Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
File: hpA1wxdzT2Ybv4XCGEFVofNhat0.mft (raw, json)
Hash identifier: ZoqG7qflJExZqDpAJ3IZARlhwSMP+JuUKVIh/1sZl9I=
Subject key identifier: 18:62:70:D5:C7:C3:29:59:95:9B:65:09:A0:38:75:26:B7:99:AF:DB
Authority key identifier: 86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
Certificate issuer: /CN=869035c317734f661bbf85c2184155a1f3616add
Certificate serial: 019748557B4C9401D6CFB136A0F4C0E49744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
Manifest number: 1102
Signing time: Sat 07 Jun 2025 03:00:50 +0000
Manifest this update: Sat 07 Jun 2025 03:00:50 +0000
Manifest next update: Sun 08 Jun 2025 03:00:50 +0000
Files and hashes: 1: AFoF1GuFzHjl8hWS56zz0OT3Bgg.roa (hash: tZKNbZDCtPOdNWQDTedTIFStwLgZ/2vtLmBHU+SWAQk=)
2: hpA1wxdzT2Ybv4XCGEFVofNhat0.crl (hash: 9TwO+Vs/MJk9nsLA1LOHDl5EZRjuYCuZOInbWNWqNl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:7b:4c:94:01:d6:cf:b1:36:a0:f4:c0:e4:97:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869035c317734f661bbf85c2184155a1f3616add
Validity
Not Before: Jun 7 03:00:50 2025 GMT
Not After : Jun 8 03:00:50 2025 GMT
Subject: CN=186270d5c7c32959959b6509a0387526b799afdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:49:58:5a:7f:d6:aa:e5:bf:5e:53:c3:b3:d9:
ac:e8:ca:b9:66:79:f2:8b:89:1d:ca:a1:6b:2c:4c:
02:5e:61:41:61:a1:4c:8e:19:4c:49:c6:d1:63:05:
8b:80:16:5c:53:5a:00:95:8b:cc:a9:30:1f:af:03:
7b:91:42:83:3e:ad:82:07:0e:f5:39:dc:e7:bf:1c:
4b:d9:a3:89:6d:b8:33:7d:db:c2:f7:19:d3:d8:60:
66:63:89:eb:c7:31:da:33:c5:6e:4c:62:ad:bd:89:
87:de:fb:ee:97:c4:12:ad:69:a2:69:f4:9c:8d:71:
1d:31:d9:ed:01:05:1b:e5:f2:34:b3:60:ac:55:59:
77:48:47:a7:da:03:81:2d:52:37:17:5a:fe:bd:12:
49:0a:4e:ac:51:13:fe:3b:a3:cb:43:2b:9e:bd:73:
e5:69:3e:1a:3c:0b:28:2e:b0:a8:0d:35:6e:1e:59:
84:b3:1d:8c:8d:e5:ee:e3:ee:ac:f7:0f:23:c4:d0:
17:64:37:24:15:18:7d:63:4c:24:11:40:b5:7f:5c:
0b:28:59:d2:99:55:6e:42:04:c2:ad:b8:1b:09:44:
62:c0:80:6d:37:57:8e:96:20:59:0b:5f:e3:0d:c9:
ce:ce:6b:11:9a:19:9a:12:9f:80:04:29:1c:ee:b5:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:62:70:D5:C7:C3:29:59:95:9B:65:09:A0:38:75:26:B7:99:AF:DB
X509v3 Authority Key Identifier:
keyid:86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:9f:12:9c:19:2a:e6:94:2c:a3:58:9e:6e:b8:1e:d0:49:c2:
73:0c:53:35:9d:f6:d4:98:c0:c4:49:95:cd:4d:a0:d1:12:6a:
83:43:17:a2:79:00:47:f9:87:35:65:b7:61:0c:8f:73:5b:e7:
1f:4c:e9:2b:95:ab:32:c5:45:f9:83:36:cc:3d:20:d6:e8:a2:
03:95:0e:8e:33:ef:81:dd:d7:d6:4c:bd:6c:f9:89:98:06:6b:
07:f6:01:80:d8:12:fe:04:b4:13:ba:af:5e:79:57:0b:24:2e:
ca:bf:a2:00:c0:7c:84:19:84:31:f4:85:1f:e9:ca:93:c4:5a:
4b:20:64:72:f3:04:0a:cd:1f:33:c8:38:d4:b2:7b:88:51:40:
0c:b2:6a:b7:6c:9d:10:fc:1b:73:79:24:da:2b:49:80:15:ca:
b1:b4:a4:b6:ef:2e:5f:65:d6:9d:83:32:b7:f9:4f:50:0e:ef:
a2:9e:87:9b:19:64:9f:c1:94:17:ff:ce:d8:8c:4b:53:17:e6:
d3:5c:5a:5f:11:80:7c:3e:a0:21:1f:8e:ae:22:ce:77:86:b9:
5b:06:1d:be:e5:13:97:6e:ff:ec:b9:cb:18:ae:dd:48:7b:0f:
ff:0b:01:08:28:a3:af:d5:17:40:1c:02:0b:df:5b:41:41:29:
34:4d:49:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:28:12 2025 by rpki-client