Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: bbUd9WF2e8hKuC0wXc9TJTBg54Z7qo64S+BkemAWXX8=
Subject key identifier: 0F:68:17:4C:A0:6C:02:2C:B6:99:8C:13:6D:BE:8A:76:4F:31:34:25
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019847AD76979A6022543D6DEB93549994A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1373
Signing time: Sat 26 Jul 2025 17:00:06 +0000
Manifest this update: Sat 26 Jul 2025 17:00:06 +0000
Manifest next update: Sun 27 Jul 2025 17:00:06 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: CxGdUVA1SGOMiBTeJIVj/Mvw46YzRW2blHJnhxHN/Ow=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 17:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:ad:76:97:9a:60:22:54:3d:6d:eb:93:54:99:94:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Jul 26 17:00:06 2025 GMT
Not After : Jul 27 17:00:06 2025 GMT
Subject: CN=0f68174ca06c022cb6998c136dbe8a764f313425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:bf:2b:82:b1:77:0c:68:43:fd:34:9e:8c:6c:
1b:b5:8e:b3:b3:9d:ae:29:38:10:79:ba:b1:6e:ae:
b5:63:c7:a9:bf:b5:d1:99:0e:80:af:8e:9c:02:2f:
83:d0:48:57:9d:7f:66:c6:68:3c:1d:7e:0d:44:b7:
e3:37:bc:c6:11:b4:b5:17:a8:50:e5:1b:8f:12:af:
36:31:1a:3a:3a:be:05:7b:3f:39:8e:d9:ae:55:6a:
f7:28:93:62:4f:ab:fc:e4:7b:e1:77:f0:dc:0f:68:
6f:c4:68:79:2a:da:26:13:df:ff:22:9d:b2:26:ad:
84:e4:04:28:5d:25:5d:5e:f0:ba:c8:70:01:43:dc:
40:29:86:f4:29:67:43:06:ac:49:a6:bf:70:f5:32:
da:b9:92:b3:17:3e:76:e6:aa:41:97:ba:e3:f5:eb:
99:f2:25:6f:9b:4b:e5:f6:e5:ef:4d:23:e8:64:9a:
ee:4c:e5:32:50:22:4a:1a:47:2a:50:ea:85:e0:5f:
dc:ab:67:68:3a:38:75:6e:d3:5a:0d:a5:22:35:f9:
43:ed:0f:2f:7c:1c:31:66:72:35:f2:86:a7:74:77:
ad:44:1f:74:80:c0:cf:69:84:b1:df:57:7c:bb:1d:
9c:7a:c3:c3:de:1a:48:27:f3:e4:23:09:bf:bf:8c:
27:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:68:17:4C:A0:6C:02:2C:B6:99:8C:13:6D:BE:8A:76:4F:31:34:25
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a5:bf:69:3c:7d:a6:1a:6d:17:b4:a7:12:93:42:7f:5c:73:
88:e3:bc:d4:2e:36:c6:1c:62:18:14:90:59:78:44:8c:12:6a:
be:73:17:68:b9:81:a7:10:83:9f:0c:b2:88:b3:d2:80:ba:2b:
a9:11:5b:10:79:f1:53:09:51:89:76:43:a8:8f:9f:6c:02:78:
8f:7d:5f:de:c5:ac:73:e0:38:14:e6:6b:11:00:17:75:c8:9b:
fc:b9:c1:c7:68:28:fa:a4:35:01:7f:2c:37:8e:1e:c9:75:8b:
a5:17:9f:a0:03:53:26:d8:b4:fc:dd:2b:9b:35:34:e2:ad:7d:
c3:71:6a:c4:e0:74:75:1a:88:80:5d:8d:4b:75:ea:aa:b9:b0:
0a:18:2d:c2:68:bb:57:c2:7d:e1:39:e3:ff:e0:d7:65:68:a8:
d8:fa:50:0f:e9:b9:05:73:a7:32:5c:5e:c3:f2:aa:5f:08:09:
55:db:a3:68:4e:b6:ac:94:8d:74:6f:46:6f:10:9b:5e:4b:64:
cf:67:24:91:22:03:c5:73:15:36:e1:ba:3b:b0:61:4d:ba:2e:
f0:7f:51:4a:6c:9b:e5:e2:9e:30:46:05:b1:4c:ff:bf:cf:e7:
e3:2c:8e:3c:5f:71:23:a2:25:85:41:59:f7:22:85:83:ff:40:
45:d0:96:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 02:28:24 2025 by rpki-client