Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: oGM92HzzxOnz6J+fbow6WlyT9VaGAwzcRL9la43BJlo=
Subject key identifier: 3A:44:15:C5:1B:7A:03:9B:FC:43:BC:13:FD:34:CA:F1:B9:2A:BF:74
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0199239F01A9EAF7F63C3D7712D402B174C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 1171
Signing time: Sun 07 Sep 2025 10:00:47 +0000
Manifest this update: Sun 07 Sep 2025 10:00:47 +0000
Manifest next update: Mon 08 Sep 2025 10:00:47 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 5U1YaPj4r6eo/bEvBvCaWunzlZaf66IW/4IQA4d3x/Q=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:01:a9:ea:f7:f6:3c:3d:77:12:d4:02:b1:74:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Sep 7 10:00:47 2025 GMT
Not After : Sep 8 10:00:47 2025 GMT
Subject: CN=3a4415c51b7a039bfc43bc13fd34caf1b92abf74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bc:57:32:4e:cd:71:c0:c7:f4:0e:26:02:88:
71:67:7d:b0:be:8f:48:92:5b:97:fb:e4:cf:4c:60:
b5:f2:9c:5c:27:1e:06:09:43:d4:05:36:cd:c8:d5:
94:33:0f:44:8e:88:45:c5:f6:16:e3:38:6f:ca:95:
9a:90:d5:38:6e:9a:41:c1:0a:00:84:94:6d:16:ee:
4e:ab:fe:c2:cf:96:7a:17:f4:25:c2:bc:66:21:d2:
a3:22:66:e8:be:31:a8:3c:55:52:9e:5a:ad:4f:c4:
61:3b:3a:d1:7f:66:d5:17:93:c2:21:96:e9:21:91:
57:00:ea:ff:bc:a9:78:49:e7:db:f3:e6:35:7f:fa:
de:f0:dc:4b:1e:6b:bb:a6:f4:03:8f:67:74:67:53:
30:a1:bb:c1:29:00:26:11:8d:ec:03:c3:e9:3b:c4:
5f:70:0e:06:18:a4:15:46:26:bb:d3:64:5d:40:4c:
58:71:94:47:e6:f4:60:c0:4a:c4:60:dd:69:29:ed:
eb:3d:9b:5a:98:16:95:96:45:f7:17:66:c6:27:06:
b2:2e:4f:14:0f:95:2f:9e:b1:36:ae:08:35:15:ff:
6a:90:2f:3a:3b:c7:2d:2b:b4:f6:3b:dc:ec:36:f8:
63:68:96:ea:48:b2:95:79:92:77:e2:13:40:47:8f:
f9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:44:15:C5:1B:7A:03:9B:FC:43:BC:13:FD:34:CA:F1:B9:2A:BF:74
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e2:c7:b5:88:68:33:4d:1c:33:39:23:51:77:ae:fc:71:8b:
65:c8:2c:2c:a0:bb:30:89:7d:f5:df:2f:9b:d7:0f:2f:85:f1:
94:54:9b:dc:8c:0c:b9:f1:56:0b:22:94:9b:c7:93:d8:d1:ce:
ef:99:fe:91:ec:6e:b6:98:cb:19:d0:52:b5:d2:6c:2a:10:d7:
07:fc:43:cf:f1:ff:cd:73:24:33:c1:b6:06:4e:dd:01:72:8a:
fe:90:da:33:13:34:92:cb:ff:6d:66:1d:fc:55:09:16:1f:ff:
81:91:b4:fd:49:7a:24:52:e2:24:e5:b0:94:3e:8a:95:1a:78:
db:1b:6a:cc:c2:fa:99:57:e7:e2:f9:32:65:32:7d:01:34:73:
da:e8:72:ed:54:fe:96:ec:60:aa:bb:08:8e:c8:c4:6d:d0:76:
7b:3b:26:b8:a4:48:47:9c:a2:0d:24:09:f2:b9:88:80:2e:d9:
7e:2f:0c:7b:1c:97:2e:48:a2:9c:1f:7f:88:5e:58:67:15:cd:
38:16:b9:e4:21:94:7e:a6:92:eb:f6:b8:d2:c7:1c:67:51:dc:
ea:7e:60:9f:ea:40:09:df:62:77:95:c5:23:58:b6:5d:45:59:
f5:c6:48:95:35:3f:19:9e:1d:bd:df:d2:5f:7d:94:1b:52:d5:
21:40:38:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:29:30 2025 by rpki-client