Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
File: HGnHYzivyQhbj71mm4t0vXqS1DE.mft (raw, json)
Hash identifier: kJP1N/x7lmyrxBBT0nYQ1nPQM/x799iEQZrIQRWUnfE=
Subject key identifier: 93:95:40:DE:6C:F1:B4:78:52:48:54:C9:D4:D8:64:D7:04:B7:2E:E8
Authority key identifier: 1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
Certificate issuer: /CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Certificate serial: 019750B3CCD08BB661411FCBEC3C709922DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
Manifest number: 126D
Signing time: Sun 08 Jun 2025 18:00:49 +0000
Manifest this update: Sun 08 Jun 2025 18:00:49 +0000
Manifest next update: Mon 09 Jun 2025 18:00:49 +0000
Files and hashes: 1: Biv2qTrQNJJYQlmIhX2GXCsPh8k.roa (hash: qgzc+HC1Pbq5Sym5wnfMxLGpd7cCm/TouNcPCVsFEcM=)
2: HGnHYzivyQhbj71mm4t0vXqS1DE.crl (hash: 8enSeFWVd7ybSINBnDIzqRJLeDHOoxRMwYk82n5cNj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:cc:d0:8b:b6:61:41:1f:cb:ec:3c:70:99:22:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Validity
Not Before: Jun 8 18:00:49 2025 GMT
Not After : Jun 9 18:00:49 2025 GMT
Subject: CN=939540de6cf1b478524854c9d4d864d704b72ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0c:05:fa:a0:3d:89:8b:f6:20:20:bb:e7:2b:
dd:2a:e3:cc:72:c9:54:74:03:82:9e:15:ed:29:f8:
29:1a:8f:da:b0:b4:ec:84:66:5e:08:34:a9:52:bb:
9c:a2:ea:d5:07:7c:7a:d0:8c:8f:cd:0d:92:1e:12:
6f:d5:0b:55:03:96:1e:28:da:8b:d5:a4:01:50:5b:
8b:bb:e4:f0:bc:92:cf:d7:33:d9:22:2a:24:b7:39:
1f:d3:16:47:c5:f9:a3:ae:99:1b:83:9f:a5:bc:24:
a2:c2:03:89:23:04:5d:ba:1c:d5:fe:34:2d:e9:95:
a6:48:99:05:33:43:38:c4:3e:ea:a8:15:d6:39:ba:
89:3f:99:3b:5b:91:06:04:3a:95:92:96:04:9f:5b:
04:7a:ed:d9:f7:f9:ff:fc:d5:d4:da:af:94:28:0a:
9c:ef:e3:28:3b:fc:bd:76:a4:0c:8d:39:64:e6:59:
51:33:30:d7:79:7d:23:4c:7c:05:21:16:c1:e5:84:
f5:81:48:20:d0:af:68:51:b1:74:47:82:3f:7c:6e:
8f:f8:42:6d:64:51:fd:fa:a4:a8:56:54:b3:1f:4b:
a9:da:c1:94:f0:73:6e:e8:b0:96:5e:95:ad:2f:c6:
bf:5c:46:ab:b4:74:c0:17:98:20:f7:f0:69:9b:44:
0e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:95:40:DE:6C:F1:B4:78:52:48:54:C9:D4:D8:64:D7:04:B7:2E:E8
X509v3 Authority Key Identifier:
keyid:1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c8:ef:fa:8c:bf:5e:c4:72:cf:c2:fc:c3:6e:e3:4d:66:48:
9a:76:d7:c5:c7:6f:6c:07:a0:12:43:77:c1:a8:11:d9:d9:71:
24:93:57:bb:e9:4c:e7:43:8c:25:11:96:3b:cd:bf:0a:e9:62:
83:7b:05:d5:0f:7a:e9:d9:d9:f6:fb:8b:30:1a:1e:d7:09:e0:
e4:4f:25:34:a2:d3:8e:e4:e1:0a:bb:cf:0c:d9:a8:8b:3d:89:
2a:11:ff:b2:e7:41:86:ec:2a:84:07:46:55:3b:d3:77:9f:a0:
63:d4:08:fa:c9:b3:3c:b2:92:48:2e:99:95:50:c6:12:04:81:
53:e5:fe:14:08:fb:d5:8f:37:4e:bd:12:d4:db:6c:45:83:4b:
65:0c:71:a0:aa:81:b7:bf:4c:9a:23:ae:f8:c3:02:3c:44:c8:
bc:1c:ce:f6:fd:b1:6e:78:c5:97:0e:8a:4b:e4:a5:77:fc:01:
9c:e6:e9:19:fd:20:d2:96:bd:68:36:f4:83:e6:7b:f8:19:5f:
6e:90:0b:20:5b:41:d0:db:a5:43:b4:fd:e5:27:2d:f3:d5:8e:
5c:17:e9:7a:33:6e:d4:e7:4c:3c:cb:4b:bd:3d:67:22:1f:da:
77:98:ad:4b:11:5b:6e:f2:06:a8:d8:3b:7b:78:21:49:9f:8f:
75:ce:ee:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:35:25 2025 by rpki-client