Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: N3w4KKLnVWTagLU7hCKc2zrNiqtBPFSdbxm7T9cFEyo=
Subject key identifier: 2D:82:4D:71:33:36:5B:01:9A:B9:13:84:C8:3D:22:77:EA:8A:AC:D6
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 019923D63D44E9E29D83640FC65AAAF8ACB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1676
Signing time: Sun 07 Sep 2025 11:01:06 +0000
Manifest this update: Sun 07 Sep 2025 11:01:06 +0000
Manifest next update: Mon 08 Sep 2025 11:01:06 +0000
Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: lMAOemPOHVEx2foVSwLPlELAWN+XCNRs1RdpGueqi/I=)
2: nfcB4W3-frcdsttLFxfqKvUAYPA.roa (hash: LSLZu1kedUT6p6v50vQ31LG0ikk6bjLybjbis0FT+ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:3d:44:e9:e2:9d:83:64:0f:c6:5a:aa:f8:ac:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Sep 7 11:01:06 2025 GMT
Not After : Sep 8 11:01:06 2025 GMT
Subject: CN=2d824d7133365b019ab91384c83d2277ea8aacd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9b:55:31:74:d9:44:fd:7f:b8:83:14:4e:c0:
33:a8:9f:6e:e0:e8:bc:4c:59:9d:fd:99:81:d5:71:
f0:ba:c1:b8:1e:2d:22:3e:36:e2:1d:0e:3f:3c:5c:
1c:81:4e:5e:7e:1f:e6:e4:e2:77:68:c6:e0:83:3e:
46:fa:00:75:5a:83:72:63:5c:68:f4:c1:1c:1e:bd:
20:91:8b:22:ed:a7:23:b8:56:ee:92:2c:ef:b9:99:
9c:42:32:d1:75:ef:0b:5d:c1:e1:4a:c1:aa:a5:d9:
8d:cf:d0:51:a4:a0:32:cf:e5:d8:a1:54:ed:65:49:
f9:41:8d:84:7c:6e:54:b8:86:db:fa:33:f6:46:44:
b7:64:ac:b3:8a:5e:68:aa:d7:87:c9:ff:fe:d4:c1:
1f:15:21:cd:a3:b8:15:68:70:e9:10:28:19:a1:8b:
63:a3:1d:55:92:a3:3b:6d:7f:52:f1:8c:ed:4f:ff:
ea:60:2a:4d:c4:2a:84:56:4a:ec:1f:fe:83:4c:cc:
d2:b9:ae:05:6f:4d:79:44:1a:3e:91:65:26:ab:fa:
2f:da:44:7c:27:83:11:a0:c3:3d:d3:67:03:96:e1:
ef:49:72:29:d2:d1:84:da:91:05:df:81:ca:2b:60:
53:f8:7b:63:01:ae:38:4b:37:85:0b:33:00:0e:18:
8a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:82:4D:71:33:36:5B:01:9A:B9:13:84:C8:3D:22:77:EA:8A:AC:D6
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3a:41:6e:7f:87:b8:26:28:97:11:56:9d:4f:30:4d:47:0c:
67:b3:a8:c3:3a:a1:9c:4f:69:0e:23:8d:0f:ab:81:8f:85:48:
98:2c:a7:a8:d0:a1:7c:9d:8e:c9:04:25:18:f1:3c:6c:d3:ac:
41:b7:28:11:57:c2:b5:83:c4:2d:f4:60:38:c2:4f:d6:da:6c:
97:33:4e:00:60:41:19:39:da:ff:e9:86:6f:f0:b7:f8:d8:26:
76:4f:6f:cf:e3:ec:6e:b9:c2:09:7e:d8:22:f6:ff:a8:15:81:
bf:32:a0:01:20:92:e5:ef:9d:9e:1f:e3:a6:67:cc:d0:8c:2f:
a6:6e:a7:10:63:00:f2:3e:bf:f1:6a:e4:51:97:95:4d:54:2a:
48:37:a6:cb:50:27:5c:74:e0:c5:c4:82:59:e7:ac:f5:5e:83:
e6:6e:80:d9:4e:a3:4e:6b:11:54:8f:c1:ce:43:7c:24:19:8b:
cb:7c:d6:56:dc:4c:59:d9:9d:7c:1d:56:7f:0e:e3:74:95:5e:
d2:a0:82:c0:94:36:78:f9:77:59:fd:37:1a:1c:89:28:7b:e4:
26:f9:9b:63:7c:74:0d:14:9a:c9:1e:fc:28:08:83:01:a1:94:
14:8e:83:01:d8:f7:e0:fc:ff:d6:f3:b6:f5:86:22:0e:08:9c:
73:69:99:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:39 2025 by rpki-client