Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: CovnMq6MINvt0LQfR1fgvBbU9KHQEbatiJLNUm4fIek=
Subject key identifier: 54:2A:9F:20:30:DB:EB:03:03:4C:37:25:D6:6A:DD:26:4B:D8:F2:6B
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 01974E8E966332360DA4FA688152689A96F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 12F2
Signing time: Sun 08 Jun 2025 08:00:56 +0000
Manifest this update: Sun 08 Jun 2025 08:00:56 +0000
Manifest next update: Mon 09 Jun 2025 08:00:56 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: Ww3gri6jzFeDeuY79yW78QqJdBhSYsdTiWSSHzuiDGY=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:96:63:32:36:0d:a4:fa:68:81:52:68:9a:96:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Jun 8 08:00:56 2025 GMT
Not After : Jun 9 08:00:56 2025 GMT
Subject: CN=542a9f2030dbeb03034c3725d66add264bd8f26b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ad:2f:ff:5e:12:8d:e8:a5:fc:3d:21:8f:32:
f9:87:2e:89:bc:65:5b:3d:cd:26:47:17:d9:47:a4:
ba:9d:e9:87:ed:60:7a:00:e5:64:74:b6:3d:7f:8b:
b6:e5:b5:f6:81:e2:53:8a:f2:05:73:ba:37:4a:25:
01:96:92:a3:e5:97:11:86:b4:84:fd:ff:ad:ba:9d:
59:38:53:f7:5a:ad:94:68:49:4d:d6:bd:5e:e7:66:
64:e2:1c:dd:22:17:1c:58:d5:08:d1:03:2e:ae:3a:
33:b9:6f:34:ce:7e:34:0f:43:52:90:0f:82:46:85:
c2:38:c9:2a:5e:6c:90:4b:00:4e:c9:a2:b5:17:e5:
31:0f:6e:b5:77:be:8b:ae:e1:d3:1c:d8:dd:80:93:
5d:b3:52:a7:2a:6f:6a:9e:a1:dc:16:5f:5a:b8:e4:
16:eb:e8:a4:aa:b0:54:96:b8:54:7a:9d:6a:25:d1:
8e:d0:66:4e:5f:c1:f0:65:7e:d6:f9:69:df:4a:30:
96:0d:a8:e8:b0:46:21:ef:fe:3b:36:23:d1:1d:e6:
4e:13:bd:1e:14:03:58:45:d0:4d:3d:39:a4:f0:c8:
89:0d:44:97:c5:62:df:90:92:5c:b4:47:62:57:1c:
e1:f4:a4:ce:ce:ff:d4:b8:e8:91:62:f4:01:2c:f0:
79:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2A:9F:20:30:DB:EB:03:03:4C:37:25:D6:6A:DD:26:4B:D8:F2:6B
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:09:30:79:0d:59:56:b9:c8:90:2d:1d:8c:1a:4b:45:ec:48:
66:e9:4c:8f:d1:ff:d3:a9:81:8a:da:a7:46:10:cf:21:4b:c0:
c2:3c:56:30:1d:57:84:f9:db:45:de:2c:b5:08:f3:09:dc:27:
84:e4:05:b7:3c:ff:50:d0:7e:99:b4:a1:98:43:ef:60:98:f8:
b0:08:bc:5b:ad:2c:dc:07:a1:0f:df:ad:da:df:75:62:7a:d4:
32:8d:5f:05:36:b9:84:04:9d:94:29:06:3b:3a:c9:e7:36:27:
44:a4:ec:a7:89:7a:0d:98:aa:6d:b8:9e:25:47:33:10:f5:74:
2d:75:00:f9:ab:81:14:45:ba:2c:36:0f:ab:68:66:a7:54:b4:
75:d9:50:55:d3:14:d0:bb:fe:53:bf:57:f4:e1:82:d3:45:f7:
9a:5f:2c:02:2a:59:a8:d5:af:b2:8c:4b:63:0b:1c:59:00:bf:
66:bf:ef:0e:56:1c:b1:65:85:e6:03:0f:12:d9:53:82:6b:cd:
ec:4a:f9:21:39:36:f1:e3:b2:6e:80:42:b4:c6:ad:a7:5a:11:
89:06:94:89:fe:9b:99:ac:c6:b9:3b:c0:87:ea:f6:e8:43:2b:
81:71:e1:e3:4a:24:8e:08:46:10:b5:2c:44:bc:32:25:d8:77:
45:8a:91:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:05:25 2025 by rpki-client