Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
File: HPoACq4LHA_NOZiRS7dt_HLoc1g.mft (raw, json)
Hash identifier: SUY798QGQ6lfm20Uk+cgOCNFXPT8H0Yp2/c+MsjEVck=
Subject key identifier: F4:54:2D:32:A0:C5:63:82:6B:6C:A4:54:BE:D4:14:E7:82:AF:C3:8F
Authority key identifier: 1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
Certificate issuer: /CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Certificate serial: 0198D54E0769750DB2887F21E5EA84C1CD09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
Manifest number: 0320
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: HPoACq4LHA_NOZiRS7dt_HLoc1g.crl (hash: GF4nWcalR7rJ48vgMBknCj48kcaonoCukfzkwiCjkww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:07:69:75:0d:b2:88:7f:21:e5:ea:84:c1:cd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=f4542d32a0c563826b6ca454bed414e782afc38f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:51:88:dd:5f:37:d0:a5:83:3f:1f:02:78:
56:fd:12:21:02:98:89:85:37:15:19:b3:c4:d2:34:
96:ce:17:3d:2f:16:fd:3d:9a:e5:05:6e:54:70:31:
13:08:51:d3:00:ef:a4:77:99:12:0a:b4:1b:51:1b:
a1:ca:f8:76:f4:02:d6:c2:7b:46:a8:9a:f0:69:27:
34:23:8e:2f:11:f0:f1:8d:e8:5b:28:a8:c0:a3:27:
05:f6:9d:b4:2b:41:4d:11:9a:cd:ba:ed:85:e9:d4:
12:be:35:5f:68:c2:c9:ba:dd:8a:6d:95:c8:09:06:
dc:2d:24:71:cd:6e:a9:ec:e8:3a:0c:a1:f6:61:d7:
e5:a8:c5:9a:f6:b0:12:64:cf:8d:72:37:7d:96:41:
c1:92:ea:10:dc:ae:d5:aa:9e:73:3a:ee:54:4f:b0:
64:3e:3f:38:dd:ea:c9:22:24:41:c3:94:fb:af:b0:
54:fb:07:60:d3:db:4f:c2:8b:8b:53:bc:e4:50:13:
0d:a4:50:97:f0:21:32:67:25:4d:51:c6:7d:54:49:
44:d6:98:83:e4:67:86:ee:9b:c1:43:e3:e8:3d:10:
8a:93:9b:22:a0:b9:bc:23:2b:f4:17:23:62:e6:96:
a2:bf:8f:15:4b:9e:a8:9c:2d:d0:f8:4a:0c:ea:b6:
c6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:54:2D:32:A0:C5:63:82:6B:6C:A4:54:BE:D4:14:E7:82:AF:C3:8F
X509v3 Authority Key Identifier:
keyid:1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f9:6c:73:f6:fc:30:69:dd:14:e5:1e:6a:bb:08:16:c4:95:
84:b8:53:b4:82:6b:b8:e6:e8:e6:f3:c5:5f:30:19:66:50:72:
0b:a8:0f:ed:01:d7:24:20:0d:f1:ba:34:5a:d7:31:2f:1b:29:
57:11:e7:71:de:6e:e8:be:a1:ec:23:8c:b0:b1:e8:ce:42:1b:
38:53:78:e1:d0:d7:16:a2:4c:d2:42:71:37:3e:3e:c1:ac:f2:
c0:9b:bf:bc:79:67:7b:fe:16:71:e3:fe:a5:6f:00:27:f1:4c:
5e:a8:d6:fe:e3:48:c2:ee:81:b5:e0:39:85:f5:95:92:2a:64:
0f:d9:19:a8:a5:66:2f:f0:52:40:97:bc:20:19:52:e6:fe:78:
28:51:4f:6e:a8:4c:f6:49:cd:2b:2c:ac:a0:32:16:9f:95:26:
85:e0:02:bf:1e:d9:2b:f0:5a:af:a1:81:b6:ec:78:23:d9:94:
c7:4a:b8:d7:00:49:b7:a5:4a:8b:5c:a7:eb:85:c6:c2:37:d6:
6a:a2:fa:e5:09:41:38:f6:df:5b:fb:30:42:d3:99:a1:be:a7:
bf:8e:1a:69:b2:cc:be:3f:d8:38:b6:72:c3:66:1e:98:8c:e4:
b7:b5:0f:58:1d:3c:3f:aa:2d:62:80:4a:b3:80:5b:2c:2f:8e:
73:78:ff:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:16 2025 by rpki-client