Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: G8CJtGOIApQu/Zo2oNdC9z5w7XhUGzbYVLTEfk1AmHk=
Subject key identifier: 9B:FC:96:61:E5:1A:8C:20:55:E6:51:FB:56:94:89:AF:B4:43:D9:33
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 0197B8906353E0DC280199E9A4AA1F79765A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 03EA
Signing time: Sat 28 Jun 2025 22:02:39 +0000
Manifest this update: Sat 28 Jun 2025 22:02:39 +0000
Manifest next update: Sun 29 Jun 2025 22:02:39 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: cWrhePzY6rqnUlSOjuwNpLHxCv8tjQFofre5KK0WCbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:63:53:e0:dc:28:01:99:e9:a4:aa:1f:79:76:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: Jun 28 22:02:39 2025 GMT
Not After : Jun 29 22:02:39 2025 GMT
Subject: CN=9bfc9661e51a8c2055e651fb569489afb443d933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:44:ec:7f:ed:bc:fe:84:f1:d9:96:d7:4f:63:
f9:91:ff:3d:f4:21:e5:28:be:c7:fc:64:16:72:e1:
25:a3:12:af:7a:75:db:08:31:7b:63:9f:1b:c4:59:
82:af:e6:d9:0f:44:69:f5:ff:e0:6d:14:2d:c5:79:
10:c4:91:8a:77:2d:ad:1b:26:cc:1d:9d:ec:39:fe:
bd:59:0d:82:be:2b:d0:94:24:4b:33:f2:27:2f:4d:
8f:59:ef:70:5e:06:ae:7f:54:7b:ed:9d:49:01:fb:
d9:4c:9e:25:71:39:72:fc:05:77:fa:4c:44:91:da:
e0:8d:aa:bf:be:c3:be:ef:d9:6d:53:45:a1:4d:d1:
e5:1f:4f:0d:3a:ad:28:78:11:b0:7e:b6:bc:51:fa:
a2:26:8f:3f:35:88:5a:d6:19:75:d4:93:48:6f:9b:
de:94:f7:67:b3:57:07:f4:4c:38:a4:aa:4c:ee:71:
06:7b:cd:65:a6:ec:ad:61:b1:22:88:fe:47:9c:14:
95:11:fd:80:a7:3e:6d:2c:1e:46:cc:46:34:d9:5a:
a0:01:98:6c:b4:07:1c:cd:36:42:aa:79:f7:6b:a0:
bc:a8:7c:6a:4f:6d:b5:0a:17:fe:1c:2e:eb:63:e5:
51:37:81:a3:e3:86:06:3b:54:6d:00:ef:51:57:d2:
a1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FC:96:61:E5:1A:8C:20:55:E6:51:FB:56:94:89:AF:B4:43:D9:33
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d8:1e:e0:1a:f0:79:fe:e4:80:31:98:29:99:4d:c6:cb:d8:
67:f1:39:52:1c:de:b3:3a:5a:dd:32:71:7c:d1:38:df:b5:c6:
bb:ee:65:24:1b:4f:b2:b7:c1:47:9f:f7:a6:68:74:eb:41:a4:
98:5e:ac:25:f4:0f:b1:7a:72:a0:fb:05:08:9e:97:70:d6:b1:
1f:e8:21:f8:71:d2:de:23:b4:ba:7d:ca:88:14:41:0f:78:00:
94:12:ce:6a:15:46:48:86:6a:3d:31:c0:21:26:15:86:0d:2b:
5d:8b:b4:4c:ca:42:99:8b:cb:42:a3:e6:e9:e0:80:7f:0c:19:
57:4c:9f:e1:8e:aa:73:41:be:1b:8d:db:37:2d:84:95:28:e4:
fe:22:6f:ac:83:7b:d6:cc:a5:96:0e:a9:02:b9:07:9c:bb:b9:
b7:86:b9:b1:95:53:d5:4c:86:e3:cb:af:14:32:0a:94:f5:19:
79:b5:a3:22:e0:09:aa:5b:d3:b1:84:82:2f:2c:0e:ce:16:8f:
61:b8:56:27:88:c7:4a:5f:ec:6e:22:d0:a3:a0:1f:d1:86:30:
4f:b8:46:ad:ff:12:35:be:5c:ef:e0:d7:81:87:12:ec:66:b0:
86:3e:c5:9c:14:4a:1e:8b:6b:84:80:aa:7f:77:f2:c3:e9:3a:
38:81:c7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:38 2025 by rpki-client