Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: cba9cTKP4Tc0T5p1x/fqwGIsptrREVDgf99kJbeLh7o=
Subject key identifier: C8:FA:85:90:A0:5C:3B:88:90:B0:A8:EC:C2:A2:91:00:B2:78:E4:A8
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 0197B632AFAE023E64F84220D7864D976863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 13D6
Signing time: Sat 28 Jun 2025 11:01:04 +0000
Manifest this update: Sat 28 Jun 2025 11:01:04 +0000
Manifest next update: Sun 29 Jun 2025 11:01:04 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: bw/e0SVuykCV4nUcgeCM4X/BCZCiq81bl45qhX/fHFM=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:af:ae:02:3e:64:f8:42:20:d7:86:4d:97:68:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Jun 28 11:01:04 2025 GMT
Not After : Jun 29 11:01:04 2025 GMT
Subject: CN=c8fa8590a05c3b8890b0a8ecc2a29100b278e4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d0:61:e2:7b:df:eb:f7:69:c9:73:6a:11:5e:
ba:da:27:9e:65:4e:15:77:e5:1f:f1:d4:84:70:f5:
74:e6:de:f5:0c:e2:ac:2d:7d:c6:93:4c:3f:89:df:
ca:c0:fc:2f:82:eb:aa:a8:61:a2:fc:c4:f9:34:7b:
5e:d7:17:bb:65:d3:72:55:33:2a:28:86:ea:91:9e:
90:f9:59:b7:79:90:83:a6:68:0b:d6:3f:89:b5:4c:
40:ed:83:41:6f:22:1f:fe:51:7c:04:58:9e:9e:78:
d6:14:b7:07:06:44:09:fa:13:48:98:1f:cb:83:2e:
5e:f2:94:a0:bc:2c:2f:0d:c5:64:b8:b4:f8:d5:e0:
54:39:c0:b4:2f:fd:28:92:34:92:bc:f6:c9:11:8f:
a0:c9:02:7f:55:1a:66:0a:3c:b4:f0:f8:d5:3f:c0:
ea:7f:b8:56:2b:82:0e:69:6f:0a:c2:66:17:3a:b2:
2b:ed:8d:89:59:8e:c5:ed:58:ef:1a:8b:4f:05:4b:
ac:b5:0b:e6:72:53:fc:ff:5d:29:bc:92:f5:0e:16:
c4:a0:9c:c6:df:30:69:00:7d:a9:30:96:5c:8a:bd:
e0:10:9b:e5:22:74:a2:07:41:a8:bf:6a:be:ac:4c:
3e:66:fc:dd:26:7c:ad:52:71:60:c2:15:92:85:3d:
85:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:FA:85:90:A0:5C:3B:88:90:B0:A8:EC:C2:A2:91:00:B2:78:E4:A8
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:67:85:f0:ac:0c:b6:b3:78:00:e9:ba:44:a4:e6:97:06:34:
0f:cf:e8:29:ee:74:58:94:85:a5:2d:68:e8:5a:ff:d5:f9:b6:
ce:17:55:df:02:1c:e1:17:91:f6:27:8f:e1:0d:5c:6e:70:d8:
fb:d4:d7:e8:e8:83:7b:bd:09:dd:6b:32:22:21:71:a3:d7:58:
6d:2e:1b:d6:26:4e:73:da:70:93:e4:53:5e:33:e9:d2:3e:9c:
54:a9:d6:52:3a:45:a9:f3:08:99:65:5b:e7:bc:95:b4:4a:c7:
45:89:1a:45:09:e7:e7:34:e0:57:ca:a5:ba:64:29:dc:2f:57:
80:b0:e5:79:fa:53:88:40:08:f5:46:ac:3a:99:b9:38:8a:0e:
c9:bb:c3:f4:59:dd:f6:a4:df:e6:0c:a4:57:93:9d:af:a2:1a:
db:04:ea:0b:09:69:cd:36:df:5d:77:98:a4:77:5c:05:c9:70:
89:75:60:6e:6c:ea:9b:cf:02:bb:f8:c5:1a:ab:68:ac:26:f5:
01:86:40:fa:05:b2:8a:fa:76:4e:22:42:c7:f8:42:9b:3c:dd:
46:7f:c7:82:23:30:7a:54:b7:8a:8f:d2:a8:50:93:ef:b8:95:
a1:3d:2e:43:ee:8b:a7:d7:3b:99:75:b9:77:b2:e0:dd:94:9a:
d8:b4:b6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:39 2025 by rpki-client