Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: qogjGCRyDawnpEvvfZ76LKuAiBz70YJry2oGWuWjIdI=
Subject key identifier: 49:98:C2:26:3E:11:66:89:AE:66:54:5A:F7:E5:D6:4B:80:AA:06:5F
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 0197493144980B3731C98D7AAB7753F34329
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1586
Signing time: Sat 07 Jun 2025 07:00:54 +0000
Manifest this update: Sat 07 Jun 2025 07:00:54 +0000
Manifest next update: Sun 08 Jun 2025 07:00:54 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: G7+8s+iFUuzczw9BFWzat8whaG5/eQ2BfjMLoT5UBEw=)
2: MCvxtXhDv-4sOFSG3-70es9IbCc.roa (hash: zG6t5oGWGri6Roj7Zds9875D3+Pp2Gk1iyyfA9Fh0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:44:98:0b:37:31:c9:8d:7a:ab:77:53:f3:43:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Jun 7 07:00:54 2025 GMT
Not After : Jun 8 07:00:54 2025 GMT
Subject: CN=4998c2263e116689ae66545af7e5d64b80aa065f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:1b:9f:88:b4:cb:25:71:44:0e:27:b4:2d:
c1:43:b7:5c:8b:49:c2:5f:f2:f0:16:0d:d8:73:f1:
11:46:a7:a5:37:4b:0d:c0:9a:18:aa:96:65:60:d3:
c8:d6:aa:b0:b8:ea:74:49:86:e4:5d:34:98:08:a3:
9d:51:bb:dd:bc:3c:7a:ab:3a:21:de:d5:28:19:1d:
7b:fe:6f:eb:c4:bf:00:53:8b:aa:39:8e:ce:dd:f2:
fe:ed:e2:74:87:eb:f3:0c:96:6d:66:06:4a:cd:d4:
a7:80:ee:37:02:92:c5:6b:da:1d:de:7b:71:fa:65:
a2:9a:e6:dd:f9:92:e5:0e:b1:ff:f5:b9:f2:17:6d:
c1:a6:dd:9f:c2:58:bd:24:e2:fb:d2:ba:5a:66:25:
26:ec:24:35:e2:5c:5a:c3:7a:07:e4:99:36:29:8a:
6c:5a:a6:6d:63:03:ed:bb:ae:bb:2e:ed:ee:2b:ac:
42:43:92:2c:4f:e5:80:6e:9c:30:44:60:95:20:cd:
0a:c2:d3:18:25:6c:b3:3a:fb:77:7c:1a:7c:fc:00:
be:18:ca:f3:08:6d:f7:1b:e9:77:99:cb:1b:df:23:
ef:9a:c4:23:55:c7:06:09:c5:8f:e7:b9:7d:6b:5f:
a3:65:49:8b:19:1d:f7:7f:f8:9a:24:fb:c6:9a:1e:
54:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:98:C2:26:3E:11:66:89:AE:66:54:5A:F7:E5:D6:4B:80:AA:06:5F
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a7:21:88:10:0f:01:a0:a6:74:0b:9e:86:79:f4:96:29:6b:
49:55:97:c7:da:db:fc:db:a4:e4:a2:c4:36:2f:b3:28:e0:ae:
58:78:a1:e0:b1:d1:63:4a:7e:af:47:bb:a7:a3:d4:c0:8c:fe:
b6:6a:5d:96:04:65:d2:7d:e5:5d:f2:05:87:9a:c1:87:fe:52:
eb:f9:ac:6c:bd:c9:10:2b:3a:81:79:7e:a9:ee:7e:3f:b8:67:
9d:65:48:7f:7c:83:4e:56:9b:16:2c:22:22:b6:33:46:d2:82:
7f:56:83:b0:a6:79:cd:45:72:a0:fa:3e:99:48:93:40:4c:b0:
53:7d:14:f9:10:85:cc:47:25:60:13:a4:e9:d1:1b:f9:2d:b4:
73:68:d4:72:f2:ba:bc:24:04:3d:6f:f6:6c:88:d0:95:d2:c0:
9c:d2:25:52:89:d5:1b:30:2a:94:84:3a:3d:e9:dc:9e:56:2d:
9a:b4:2f:8d:4e:8d:78:ae:44:3f:87:0e:72:cd:72:72:f3:86:
5d:15:bc:6b:89:1d:0a:cb:d2:a4:6c:2c:b0:22:1e:82:68:0e:
ee:92:2c:b1:68:af:6f:c4:34:f7:b1:e3:e0:a3:67:91:9d:ec:
3f:7c:99:36:70:9c:0a:c7:db:7c:b2:19:e5:4a:a8:b8:e2:9e:
0a:8c:1a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:48:29 2025 by rpki-client