Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier: PEIj3usNSzhrXMZXBm1dkMHcwNoNl0oejwIENjS+i40=
Subject key identifier: 18:DD:43:EB:3F:A8:95:6B:0A:0A:14:F1:6E:F7:6D:C8:B5:F1:DE:15
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial: 0198D473EA8E7C057DDE43D13B3939254503
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:03:43 +0000
Manifest this update: Sat 23 Aug 2025 01:03:43 +0000
Manifest next update: Sun 24 Aug 2025 01:03:43 +0000
Files and hashes: 1: P7kra4ub5VF3YEJjz3ym8CwbAXA.roa (hash: AJEYR0xnzVy6utllNh8R4LIoanjGY6stnMXm+hMmUEo=)
2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: CUgFo2chhARoCPTxl4NMJ9D56apfXYUMPy0Pf0bvorM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:ea:8e:7c:05:7d:de:43:d1:3b:39:39:25:45:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
Validity
Not Before: Aug 23 01:03:43 2025 GMT
Not After : Aug 24 01:03:43 2025 GMT
Subject: CN=18dd43eb3fa8956b0a0a14f16ef76dc8b5f1de15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7b:5b:4a:86:ba:5c:0e:b1:ab:e8:c8:6f:da:
09:3a:34:35:37:1e:59:5c:59:b5:ec:8f:89:a6:5a:
7b:82:ae:24:d9:f8:e7:51:81:50:07:18:0b:41:e5:
3f:d2:04:0c:b8:ce:5e:4f:24:c9:09:03:74:9a:74:
08:54:02:e8:cf:66:98:a5:85:be:f2:f7:05:ef:75:
93:a4:f6:50:a4:75:64:a6:1c:0a:47:c3:ae:c9:ae:
3a:74:2a:3e:3d:cd:53:49:a9:86:d8:82:1f:ef:73:
c3:40:d2:41:ff:7f:9e:4c:8d:a8:c3:b2:8c:e3:d2:
b1:8d:0e:f7:83:dd:1d:47:cc:65:6b:b3:b8:b8:5e:
e1:f9:67:85:a3:aa:06:09:b9:47:5b:2d:fc:c7:e9:
50:11:d1:65:4c:37:21:54:e7:7d:c6:87:d5:15:66:
ee:06:72:8a:bc:70:3f:97:ac:c9:5e:5a:80:97:5c:
7e:2f:0a:7d:57:8b:e4:78:ca:2b:7b:bf:d8:ab:3b:
f6:3c:88:5a:26:01:87:fb:8b:fa:5b:11:30:f3:ce:
2d:4f:f3:94:7f:a8:17:39:47:63:96:d4:60:d9:94:
a9:b4:40:ec:5d:ec:69:70:9d:54:52:f2:b2:d5:fc:
75:f7:30:58:42:f9:5c:20:cf:25:44:74:a0:5c:3f:
68:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DD:43:EB:3F:A8:95:6B:0A:0A:14:F1:6E:F7:6D:C8:B5:F1:DE:15
X509v3 Authority Key Identifier:
keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:df:21:56:f2:91:d5:86:8d:d6:90:08:af:d6:3a:a2:44:7b:
82:d2:ee:06:f7:38:e5:d9:da:1b:b1:29:26:1d:e1:12:ec:9a:
8c:a7:b4:87:86:f4:08:38:e3:9e:ac:d6:be:2f:1e:af:cf:dd:
a0:b4:3f:bc:0a:43:b5:1c:93:21:e1:1f:92:c7:16:60:46:fe:
2d:c8:45:0f:7c:4c:6f:69:13:7a:a9:f6:f5:7d:0b:ae:34:54:
44:45:d7:32:16:26:78:14:c4:d0:eb:6a:ae:e7:45:85:7e:d3:
f4:1d:5b:5d:cb:78:04:5f:6b:46:f4:84:62:04:c0:ed:46:0e:
42:e1:1f:21:16:50:9b:7b:ec:57:45:d7:31:6b:76:40:e7:dc:
56:4a:7d:1c:28:54:c6:25:cf:9a:3b:ff:f3:ea:59:90:a4:b7:
d5:68:75:c5:21:fd:03:1e:38:bc:42:17:3d:86:8e:42:7e:41:
29:f2:ba:a6:2a:d5:81:0f:8d:10:43:f2:b1:16:90:73:3a:03:
ad:1e:45:b5:01:74:3f:5b:d6:07:44:d2:fa:b4:e4:ae:49:8a:
1c:77:59:b0:88:de:69:47:a1:43:5a:a3:8d:57:68:09:4b:fc:
9f:8b:c3:d2:97:32:76:3f:67:36:c7:f9:f0:fd:69:5f:fd:34:
2a:f3:8b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:41 2025 by rpki-client