Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: He5ydEqBYXewlwJ7P0AjILfyKgk0X5DRe+DgO3C8YhI=
Subject key identifier: 13:D2:7B:69:12:B4:BE:08:EB:4D:FE:C8:76:BD:17:FE:E8:4D:53:16
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 01974C9FA0DA72F09DE2A3F78A7978ABA8C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0D03
Signing time: Sat 07 Jun 2025 23:00:19 +0000
Manifest this update: Sat 07 Jun 2025 23:00:19 +0000
Manifest next update: Sun 08 Jun 2025 23:00:19 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: QuNLFZnBJHhcDf3PaFAziwtmAK4ok87+W2QynLSgBk4=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:a0:da:72:f0:9d:e2:a3:f7:8a:79:78:ab:a8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Jun 7 23:00:19 2025 GMT
Not After : Jun 8 23:00:19 2025 GMT
Subject: CN=13d27b6912b4be08eb4dfec876bd17fee84d5316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7f:3f:8b:f8:63:b0:66:d0:96:f0:2f:c7:80:
de:bd:3b:a2:17:89:4d:08:58:15:45:07:5b:2a:d4:
29:72:fe:32:92:57:e4:15:91:e2:39:c5:e6:15:bd:
13:7b:43:6f:fc:c6:18:13:81:2b:da:cc:ed:78:b6:
78:1d:0b:90:53:4c:a1:cc:d4:a8:a0:04:16:22:72:
da:76:0a:f5:28:38:9f:ad:5e:64:cb:92:9a:35:5e:
6d:bf:d6:9a:c5:1e:29:7f:d0:39:02:b8:d4:25:bd:
7e:63:3d:7c:eb:fb:cf:74:ab:9f:3c:9a:a8:f5:18:
2f:36:23:16:08:51:09:2c:ad:27:79:46:ba:00:92:
4a:53:c6:5b:7f:cf:a5:ae:2f:84:7b:9e:a9:88:00:
b4:42:bd:4f:bf:a6:3b:ac:6e:44:bf:f2:6d:e3:de:
e7:1e:ff:f0:43:55:ce:ce:0a:dd:7e:d5:6f:45:2c:
f8:ee:64:75:c0:bc:c0:e0:bf:5b:6f:51:c3:60:9e:
bc:91:1f:35:31:20:92:9e:0a:47:5f:38:a7:17:5c:
f5:eb:3e:de:79:8e:65:95:67:a1:c2:3d:21:3f:da:
a1:1b:94:ad:07:6f:a3:44:99:56:47:08:93:aa:74:
80:7d:e9:73:87:36:58:a9:04:54:2a:ca:79:85:78:
56:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D2:7B:69:12:B4:BE:08:EB:4D:FE:C8:76:BD:17:FE:E8:4D:53:16
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:be:11:88:79:58:2d:13:d7:2a:82:2b:80:fe:34:69:a7:8d:
82:3e:a5:c3:5b:fa:d4:2c:1d:5d:b1:0d:d2:28:fa:cf:dd:4b:
c7:75:d7:5f:3f:30:d2:83:a4:8b:25:3a:9c:89:8b:b5:a6:ae:
53:78:41:6a:1a:e2:1d:aa:f3:7a:cf:fd:2a:3e:32:00:09:ae:
e3:b2:23:ef:65:ce:b9:f7:e8:d8:86:c3:9d:56:36:8a:5e:3d:
26:df:f4:6d:a1:77:ac:a9:10:24:04:d5:69:e7:dc:e9:26:a9:
b3:a1:b1:3f:ba:43:05:67:fe:a4:4b:ab:18:63:a2:e2:96:5e:
c2:ff:4f:1c:10:23:91:57:86:7f:04:87:16:84:62:9d:89:bf:
80:b4:a5:16:b4:f0:65:90:a9:81:5c:e6:10:29:0f:d6:4c:47:
32:ea:79:4c:c3:77:88:8d:6f:28:e4:df:29:ca:90:f8:92:c2:
e9:a5:26:e1:57:1a:8b:8b:06:f3:d0:cd:c5:21:26:8c:d6:8b:
01:76:42:fe:b2:58:ba:72:ef:6e:8d:f0:70:21:b5:95:a8:cf:
1b:f4:e2:28:46:a8:09:3d:ee:da:c5:7a:45:60:ae:ed:63:52:
15:96:9e:88:6f:bd:f0:46:db:30:ff:f8:9f:63:20:2b:89:5b:
bb:07:de:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:15:56 2025 by rpki-client