Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
File: hprNGeI6gWZEutDooSuG4SiK0zw.mft (raw, json)
Hash identifier: 8LjQ0idZHoiU9dS2WEwGFyrKXCPVxeSnypD+xksbMQU=
Subject key identifier: 47:C2:C6:AE:47:E9:D0:3B:8D:65:44:8D:50:EF:A8:1F:ED:12:30:30
Authority key identifier: 86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
Certificate issuer: /CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Certificate serial: 0198D65FF2A9A82A39EC0EF5F4209133D073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
Manifest number: 1033
Signing time: Sat 23 Aug 2025 10:01:08 +0000
Manifest this update: Sat 23 Aug 2025 10:01:08 +0000
Manifest next update: Sun 24 Aug 2025 10:01:08 +0000
Files and hashes: 1: hprNGeI6gWZEutDooSuG4SiK0zw.crl (hash: R+3Lwm8P7aY6EovEYNnaVh5iLRtU/iYON00xOv34TUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f2:a9:a8:2a:39:ec:0e:f5:f4:20:91:33:d0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Validity
Not Before: Aug 23 10:01:08 2025 GMT
Not After : Aug 24 10:01:08 2025 GMT
Subject: CN=47c2c6ae47e9d03b8d65448d50efa81fed123030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:c0:99:de:f9:8d:b7:46:ec:04:76:54:9b:
6f:a8:26:06:5b:28:56:ea:83:0f:6f:5f:97:9b:7a:
b9:ad:7b:69:a8:7d:6f:f4:77:33:c6:0c:25:0b:12:
c5:ba:ab:f9:02:31:8e:14:c3:7f:3b:1d:9c:26:ff:
79:53:1c:0b:af:4d:d2:b6:eb:8c:66:66:53:0e:d3:
2f:83:4b:af:a4:71:3f:8f:b7:e7:68:4a:f3:3b:1a:
5b:bf:ac:01:bf:a2:47:ba:39:85:4d:84:47:ec:72:
41:fe:f4:7e:88:57:bb:0e:20:a4:15:75:e8:2a:fa:
87:d4:00:92:b5:04:41:f1:20:b9:ee:10:8d:8d:89:
89:9e:3b:6e:e3:72:dd:d7:26:e8:5f:8b:66:12:a0:
4e:63:4b:fd:48:a1:61:e6:e1:a9:96:ea:6e:3d:6f:
ac:41:c8:6b:7c:88:56:b5:63:a4:f6:bf:8d:36:37:
99:62:2b:fc:22:04:94:31:ed:25:53:0d:b2:0e:14:
3b:5e:8e:74:64:23:25:26:ef:20:1c:47:d6:d6:99:
69:0f:03:30:67:98:4e:8e:9c:97:af:88:89:8a:a2:
a7:e7:28:ab:35:7c:60:59:61:d1:93:7b:7c:f7:08:
38:88:2a:c7:c9:62:47:a1:4a:f1:fc:56:c0:57:22:
c4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C2:C6:AE:47:E9:D0:3B:8D:65:44:8D:50:EF:A8:1F:ED:12:30:30
X509v3 Authority Key Identifier:
keyid:86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e2:02:e1:5d:3d:68:d6:a3:71:05:d1:72:f4:35:5f:8a:5f:
fa:ee:59:1a:5d:d3:7c:74:fb:2c:c3:28:84:f2:83:19:9f:dd:
51:e5:a5:81:2e:b9:4c:0e:4c:53:e5:51:04:76:09:d3:25:e3:
29:6e:f8:7d:ea:b5:af:02:dc:3a:c1:1d:c9:ee:95:f5:52:1f:
60:e9:71:50:f2:4f:48:92:b3:2d:4e:46:52:ce:fd:01:c0:07:
03:8e:1a:0c:73:ca:b7:d8:25:a5:ef:09:bf:48:56:dd:47:53:
2c:62:9a:ff:3c:3e:19:4c:c5:a2:eb:bc:ea:0a:89:b6:a0:6b:
a0:55:47:97:b6:73:72:5b:69:86:4c:7e:0e:25:51:8f:6d:f6:
49:f5:f3:07:5f:eb:4c:3a:42:a8:86:a4:7d:8e:b5:e4:59:b4:
d9:14:1b:33:20:c8:46:60:31:3a:c7:30:8c:7f:8e:cb:d1:dd:
ad:ab:a9:d5:1f:99:00:9d:26:37:05:ff:21:fc:e3:7c:3d:f6:
54:80:b0:e6:d5:01:d6:9b:7f:ba:34:b7:60:3b:b4:83:9e:09:
16:d1:37:ba:fc:f3:b4:3a:85:95:0c:11:16:8f:44:5e:82:23:
bd:51:54:9e:50:2d:3f:d0:95:9c:70:f8:94:78:ff:85:7a:43:
e4:c4:11:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:15:51 2025 by rpki-client