Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: fi9CEAtzT9vEZcFroEAZBh4BjEn+GvLgu/Ea9Q9SRvw=
Subject key identifier: 77:7B:03:30:5E:83:49:6C:3D:89:82:A7:19:38:95:89:FA:E5:2B:B3
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 01976D06A87E31D1D54EA8A71FBCED644216
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 108E
Signing time: Sat 14 Jun 2025 06:00:42 +0000
Manifest this update: Sat 14 Jun 2025 06:00:42 +0000
Manifest next update: Sun 15 Jun 2025 06:00:42 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: CewZGjE1somhUUhm3BBuWGOviovfl44s36D1X6Ab0OA=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:a8:7e:31:d1:d5:4e:a8:a7:1f:bc:ed:64:42:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jun 14 06:00:42 2025 GMT
Not After : Jun 15 06:00:42 2025 GMT
Subject: CN=777b03305e83496c3d8982a719389589fae52bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f3:07:9d:30:08:8f:95:89:7c:97:cf:a5:0d:
e8:fc:ea:1a:ba:69:74:20:0d:21:0c:1a:ef:b2:e2:
44:ba:2e:6c:ac:98:aa:ca:a4:2e:90:84:bf:2c:61:
67:ee:02:4b:1c:c0:ff:77:46:0e:43:da:2c:31:ce:
c7:b3:2a:ee:a1:ea:8d:f0:c4:fa:f3:f2:b0:95:c0:
5e:cb:6c:8d:38:cf:5b:97:da:85:85:78:e3:10:24:
69:5c:ff:1d:75:a3:07:44:e7:60:87:dc:a7:b4:1a:
1f:80:4b:15:f0:27:26:35:37:f1:d2:6f:70:1a:9b:
44:5b:c5:af:02:e2:a7:25:bf:cd:d8:67:81:00:88:
08:20:e1:51:e4:31:53:47:2a:07:17:8c:e5:13:7d:
95:3d:d0:2b:db:68:c5:87:84:05:fa:7f:57:2f:9c:
ac:53:b5:9b:d2:f7:27:b0:59:6d:51:a0:dc:6a:8b:
10:33:00:65:7d:4a:87:37:a0:8c:6f:04:ca:90:49:
c0:86:27:4b:73:eb:55:0e:83:9c:ac:06:41:93:b0:
fb:fb:47:98:d2:d3:d8:e1:13:30:70:ab:03:7f:39:
e0:5f:2b:47:6c:6b:d6:d4:d0:95:57:0f:66:28:c2:
12:90:9b:2f:b6:73:bb:50:66:a6:5d:da:85:37:30:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7B:03:30:5E:83:49:6C:3D:89:82:A7:19:38:95:89:FA:E5:2B:B3
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:f2:a3:32:55:3d:30:79:68:14:25:cc:c2:5d:7a:53:ba:23:
0c:46:58:a8:76:2a:7c:02:80:06:06:1d:35:17:12:e8:ef:ca:
b7:dc:96:4a:95:04:86:78:87:34:6e:fa:b6:93:a2:35:af:74:
54:d8:dd:31:2a:4c:6f:fb:91:87:bc:2e:31:c5:fe:1e:16:45:
a9:d7:a8:5f:ec:57:7c:d2:cb:bc:04:a0:5c:61:8f:21:27:3f:
a3:6d:83:d3:e7:66:28:1d:aa:f2:c5:05:bb:9d:b6:b6:ff:f6:
3e:e4:a6:a7:73:16:65:f1:e1:24:4a:fd:93:56:12:e8:aa:78:
e6:29:7b:ac:da:ed:62:c0:29:e8:35:6b:89:a7:09:d2:6a:50:
28:88:da:10:7e:aa:ad:5b:fc:2a:49:a8:52:2f:fc:46:1b:c8:
a8:93:05:ac:91:02:0a:03:ed:50:45:56:a8:f5:cd:fc:14:1e:
d7:88:08:8f:1c:fb:31:3e:9a:ae:c9:a4:a2:9d:34:09:72:84:
0d:46:04:b8:06:34:cb:d4:6a:f0:8e:15:34:ba:70:e9:ca:7d:
fa:93:eb:f8:18:50:2c:3b:e3:ea:18:fb:ae:43:c1:84:e7:8f:
24:ca:40:d6:b8:b8:4f:5f:49:62:f3:c1:44:a8:ff:ab:cc:17:
a8:c8:64:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:41:39 2025 by rpki-client