:
bd:6e:d4:17:14:05:ef:40:4c:a7:97:52:a8:1a:70:
06:8f:39:38:56:cd:56:88:b9:cb:b3:0a:47:00:de:
d9:80:17:b3:93:78:38:65:5f:4f:30:01:2b:29:26:
ae:2d:77:e5:9e:e9:27:70:a0:04:8e:84:c2:34:d9:
4d:50:82:b0:81:23:48:3a:69:54:f5:a1:ba:1b:3f:
e7:3f:c1:55:1c:dc:48:9f:c2:15:4a:a2:c6:74:21:
61:6c:c1:b8:e6:12:36:84:c0:a1:f1:58:aa:86:b6:
b9:4b:3b:11:ed:86:dc:b7:f2:b7:94:b2:b8:09:b1:
25:cb:95:cd:74:57:d9:3f:da:04:4f:32:e5:29:40:
3a:69:00:83:24:b1:26:dd:22:48:50:03:b1:97:42:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D1:D1:EB:E6:54:47:78:3F:8C:40:D5:76:AD:0F:DA:59:98:35:34
X509v3 Authority Key Identifier:
keyid:1C:42:2D:D7:ED:73:D1:C0:04:85:00:33:BF:95:79:B4:FE:F5:E9:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:e3:b0:62:a8:54:f3:1b:02:0e:d5:9c:8c:e0:23:e5:39:10:
ea:e9:e6:e6:38:e5:03:fd:8a:43:94:9d:5c:e7:e6:66:18:ce:
16:53:cf:b1:bd:ca:67:55:65:47:44:52:b0:17:13:93:b6:e6:
5f:4a:22:42:58:d7:14:4a:23:75:bc:47:a3:99:ba:0a:bf:cd:
d8:5b:f8:9e:81:57:24:df:1e:23:d1:c2:de:59:80:a8:9e:be:
8c:36:1a:5a:09:d4:13:54:0e:9d:ba:e4:d2:6f:49:38:94:13:
55:29:57:13:f5:76:56:33:f6:5c:9f:ac:5b:d0:a3:48:99:55:
d6:5d:68:cc:b0:dd:b0:44:b4:a9:30:df:8f:0f:fd:4a:4c:ae:
cb:f9:fc:e8:49:ec:f8:e3:47:63:a8:e3:b4:79:10:a6:58:d4:
54:62:4a:f9:fa:bf:d5:68:d2:73:1d:31:d0:a1:e6:00:c2:e9:
53:52:99:87:11:ac:e8:3b:b7:b1:e2:ec:16:8a:b0:fb:7d:01:
d5:12:10:14:0f:6a:28:90:8c:ff:1a:18:e9:bf:37:8e:da:b3:
24:02:97:59:13:1f:bd:7b:e1:5c:8a:19:1c:00:c9:ac:ea:66:
69:eb:62:fb:aa:ac:d8:83:3d:c4:e0:7e:72:8b:b8:ab:cf:0d:
bb:8d:a8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:38 2025 by rpki-client