Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: 8PmM88k7QNbGGUGLAxvFd0rKueKDV8aFzVfMRqS5sqU=
Subject key identifier: 55:46:5A:03:42:27:19:D3:CB:A8:49:89:5C:51:54:97:68:28:CA:73
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 01974C3227344A0CE306D9CE8BA12C482F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 0126
Signing time: Sat 07 Jun 2025 21:00:44 +0000
Manifest this update: Sat 07 Jun 2025 21:00:44 +0000
Manifest next update: Sun 08 Jun 2025 21:00:44 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: T25fsUBnVtdVNJsSm4ov6EvqpcqeyrZtCTMm/wHO/hQ=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:27:34:4a:0c:e3:06:d9:ce:8b:a1:2c:48:2f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Jun 7 21:00:44 2025 GMT
Not After : Jun 8 21:00:44 2025 GMT
Subject: CN=55465a03422719d3cba849895c5154976828ca73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:08:33:87:b3:a8:a6:15:f4:d7:f7:79:44:76:
25:cd:d0:e4:d9:5e:ca:ec:2a:e0:60:32:81:5b:b0:
b2:eb:c7:bf:ff:dd:34:76:98:05:8e:d1:66:d0:45:
78:ad:b2:48:83:8e:b2:cf:ef:06:ae:07:a7:79:fc:
0c:5b:ff:9e:24:19:84:ca:6c:26:94:0d:04:94:50:
ad:02:f7:7a:b5:d9:48:5e:c7:2c:55:8f:f4:b4:00:
1e:87:08:ca:64:7e:99:43:fa:4b:13:3f:b7:06:f7:
4b:05:d2:66:2c:d2:a0:3a:33:e1:57:59:39:a1:a0:
db:1b:39:38:4b:a8:04:d8:69:b7:b5:88:0a:2d:83:
8b:d8:3b:ea:66:2f:82:d6:0f:50:4b:7a:ee:1f:4b:
b9:83:55:57:a0:e9:83:4f:ca:3a:79:3f:5b:40:38:
9e:25:2a:d4:c5:81:67:ef:e8:22:f9:17:2e:1e:63:
7e:87:ea:38:d2:ca:9d:5f:90:5d:fe:0d:6d:21:99:
e6:aa:5c:b6:75:f4:e8:6e:59:56:03:48:4c:b1:b7:
75:18:f8:21:8b:21:01:b1:e2:16:3a:a2:2e:ed:92:
a8:a7:6b:ca:c2:b1:7d:b2:36:2e:36:3c:1a:d2:93:
e6:8e:55:de:06:65:cf:7f:56:1c:d8:1e:9f:00:9d:
e3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:46:5A:03:42:27:19:D3:CB:A8:49:89:5C:51:54:97:68:28:CA:73
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:4a:95:79:d1:4a:95:6b:87:5d:3e:2b:43:54:0b:11:de:f1:
5b:ef:73:9c:c0:8d:63:fa:33:92:86:59:86:b6:09:4c:e3:d1:
49:b6:b9:10:b0:ad:44:3d:2a:86:9c:a3:a7:52:fb:1f:5c:b7:
2a:7e:eb:3d:a5:c4:75:90:69:ae:d6:ef:c5:0e:49:3d:1a:16:
5f:42:c2:e8:5f:8f:fa:76:c6:a1:c0:f5:85:b1:14:21:e7:ec:
3e:34:d7:f3:f9:cd:c1:22:28:94:e5:51:05:e8:62:c6:aa:76:
e9:e1:4e:3a:ff:ea:09:94:7c:e8:73:06:81:5f:e8:e2:ea:40:
cc:11:65:ba:b1:6f:e2:82:04:56:89:60:16:46:11:02:bd:be:
62:c6:80:12:9e:de:da:57:7a:ba:66:64:ea:ad:30:9b:72:47:
1d:d7:71:44:e4:e5:25:ef:a9:c0:b9:8c:67:44:25:de:3e:30:
da:ed:42:3b:3a:7b:9d:a1:a3:42:e7:b1:30:c2:df:80:80:ed:
05:ba:22:b5:26:ee:35:c0:fc:9c:b3:6b:f0:5a:cf:bc:19:d9:
c6:d9:6c:1e:87:39:85:5c:6b:9f:f6:4e:9f:3c:c9:3f:94:3d:
5e:c7:5d:dd:de:f9:ce:4e:33:86:15:0b:f6:af:8d:45:cb:b1:
ff:d7:77:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:59:04 2025 by rpki-client