Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: Kr93TQxljLYaHN0T2jWv8iA7G8jjElvZ9wfSKBnxttE=
Subject key identifier: CA:14:83:8E:43:C2:19:9D:74:FC:F4:48:D2:AD:D8:BE:95:40:BE:88
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 01974EFC5C24C27A1EA74B28D8A6F5648FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 126B
Signing time: Sun 08 Jun 2025 10:00:50 +0000
Manifest this update: Sun 08 Jun 2025 10:00:50 +0000
Manifest next update: Mon 09 Jun 2025 10:00:50 +0000
Files and hashes: 1: 42BfRq7Uq2Z4S_hnedC1PWND5eY.roa (hash: SUpoA58huBIRfI1PcJohNyNQhenW9V0GmIZXcKZjs0I=)
2: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: Vr4HQtJBV0YQYP8AeKPEnrKKFOq246XZRDZtm0l9HkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:5c:24:c2:7a:1e:a7:4b:28:d8:a6:f5:64:8f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: Jun 8 10:00:50 2025 GMT
Not After : Jun 9 10:00:50 2025 GMT
Subject: CN=ca14838e43c2199d74fcf448d2add8be9540be88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d4:10:00:16:97:4c:1e:19:86:7d:32:f6:98:
ab:2b:b5:40:b5:86:83:ab:44:b4:64:ae:a3:fb:24:
76:7d:db:e2:cb:dd:f0:b5:d5:f4:db:84:36:6b:81:
8d:e6:6f:da:41:31:53:a1:c7:1f:fc:2e:46:ec:35:
60:a2:9e:f3:7f:f2:ac:8a:23:41:3e:4f:2d:19:a8:
74:ca:fa:b3:c7:3f:eb:63:7f:1a:4b:a2:9d:b3:f9:
9c:b6:20:d6:08:f3:d6:b1:ff:07:d8:f3:2e:08:00:
b3:9c:6d:65:c7:c9:e4:20:20:3f:fa:62:34:a1:5d:
9f:b8:21:b2:c4:6c:60:a1:e6:9a:b6:d5:e5:33:aa:
4d:d1:5d:c0:32:c7:01:51:45:92:6e:a9:73:cb:db:
74:93:63:eb:61:35:b5:a6:18:3d:15:f6:c8:fb:a1:
f0:ea:81:b4:75:81:cc:f0:7b:7e:f1:c0:22:25:91:
48:8f:ed:19:20:28:a9:db:56:7d:fb:27:90:1f:b9:
aa:65:a8:1d:04:59:65:9a:18:73:14:c7:f1:28:6b:
74:79:c7:3d:62:1c:50:ab:e5:6d:52:3d:a0:6b:8c:
66:f7:09:5c:95:e3:66:23:29:54:de:b2:d2:0c:88:
fc:1c:45:6a:dd:0e:64:4d:8c:54:9f:24:52:92:87:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:14:83:8E:43:C2:19:9D:74:FC:F4:48:D2:AD:D8:BE:95:40:BE:88
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ad:b3:56:b1:a6:7c:63:b7:38:89:5c:c5:eb:e3:59:f4:a4:
de:0f:e5:03:9a:ae:4d:0e:35:25:c4:c1:d1:a6:58:c6:b7:9f:
7d:4c:3b:b7:b9:60:ab:36:bc:0d:de:92:ee:8b:b0:cd:a2:a4:
24:f5:16:f2:d7:ab:88:99:57:06:9f:e2:10:ad:7e:e2:03:fe:
4f:5a:4f:b6:55:85:c3:7c:ed:3b:77:f2:c7:b5:b5:a8:3e:28:
e5:6b:41:fd:eb:2f:72:0b:8b:b8:4b:39:e4:ce:65:89:4f:ff:
8f:85:6e:ff:ff:f1:b8:0d:32:31:26:dc:4e:81:ad:fc:14:b4:
6d:89:7c:92:91:f2:e6:21:ec:54:0f:37:7c:76:4d:5a:2c:f7:
d3:4c:1a:f5:c5:d0:5d:34:92:14:96:ed:31:47:7e:0d:03:fc:
99:2e:c2:73:2a:34:b8:1e:a2:de:8d:b4:1c:ee:a0:8e:2c:05:
76:56:55:7b:f1:92:53:c6:28:54:27:9a:14:d0:30:05:74:16:
e4:df:d1:5b:b6:16:97:c2:a3:ad:13:34:8f:c4:75:3d:6e:86:
01:3c:b3:8a:e4:56:81:9c:c0:96:ef:0f:1b:ac:35:28:8e:be:
79:97:e3:f1:63:e5:dd:33:3b:9c:42:54:93:fa:86:7d:c3:32:
06:0a:9e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:42:31 2025 by rpki-client