Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: 5/cG/17yUfC4AydjS0AhyDJYiKRUIHPGxYQ3rXkmSSU=
Subject key identifier: 48:AA:44:12:E3:BB:AE:29:1F:C0:DA:DD:52:45:8C:93:A7:C6:DB:FF
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 01992DB5977EC07137E688AB705AABFF0AC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 167C
Signing time: Tue 09 Sep 2025 09:01:39 +0000
Manifest this update: Tue 09 Sep 2025 09:01:39 +0000
Manifest next update: Wed 10 Sep 2025 09:01:39 +0000
Files and hashes: 1: 3rLuW8QzyohR5G8GlpoQPu-Q6-s.roa (hash: F/8n4kYq76m4ZS+34MKi7W7c5dmdl0PtvWuG8cLJRrQ=)
2: 5ExX7PElDwhZvsqUirscS-kfnho.roa (hash: bqRW9TpS9PZv6OIHrk3qUk9RHaZcJhV08bnl4u3kvQE=)
3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: gG4fjzbVie5oq7iK4RfwqFVKbNs2GV0K92AKm7WFJQY=)
4: SUGGbjb1_Jk1qcT2JM8WcjQsO3o.roa (hash: oGVNqEXP6azb1lMS8LZZ+mpr73t/MEzsv974PdYYkYc=)
5: Z1aPPPc81U2W2p-hUbb2wEiLSrc.roa (hash: 2YYRPX4gY5ODPttZebzHcbGfP4UENAWKSJvWHEPrLO0=)
6: n-W5m8Lx-i-ynu-cgERA98e1TOA.roa (hash: 4MuuW1m/TV8O5IZ0i/ayNAC7gzR7V1teSLC1JE5/iDs=)
7: pMSZccnz2cyq4EAmIRmDcUPtCn0.roa (hash: rRJO86ohCtFwFSEvJg481KQrtUgLqQRd6A69YZTm2Ng=)
8: ySmmDjcV5o8HMr8fci-zFbiYdNg.roa (hash: QRYJ/tIaqmXv+2YeufSiFwnuiLCPfX4BPxDANJPYOl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 09:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:b5:97:7e:c0:71:37:e6:88:ab:70:5a:ab:ff:0a:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Sep 9 09:01:39 2025 GMT
Not After : Sep 10 09:01:39 2025 GMT
Subject: CN=48aa4412e3bbae291fc0dadd52458c93a7c6dbff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:61:3f:a7:f1:98:59:39:74:7a:91:e0:37:5d:
b1:aa:4c:c3:6c:85:8b:0c:1c:41:4f:4f:67:78:d9:
71:e5:ad:60:aa:c2:5f:d7:0f:be:0c:39:8e:ee:6b:
2f:d3:04:8b:44:b6:8d:29:fc:33:b6:0f:a1:b1:8d:
31:38:bd:b3:17:b2:e2:ee:ed:45:5e:35:ad:6b:9e:
6c:07:1f:82:0a:c2:30:6c:ea:e9:d1:38:36:2b:e5:
88:ea:f1:59:46:2b:88:8d:83:09:2d:69:59:a0:1a:
bc:a6:3b:83:4f:da:d0:b5:ab:eb:44:5c:27:18:76:
dd:bf:24:28:5f:1a:e3:a1:01:0c:a2:f5:72:f8:ca:
db:cb:70:b7:de:22:41:ff:37:01:bd:1a:0f:47:ad:
21:fc:d8:48:53:c9:c2:8c:11:80:e9:bc:4d:e7:f2:
f2:0b:19:85:4e:1d:52:c0:5b:1f:0d:09:9b:cb:d0:
b2:fd:3a:4b:c1:9f:b2:18:39:f4:3a:18:9d:d6:7c:
03:24:cd:bb:61:7e:31:b8:e4:03:a0:ea:25:1c:a7:
54:ad:fc:6a:76:93:ff:38:92:43:3a:6f:30:2e:e3:
2c:c0:e4:5a:03:6e:67:ee:20:b8:7f:36:12:3a:33:
ed:12:5c:57:a1:b1:c8:77:2e:d3:da:3b:9e:98:ba:
d5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AA:44:12:E3:BB:AE:29:1F:C0:DA:DD:52:45:8C:93:A7:C6:DB:FF
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:8d:3d:ae:0e:c7:f8:9f:15:97:65:21:8c:a7:d4:ae:0e:76:
5d:cb:18:e8:97:98:84:c3:8b:e2:62:62:e5:b9:59:a0:da:82:
99:b6:c3:29:2f:e4:b6:0e:64:71:c0:7b:3c:69:f8:12:68:b1:
10:cf:05:c6:65:5e:ae:9d:e8:b9:dd:50:8c:93:5e:8f:85:6f:
58:48:94:b2:a4:00:84:34:f7:84:92:82:3a:e9:40:42:50:b6:
63:1d:3d:bf:10:a3:1f:08:40:03:2d:f2:f0:21:8d:f8:ee:df:
e5:77:cf:d8:c3:15:91:ee:cd:df:58:8c:37:29:65:d6:68:27:
cc:02:ba:f7:4a:b9:9c:53:1b:d1:0e:92:b8:20:19:67:5b:31:
61:28:04:88:7e:c1:c7:57:e8:5c:7f:1d:02:6f:4d:8c:45:4e:
6e:02:49:d7:7f:67:3e:14:58:37:19:77:4c:c3:81:16:ce:e8:
99:cb:93:93:59:78:a3:fa:b0:a3:7f:d9:d9:f2:b1:5b:73:21:
7e:d1:b4:57:0e:c2:d3:9d:f0:e1:79:9d:3a:7b:e3:6f:46:89:
8a:1b:d3:d2:26:d5:c6:28:b9:1e:0f:76:d7:aa:8a:ea:9b:6d:
21:39:ae:79:57:0e:20:21:68:04:65:8e:02:26:c6:25:69:4b:
ae:29:ca:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:32:07 2025 by rpki-client