Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: LgxF2JvMTKDAkXFKlnVReX2j9azMT+GO1yB5Zfi6/pw=
Subject key identifier: DB:55:E5:17:0C:61:B1:DB:1C:AB:2B:20:C7:CB:84:74:C2:5F:ED:97
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 0198D4A82EDF7921259532D271DD605690DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 05BF
Signing time: Sat 23 Aug 2025 02:00:48 +0000
Manifest this update: Sat 23 Aug 2025 02:00:48 +0000
Manifest next update: Sun 24 Aug 2025 02:00:48 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: KlnV/7oEzRoPBpXSGTdhT0DICTWO8WpqAtNA/UWh+Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:2e:df:79:21:25:95:32:d2:71:dd:60:56:90:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Aug 23 02:00:48 2025 GMT
Not After : Aug 24 02:00:48 2025 GMT
Subject: CN=db55e5170c61b1db1cab2b20c7cb8474c25fed97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9e:c9:a3:59:87:b1:84:4e:33:1d:ee:71:4f:
52:12:61:b5:4a:63:e6:7e:3e:4c:63:11:7b:b1:00:
bd:dc:ed:52:a3:f5:5c:a2:f2:ff:16:1b:54:28:ea:
94:f6:ef:93:4d:5d:7a:4c:c3:ac:5e:a7:91:36:64:
61:a2:f4:76:5d:be:50:5f:0f:71:0f:b7:7c:87:83:
79:8a:12:6c:db:dd:d7:1a:fe:ad:2e:b7:1b:fa:8a:
a2:ec:c6:cf:5e:fa:a8:98:51:1d:ff:86:9d:21:f3:
73:bb:55:5a:8d:1e:d1:61:1a:d0:da:35:65:95:63:
68:b5:ff:5e:9f:fd:dd:9e:ec:c9:2a:dd:8d:17:f3:
c5:ac:e9:9d:61:a0:9c:c5:f6:05:a1:1d:9d:30:ab:
a9:bc:ec:b6:92:f7:6d:ae:4a:99:62:ba:cd:31:a6:
c3:56:aa:f3:43:6f:4f:ce:b0:a6:57:bf:23:82:6f:
fe:58:9b:e3:13:97:f1:ee:d3:03:27:58:76:56:51:
22:aa:9f:1f:6e:b5:77:ef:d3:8c:da:50:ab:24:14:
d5:ff:47:f9:37:ec:d1:55:f7:ba:ed:ad:41:e3:8e:
76:34:e2:8c:f4:ec:87:fe:e1:8a:f8:58:cd:00:8c:
5a:f7:10:77:47:41:ae:cc:49:e4:f1:34:87:ff:80:
22:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:55:E5:17:0C:61:B1:DB:1C:AB:2B:20:C7:CB:84:74:C2:5F:ED:97
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:9a:70:a0:20:c1:2c:f9:d8:93:c4:ad:de:cf:23:0a:87:e1:
6e:24:41:e3:4e:db:8d:89:7e:51:43:4b:97:e3:48:8d:80:38:
1c:cb:cf:22:fa:b3:2f:41:90:99:26:34:f6:2b:b5:de:71:49:
b5:62:25:77:3d:d4:65:49:e7:e5:37:46:35:27:f2:f4:81:2b:
f0:b3:2b:70:cd:d1:79:11:06:b8:da:0b:0c:03:4a:a3:a4:d3:
0c:fe:9e:de:c9:73:a7:12:82:61:aa:cb:dd:b2:aa:ac:9a:71:
0b:40:b0:56:1e:be:0c:5a:be:50:fc:b1:0e:f1:3f:2e:96:e1:
b2:b6:03:45:2b:7c:cd:54:0c:fc:29:6e:c7:d6:b5:25:9e:e0:
c1:7f:52:33:6d:db:58:88:bf:6b:c7:3a:b2:1d:b4:bf:09:57:
0d:b2:6a:bf:bc:05:fb:13:f2:27:a9:5d:3a:e6:a4:8d:a3:ed:
45:3e:e8:3d:b1:5f:1d:a2:15:e5:24:76:81:29:6a:96:2c:08:
3d:75:0f:4c:39:63:89:81:8a:c7:4e:4a:6e:33:56:22:fc:5b:
ec:a7:3c:63:23:53:ca:1c:28:4e:62:c4:64:7a:30:8c:dd:39:
16:ae:39:dd:07:a1:b1:3e:b3:e8:d2:19:ba:cd:53:b3:c7:85:
57:8c:4f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:21 2025 by rpki-client