Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: bN6gWhqsd5ZiXRZX0zvx31VO/Dim4xYCgTQQJguDkjw=
Subject key identifier: 84:B4:42:20:D8:C6:CF:35:A9:5A:58:97:16:4A:7C:61:66:43:60:22
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 0198D4741CBFFB0827096D06614E77AF42EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 13F6
Signing time: Sat 23 Aug 2025 01:03:55 +0000
Manifest this update: Sat 23 Aug 2025 01:03:55 +0000
Manifest next update: Sun 24 Aug 2025 01:03:55 +0000
Files and hashes: 1: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: SX4tWauVGJuWw0L9fViwl8xWjANgHGm4E32XU1F+rHM=)
2: jHj1kA03qC8i8hguuEC8ASnj4XQ.roa (hash: 6J5ezyoc/LI46xWXhW/cUUltYyOZg4CBJG0jaVAl1nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:1c:bf:fb:08:27:09:6d:06:61:4e:77:af:42:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Aug 23 01:03:55 2025 GMT
Not After : Aug 24 01:03:55 2025 GMT
Subject: CN=84b44220d8c6cf35a95a5897164a7c6166436022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:f1:12:01:00:a3:6b:33:0c:3a:ac:c8:85:
46:9d:dd:e9:7e:2f:9d:41:b5:01:21:1c:e6:ea:91:
0a:f9:b7:1a:7f:b8:82:92:6c:6f:ad:24:85:b3:94:
44:87:a5:a3:18:94:16:85:3f:0d:d8:dd:4f:95:23:
3b:b0:21:43:b6:90:31:9f:ed:80:59:6e:1a:87:19:
09:59:b4:0c:63:ba:6d:c4:a6:30:9b:c5:a2:37:41:
7d:a4:67:21:c5:b8:90:c7:f9:49:94:6f:0e:32:86:
2f:d5:b4:03:11:f0:21:08:d2:86:52:c4:21:41:a1:
15:1a:65:2a:c8:0b:31:0e:1b:14:fb:3a:85:bf:c9:
71:73:4d:3a:de:70:5a:ff:40:32:4e:9f:7c:6e:6c:
19:45:c0:00:be:82:39:e1:aa:e4:a7:27:74:05:e5:
83:0d:23:93:30:e3:41:89:1c:ef:da:f1:27:15:30:
22:27:ce:b1:08:b1:17:55:af:37:67:16:59:f7:6d:
28:cd:16:c1:19:5a:c0:c0:6b:8d:fd:64:c2:80:ec:
f7:ce:57:9b:a5:60:38:48:8f:4c:fe:87:21:f3:84:
04:5d:e8:79:66:f5:5e:fd:b4:b5:ae:c6:08:5b:88:
c5:64:df:e7:e6:f8:35:33:b8:dd:02:b2:4c:40:4e:
e2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B4:42:20:D8:C6:CF:35:A9:5A:58:97:16:4A:7C:61:66:43:60:22
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6f:82:34:7a:db:a1:60:1b:6e:b2:66:07:26:9d:81:a9:b7:
5c:5a:2f:16:b0:19:89:eb:f1:6e:16:19:67:d7:9e:b2:39:a1:
b1:b5:08:a7:5c:6c:df:f3:8f:28:df:c8:c8:9b:1e:aa:89:0c:
8f:32:81:53:a5:f2:7d:2e:e7:dd:40:33:67:64:2f:d1:1f:2d:
23:7c:87:87:b3:36:8c:d3:0a:6d:11:7e:71:03:c7:71:c7:d3:
23:09:37:f6:83:e2:83:ef:8e:36:72:95:b1:d8:88:c9:19:01:
41:7f:46:a9:af:0c:59:ab:f9:b8:be:2b:ff:42:0f:39:64:ef:
9d:21:bd:7d:82:2d:cc:14:9c:5d:1d:3d:2f:4f:83:d1:b7:6e:
12:a2:01:df:3d:e4:43:1c:67:46:c2:b1:ab:14:2f:02:91:ac:
83:c3:03:a4:89:6e:85:eb:04:60:58:11:e3:9e:ab:bf:1b:66:
b2:6c:52:9d:1d:01:c5:3e:8f:7c:56:a1:5b:35:06:4e:1a:d9:
6d:7a:5b:f6:aa:b3:cf:c9:44:29:ac:dc:de:e8:d9:81:e6:85:
2a:98:24:71:79:ca:a6:87:56:4a:13:76:09:79:c2:ca:e1:64:
9d:1a:9b:39:ce:d8:e8:81:5f:f6:03:d3:72:95:74:78:d6:07:
4e:74:2f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:27 2025 by rpki-client