Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: 5IJoRZyuDUjMWVEiC1z3Cgu1SQ9QDHvAFHypxLicYAw=
Subject key identifier: 33:39:A1:3C:A1:CC:2E:0E:5E:E9:88:30:0B:FE:93:E6:07:2B:81:A2
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 0198D660D2005567CAA6FA9A63F2DCC0B3A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 047E
Signing time: Sat 23 Aug 2025 10:02:05 +0000
Manifest this update: Sat 23 Aug 2025 10:02:05 +0000
Manifest next update: Sun 24 Aug 2025 10:02:05 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: mZjkl7C6nZ/lBmVFku6ubw2QZTox8AgQxB/c/n6UkwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:d2:00:55:67:ca:a6:fa:9a:63:f2:dc:c0:b3:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: Aug 23 10:02:05 2025 GMT
Not After : Aug 24 10:02:05 2025 GMT
Subject: CN=3339a13ca1cc2e0e5ee988300bfe93e6072b81a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:46:b3:49:d2:d0:0d:ad:ff:9e:2b:89:75:66:
29:0b:cd:76:d6:f7:99:0a:de:3e:19:bc:bb:7c:d1:
2f:34:be:ed:7c:5c:c3:5c:94:d2:41:c1:8a:a6:34:
58:18:18:7f:99:07:05:f2:82:23:b9:6b:09:d5:d8:
cd:65:d1:6d:00:7e:d3:5a:9f:60:1c:4e:b9:52:6a:
7f:d5:26:95:88:b6:8d:62:b5:23:d7:5b:ed:6b:b6:
3a:1a:c2:f1:01:eb:c1:4e:6d:72:e3:bc:44:4c:f9:
95:59:16:83:58:ce:69:46:28:de:65:de:71:3e:6d:
0d:d1:6b:6d:b6:bb:4f:0b:ed:1f:4c:dc:22:4f:a4:
81:3f:e5:d3:79:46:30:f8:89:1e:d0:52:b0:f9:35:
ea:9b:69:e6:79:aa:f8:e8:ab:c2:13:bb:79:20:48:
0d:a5:f4:1e:dc:b5:e4:2f:85:c1:96:4f:f9:18:5f:
dd:62:30:d1:80:8b:8c:ff:42:f2:1a:c7:75:16:9b:
7e:cc:15:bb:94:eb:52:86:05:74:53:51:d7:e2:6a:
8d:09:54:a9:9a:a6:75:fa:f1:2e:64:f5:93:97:54:
4f:78:85:b2:c4:33:2c:bd:3d:fe:01:aa:21:43:e0:
90:42:e8:3d:d2:9f:40:c8:15:94:77:e1:29:cb:47:
3b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:39:A1:3C:A1:CC:2E:0E:5E:E9:88:30:0B:FE:93:E6:07:2B:81:A2
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e7:33:55:99:88:e3:f3:33:55:4d:a1:50:38:e3:ad:f6:cf:
69:f9:74:f2:61:6e:aa:9b:5f:93:c9:c5:f8:30:57:1e:fe:8d:
7f:41:93:28:84:23:3d:49:1f:da:21:8d:62:2d:a0:39:3b:a6:
49:46:b7:ea:ed:85:0d:af:77:b5:0d:24:a0:c7:86:5b:29:dc:
c1:36:44:1d:d3:20:e6:10:86:e6:ad:7f:e5:56:96:81:cb:64:
66:15:84:7b:ee:91:cb:2d:31:f0:7a:49:cd:fb:c9:7c:80:37:
2d:f8:8a:8f:ee:64:a1:25:b2:89:8e:9f:da:93:a9:6d:24:10:
08:af:1d:85:83:31:a7:d1:7e:82:ae:78:6a:ff:dc:0c:c2:d0:
2e:07:85:c2:e7:f8:48:46:f1:39:c1:a2:fb:63:ae:ad:98:70:
fe:15:ce:e7:5f:70:a5:97:0c:09:c9:b8:f0:b0:7a:05:6e:0c:
50:c8:1d:09:33:a1:8e:f0:ef:d4:06:d6:09:14:55:19:11:fe:
3f:65:c5:2f:14:d5:fc:91:ed:69:78:11:d7:d7:65:21:d2:55:
b4:ab:90:05:8c:e2:72:af:35:0a:37:21:9f:b4:28:8a:4d:e5:
d9:84:70:cf:ec:16:61:36:61:27:fe:38:3e:e3:a2:48:b6:7c:
7e:7a:74:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:20:55 2025 by rpki-client