Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
File: hprNGeI6gWZEutDooSuG4SiK0zw.mft (raw, json)
Hash identifier: ntc7v9dX5ghsnwxfReqDo87zY6sSGbnawSdIrrOBko0=
Subject key identifier: 4A:D7:35:55:E0:6A:9B:9B:53:D2:54:3F:AF:F8:19:8E:5F:6D:5A:AF
Authority key identifier: 86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
Certificate issuer: /CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Certificate serial: 0197B6A1C1B4D9E46921EB8B474A366538DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
Manifest number: 0F9E
Signing time: Sat 28 Jun 2025 13:02:23 +0000
Manifest this update: Sat 28 Jun 2025 13:02:23 +0000
Manifest next update: Sun 29 Jun 2025 13:02:23 +0000
Files and hashes: 1: hprNGeI6gWZEutDooSuG4SiK0zw.crl (hash: DJP1fnj4jpt6fSkf5K0KkXnV0EqfEiiM2CdzJ6zjioM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c1:b4:d9:e4:69:21:eb:8b:47:4a:36:65:38:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Validity
Not Before: Jun 28 13:02:23 2025 GMT
Not After : Jun 29 13:02:23 2025 GMT
Subject: CN=4ad73555e06a9b9b53d2543faff8198e5f6d5aaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f9:3b:77:2d:cf:30:2f:7e:fc:53:b5:01:d9:
5b:cf:17:76:7b:aa:96:4e:18:54:ab:d2:bd:33:07:
1c:89:ec:d7:6a:24:b3:17:6c:ec:16:ff:e8:8b:19:
5f:84:2c:74:20:08:2e:e2:34:01:ce:ae:e0:67:8c:
0f:99:c6:60:9f:6d:4f:e0:06:fb:3d:c0:a6:ac:f4:
13:de:dd:cd:9b:e0:89:7c:73:56:63:57:3a:0f:67:
ea:f1:01:c5:f0:02:c2:ea:97:bb:06:de:c5:88:70:
86:93:f4:05:e8:35:b8:e7:74:d6:0b:9c:30:e8:0a:
9e:97:b1:ae:e5:22:95:93:86:94:f7:40:8a:65:4e:
8e:3c:bb:73:78:a6:df:90:a6:b9:65:cd:75:75:cc:
8e:b3:47:f8:37:1e:a9:4d:0b:d9:e5:be:17:b9:08:
fd:be:b2:84:bc:10:26:d9:3d:4f:18:a3:3f:c5:d6:
61:c1:5c:2c:f3:6a:90:98:cd:e5:48:d1:36:dd:ad:
6f:cf:00:29:ec:77:c2:bc:ce:94:dd:b0:a7:68:46:
d2:a8:c3:aa:47:0a:0a:0b:7b:b6:bd:8d:cc:5e:90:
f2:d4:0d:9e:80:9e:38:28:3a:7e:0f:3b:8a:76:57:
94:11:74:1e:c4:3b:e4:8d:19:47:6e:2e:64:7b:40:
59:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D7:35:55:E0:6A:9B:9B:53:D2:54:3F:AF:F8:19:8E:5F:6D:5A:AF
X509v3 Authority Key Identifier:
keyid:86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:fc:25:b9:ee:f3:d0:24:28:14:5f:c2:a5:bc:91:52:c1:6e:
4a:86:3c:f4:10:20:55:4c:33:58:44:89:bf:b0:85:ec:83:62:
56:b0:64:98:4f:a8:d9:9e:a7:ca:c5:79:f7:c5:f3:20:06:43:
c6:44:bf:a0:8a:08:81:ea:d4:ff:a1:8a:70:d2:36:57:84:73:
f4:08:77:cd:d6:fb:c7:f7:7a:5e:bf:8f:52:d6:66:1b:3b:45:
1c:85:f2:2a:5e:b7:a1:ae:2c:e4:94:0c:78:b2:20:4e:f1:18:
78:dd:b7:e9:4c:9e:cb:cf:b4:89:80:40:f9:32:5d:e7:21:1d:
72:8a:1b:44:6d:90:a1:d2:88:89:56:8a:1f:08:f2:90:ad:78:
80:e9:4a:d8:dd:7b:e8:28:8e:2b:7f:f1:31:bc:35:22:c8:55:
04:9e:ee:67:35:88:fb:2d:17:12:0d:49:dc:ff:70:46:b0:04:
90:3a:a1:29:11:ad:e5:29:6d:d0:63:e9:6d:7c:57:61:b0:2d:
19:72:43:40:95:50:f9:76:bb:6e:a3:f9:85:ca:17:13:73:27:
1e:12:9d:3a:f2:57:97:26:9b:65:79:e6:c8:24:61:b6:32:8c:
9e:cf:56:92:7e:7a:80:9d:8c:4a:84:47:0f:43:e8:17:f0:99:
e9:d2:53:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:54 2025 by rpki-client