Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
File: HgUGRdac54HkkMDzxJle5tTmB4s.mft (raw, json)
Hash identifier: 9uA72QSJqaD4rHkQfzMPes6gdZmxzirwvDvywFDQjic=
Subject key identifier: 82:7C:8C:FC:BC:4D:05:C3:DE:38:CF:CA:21:AC:3E:10:77:B7:02:67
Authority key identifier: 1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
Certificate issuer: /CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Certificate serial: 0199221F33D46C44F56E87459A765EC29B8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
Manifest number: 084B
Signing time: Sun 07 Sep 2025 03:01:34 +0000
Manifest this update: Sun 07 Sep 2025 03:01:34 +0000
Manifest next update: Mon 08 Sep 2025 03:01:34 +0000
Files and hashes: 1: Cng8TcnIXSMG5gaf3EVbnwwbQjk.roa (hash: SlPAu0/v+q9AU8NTLPmY4PB0nlmzfGz86P4I7oW5+Ns=)
2: HgUGRdac54HkkMDzxJle5tTmB4s.crl (hash: PNpumH/0FIBXBeqcCUv79SsoCN0GGHDobFJPB5km48M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:33:d4:6c:44:f5:6e:87:45:9a:76:5e:c2:9b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Validity
Not Before: Sep 7 03:01:34 2025 GMT
Not After : Sep 8 03:01:34 2025 GMT
Subject: CN=827c8cfcbc4d05c3de38cfca21ac3e1077b70267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:4d:46:31:1b:3b:28:e4:99:d1:a6:54:63:40:
23:4d:48:00:6b:56:e4:87:47:49:31:ac:25:a8:0f:
d4:4a:37:40:b9:43:c1:0c:89:35:f4:55:a8:ac:07:
73:ad:6a:b8:15:3e:3e:5a:a3:78:6b:09:21:05:53:
f8:89:14:2c:19:cf:2b:a2:ab:a6:28:c6:9e:3a:3c:
52:bb:b3:83:5f:7d:52:0e:e4:14:aa:47:1e:f1:4f:
81:0c:ff:81:65:57:19:95:23:eb:1f:3e:51:a6:49:
08:fe:30:e9:93:cf:d1:bb:13:24:de:3e:c2:c8:5f:
3e:d0:e2:16:0f:a7:dd:59:e7:cf:78:3d:56:ee:e0:
84:7c:e2:8e:60:a6:f6:0c:d7:f6:25:fc:bb:90:bf:
69:00:75:9d:5b:e0:17:6e:d1:8e:66:ca:63:73:a6:
df:9b:b6:03:5f:61:5f:9a:9c:e6:fb:c2:63:7c:bd:
22:9e:43:9b:70:f9:fb:24:a9:1a:f5:fd:b5:a9:69:
98:47:81:1f:27:7b:c4:40:0d:b2:5f:4e:af:8f:2f:
ba:d0:bc:4c:ff:89:d6:a4:60:dc:6d:5d:e7:68:45:
cf:71:38:90:9d:d3:b1:45:86:0c:1b:b2:41:95:d6:
82:3a:e2:51:ba:47:95:b8:15:b8:69:8b:a6:2d:63:
db:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7C:8C:FC:BC:4D:05:C3:DE:38:CF:CA:21:AC:3E:10:77:B7:02:67
X509v3 Authority Key Identifier:
keyid:1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:32:33:f0:ac:34:a6:63:5c:6a:c8:b2:4c:5a:ff:c5:d0:a0:
45:e5:87:dd:ec:0e:7b:d0:88:75:e9:83:5d:38:2d:84:e6:e3:
85:e6:35:b9:a9:d4:cf:0c:c1:82:2d:7d:2b:71:0f:23:48:d0:
62:0f:e3:b3:c6:fb:a2:ec:47:c0:8d:b5:eb:64:5e:56:37:5f:
f4:6b:75:b3:1a:7b:df:e1:9b:bc:d4:b3:76:5f:a2:74:7d:3a:
66:bd:06:62:57:d8:cd:c5:a8:94:19:e1:64:d8:5e:32:b7:63:
02:22:66:26:5c:54:a8:54:5b:20:4a:07:b7:34:d5:41:94:0b:
87:b7:74:13:94:0c:13:8b:a0:a0:7c:b5:fd:54:1d:4b:6d:f1:
81:a3:4a:2f:5a:a6:1f:25:84:25:f8:5b:d5:ac:66:cc:34:64:
f5:a5:40:45:9f:be:6f:9f:1e:2f:e9:64:b4:f3:be:bb:ed:09:
9d:14:4c:46:30:33:34:f6:19:ba:46:0e:47:7e:23:bf:7d:e4:
ae:16:bd:a6:9c:13:cf:4f:09:88:09:c6:9a:1e:6f:d5:e9:b4:
7d:7e:fe:46:f4:ca:5e:5b:0c:5c:4d:51:7b:bd:04:92:4f:3f:
31:e7:a2:e3:73:fb:ba:14:11:c5:0a:e7:5d:d4:15:e0:1d:6e:
af:2a:0c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:50 2025 by rpki-client