Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: iV+gK6gN3mctxS/Mz2JAtKSxY7iQeJn5IVqBg6tL948=
Subject key identifier: 06:CA:3C:7A:C0:30:35:C2:32:06:C8:E8:BD:31:57:2C:DA:40:3D:5B
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 01974BC40E8D2E753CC6F5639D568B23BD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 158C
Signing time: Sat 07 Jun 2025 19:00:29 +0000
Manifest this update: Sat 07 Jun 2025 19:00:29 +0000
Manifest next update: Sun 08 Jun 2025 19:00:29 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: tNloWdFvQM+2XZZqcKceHQPd9Y2PkEaMggd/Kc4/Z+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:0e:8d:2e:75:3c:c6:f5:63:9d:56:8b:23:bd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Jun 7 19:00:29 2025 GMT
Not After : Jun 8 19:00:29 2025 GMT
Subject: CN=06ca3c7ac03035c23206c8e8bd31572cda403d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f0:3f:dc:53:26:64:19:22:b4:1f:66:45:a6:
11:a3:fa:2e:ff:9d:a5:cc:8c:8a:fc:27:4c:2c:cb:
22:88:c6:45:a6:0a:4d:1b:7e:c1:27:d3:f2:36:57:
ff:77:00:24:38:a0:e9:43:1f:3f:66:79:36:6d:d4:
de:10:27:cf:20:b4:ae:a5:d6:71:b1:bc:e2:df:7a:
84:79:93:14:48:0a:34:e0:95:64:a0:eb:9b:4b:b3:
37:c7:bf:7c:7e:28:da:73:9b:6c:e0:5d:cf:e0:78:
e1:89:30:1c:20:51:c0:4f:0b:85:c7:d6:d3:f6:93:
72:1a:77:74:79:cf:58:34:cf:8b:a7:96:fd:fd:45:
9b:c5:75:89:c4:25:9e:4f:a2:fa:6e:ea:6a:da:42:
5c:7a:02:ff:72:e8:63:18:b3:2f:1c:ef:b8:4f:45:
90:dd:65:48:ad:2b:fa:d3:11:cc:03:83:a2:42:f3:
5c:52:20:81:0d:38:62:6f:04:e5:be:0b:90:d7:0d:
54:c1:d2:b8:93:fe:68:a6:c0:d2:07:56:86:f8:a5:
fb:0a:57:d0:51:10:80:27:48:49:a2:ac:cb:35:18:
10:45:43:09:17:2a:f5:ea:3b:e6:35:72:02:94:9d:
96:29:b6:88:c3:a4:ed:49:2d:79:fb:e1:99:6f:3f:
56:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CA:3C:7A:C0:30:35:C2:32:06:C8:E8:BD:31:57:2C:DA:40:3D:5B
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8d:d0:ee:a7:0f:ca:fb:55:4d:8c:99:9d:89:49:ce:bd:a9:
81:4e:d4:89:45:62:63:bf:a4:d1:1f:92:f8:24:d4:4b:68:45:
f7:ed:13:f9:53:68:74:2b:ed:cd:a5:c6:2b:f8:6f:33:8e:bb:
a1:a5:41:c5:c3:cf:e5:8b:97:a1:7b:48:43:8a:ab:e6:03:68:
d2:a2:2e:60:0c:fe:18:18:95:10:5d:e4:01:ea:3a:27:81:6b:
ae:a7:5d:84:f9:10:35:03:17:18:02:69:b7:c5:31:68:16:fb:
5e:dc:03:6c:ab:70:57:9d:a3:71:b4:fe:37:dd:53:95:a5:98:
3c:fb:0d:37:7e:81:5c:79:03:e8:f0:d6:71:be:26:04:be:9f:
14:40:76:10:59:3f:b0:99:66:41:8f:09:83:13:72:4f:eb:9d:
d3:f0:28:eb:ce:0f:c0:3f:da:bb:e5:6d:f1:bf:7f:56:f9:58:
4f:7d:92:36:67:59:87:cf:9d:17:8d:e8:c7:4d:1d:05:77:e2:
58:7e:c2:0d:8c:c5:60:6d:b2:98:c5:f4:f2:66:9d:2b:b8:f8:
47:f8:9c:5e:9e:de:9a:a2:c5:65:be:36:dc:be:86:09:68:10:
e8:be:af:11:9f:c8:76:73:bf:a1:8b:5e:58:ef:56:ee:29:34:
73:e4:04:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:12:33 2025 by rpki-client