Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: YuD/3D/KYLNGyhBV/Dt+SuDPrpp8L6coHtIJqjzN1E8=
Subject key identifier: 33:EC:58:C9:BB:BC:32:8A:8E:45:53:85:BC:EF:98:7C:FD:CE:64:B8
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 0198D660E53E7F1E5E58C7228495266F8D8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 153A
Signing time: Sat 23 Aug 2025 10:02:10 +0000
Manifest this update: Sat 23 Aug 2025 10:02:10 +0000
Manifest next update: Sun 24 Aug 2025 10:02:10 +0000
Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: BdExp0MJwb6CVcchRYZYtKm2Q7823/l9fqY1HzAUXlM=)
2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:e5:3e:7f:1e:5e:58:c7:22:84:95:26:6f:8d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: Aug 23 10:02:10 2025 GMT
Not After : Aug 24 10:02:10 2025 GMT
Subject: CN=33ec58c9bbbc328a8e455385bcef987cfdce64b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:bb:ed:63:a6:ea:51:cd:d8:3a:5b:e6:62:
23:cb:71:0c:8d:c8:bd:0d:14:bd:bf:7d:f8:5b:24:
46:18:f3:40:dd:19:d5:72:25:16:e8:3b:e7:0d:70:
06:23:c9:c4:78:9d:03:e8:f9:85:04:22:48:5c:1f:
f6:1e:b5:f6:50:b4:99:b1:3d:b1:78:1b:94:6d:fb:
91:31:b7:8e:58:7d:65:19:0a:2c:bb:57:1b:b3:e3:
d6:d6:17:ec:0e:72:41:41:33:40:2f:45:67:61:6f:
a4:dc:b5:9f:dc:ca:ed:c5:90:bb:f8:51:17:e9:d8:
71:77:97:d3:1b:ff:25:3a:9c:dd:89:e0:00:6f:37:
17:a3:43:46:26:27:28:7a:1d:47:ec:3f:d9:b7:53:
a4:ed:61:4d:8c:df:9e:ba:89:a8:be:91:ab:92:e6:
b9:fb:d7:3f:3b:d2:58:10:f0:a7:c9:c4:a0:45:89:
95:80:f0:af:09:b8:d8:2d:2e:31:2e:ea:39:d7:bb:
a3:9b:b9:15:f8:33:7a:19:b7:ee:90:13:89:0a:f3:
35:88:e8:a8:54:3a:e1:16:d0:9b:ab:d7:a6:8d:90:
ea:49:f7:a6:1f:79:3e:85:17:6a:67:f0:3d:88:d7:
1f:d6:5d:38:71:91:f2:6d:e2:f4:00:3a:24:bc:41:
f2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EC:58:C9:BB:BC:32:8A:8E:45:53:85:BC:EF:98:7C:FD:CE:64:B8
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:43:40:21:0d:40:75:9b:e2:de:55:b0:5b:f5:19:1e:79:82:
b9:db:85:83:38:2f:b4:34:71:54:5a:c0:28:b5:c4:6e:ae:e0:
f1:06:fe:7c:eb:28:23:80:a3:b1:5d:2d:3b:65:44:63:3f:ef:
86:71:d9:11:f8:05:0d:90:53:ad:59:e5:42:04:a8:52:bf:bb:
cf:5e:c5:5f:85:50:ce:5b:22:8e:43:62:5d:ff:98:8c:03:e8:
20:28:f3:08:5d:33:8d:89:4f:01:3f:81:1a:6b:a5:1b:44:7c:
c4:16:49:c5:df:3f:61:69:22:3f:b3:87:57:16:b3:3a:50:a5:
01:11:b2:14:bc:1f:d8:53:0b:af:41:02:e0:25:bf:ac:c0:b3:
b3:cd:e7:b2:b0:bd:7f:8d:18:6b:fa:5d:f0:6e:0d:48:be:54:
40:b2:19:67:49:47:a4:1e:2e:fb:f1:cf:9c:07:59:20:18:d3:
75:3f:d9:a4:ae:0f:08:4a:7e:a1:3c:a9:8b:f4:1d:f6:35:44:
02:06:29:dd:eb:97:2f:d1:29:a6:96:69:12:32:52:89:e0:b9:
e2:64:70:1c:85:1c:45:39:af:21:c6:08:df:19:2d:17:bd:11:
80:d4:83:3a:c9:c6:a9:d3:cb:18:29:3a:f2:51:aa:62:0a:3b:
1b:b7:b9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:24:07 2025 by rpki-client