Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: aLBc8djAcb8ikiYhZmySRDVT4rrDaMY6VXlZ1fpUItc=
Subject key identifier: 4D:B2:FF:C9:46:6C:DC:D0:DD:40:00:8E:EF:F9:2F:E1:18:E0:63:4C
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 01992B594DC4B10E2DE408571CC3B21B3DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 021E
Signing time: Mon 08 Sep 2025 22:01:36 +0000
Manifest this update: Mon 08 Sep 2025 22:01:36 +0000
Manifest next update: Tue 09 Sep 2025 22:01:36 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: XJju1EoGMRD6dKKueFEIkLf0Opt/sWVvWIDt5lvp2Kc=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:59:4d:c4:b1:0e:2d:e4:08:57:1c:c3:b2:1b:3d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Sep 8 22:01:36 2025 GMT
Not After : Sep 9 22:01:36 2025 GMT
Subject: CN=4db2ffc9466cdcd0dd40008eeff92fe118e0634c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bb:79:dc:7b:3d:b7:92:86:d1:31:a9:d6:74:
f6:7b:d2:ae:93:b0:f9:95:e5:1c:c2:81:b7:1a:26:
ee:ee:47:ac:9b:c4:05:25:18:ae:ca:5a:66:62:cd:
b7:96:22:21:e6:75:02:05:41:58:05:d7:19:41:43:
1c:3c:73:dc:a8:f8:e2:74:29:c8:af:b4:a7:7a:1f:
b3:70:ed:6d:f8:49:15:26:70:85:e8:88:9c:ae:6a:
2f:33:15:b2:16:b1:fe:35:a7:04:d4:82:ea:b0:e5:
18:a6:43:9a:ce:a1:32:e4:35:0a:13:6f:a8:8c:15:
e3:01:ed:22:f2:96:30:3e:7c:9d:a4:12:7b:e1:fb:
d2:28:6c:2d:5c:1a:9b:15:c5:60:64:cf:c6:15:2d:
5f:4b:22:1b:7b:45:88:db:29:f2:a8:99:aa:68:f4:
0a:7a:f0:61:fe:db:dd:f3:89:42:c5:ca:59:47:ba:
9f:6e:74:65:55:09:b4:d9:47:06:52:a6:54:5c:e2:
df:55:1f:79:2c:2b:98:32:54:79:a7:ed:43:44:31:
9d:3a:e2:31:e1:d2:02:8c:b3:4b:88:ef:a1:ea:4f:
1d:44:f6:7c:3a:b9:46:ce:68:00:b9:5c:71:17:31:
fa:48:61:35:00:19:6e:8f:4a:9e:47:07:80:30:31:
65:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B2:FF:C9:46:6C:DC:D0:DD:40:00:8E:EF:F9:2F:E1:18:E0:63:4C
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:0e:4d:86:18:2e:a5:c2:df:99:e2:92:2e:3d:ff:ae:c0:14:
e4:67:5a:9b:62:9e:5e:3e:b0:e4:40:9a:cb:64:ba:61:34:6d:
9c:92:d4:59:61:d7:17:94:06:fb:3c:85:46:a6:15:0e:e0:71:
f6:a0:cd:71:b4:ec:8b:30:bf:e1:7d:d2:7c:85:3e:1e:3f:ff:
78:24:5e:bd:db:3b:83:ec:88:ed:49:d7:93:b6:29:f7:b5:da:
02:3d:12:1b:08:84:2b:2e:cf:bf:58:54:ae:73:a6:09:08:bc:
53:f2:4a:4e:e1:84:37:b2:52:0d:5d:cd:90:69:d8:82:41:3f:
d8:55:15:bd:75:0d:27:50:f8:4d:14:dc:7d:66:68:0c:4c:f9:
27:35:39:7a:be:67:f4:3d:95:17:9b:66:a1:6b:ee:70:e5:30:
91:70:14:d3:39:1b:6d:21:7c:7a:ae:64:64:f1:a6:29:35:a8:
86:e2:3a:0b:57:3f:5d:56:b6:b7:54:2a:a6:30:f4:49:79:37:
85:1d:2b:dd:1a:6f:d4:2d:5d:30:dd:29:c6:c8:16:69:b9:ef:
72:09:c2:43:4f:2d:ca:2a:8d:42:0a:48:62:01:cf:ef:65:f8:
ce:45:54:7c:27:a5:bc:5c:b8:6a:23:49:03:59:f4:68:86:39:
ba:90:89:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 04:19:33 2025 by rpki-client