Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: Wh04AWbg3ZyxMVzG5ijDk7v1g6d/UV50hJWNMsrB55I=
Subject key identifier: B0:AE:BC:C5:C9:F9:43:0E:43:28:F2:C0:4F:3F:EB:E2:39:A2:8B:87
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019923D64951D3C1711B452C987FD7C04DFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0DF7
Signing time: Sun 07 Sep 2025 11:01:09 +0000
Manifest this update: Sun 07 Sep 2025 11:01:09 +0000
Manifest next update: Mon 08 Sep 2025 11:01:09 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: yDpMrPKK04QAxhWi2Fb2sXUkBftllWxYZhMLLw87TDE=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:49:51:d3:c1:71:1b:45:2c:98:7f:d7:c0:4d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Sep 7 11:01:09 2025 GMT
Not After : Sep 8 11:01:09 2025 GMT
Subject: CN=b0aebcc5c9f9430e4328f2c04f3febe239a28b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:28:28:31:ca:fe:87:c6:e6:91:01:d2:f6:b5:
1d:3f:67:59:10:fa:d5:01:96:72:f6:56:3a:97:3c:
b1:35:bf:d1:ac:3b:c9:6b:b0:fa:46:1a:93:4d:34:
31:7d:8c:f1:b6:ae:4a:8f:47:de:69:2d:11:7b:9a:
35:d1:01:80:34:94:8d:68:4c:46:a0:1b:b6:05:5b:
29:6e:60:14:82:a9:50:72:66:a4:12:9c:1b:37:11:
47:58:24:41:b7:a1:af:5a:58:27:1d:06:09:76:2f:
f9:81:21:4a:f0:02:f1:f4:0b:13:e5:c5:6e:eb:87:
98:dd:30:ef:9c:cd:08:df:ac:cb:0e:42:74:5d:28:
c8:53:aa:fc:e4:6e:e0:94:24:9c:9e:81:e6:0f:cf:
34:e9:73:76:78:e7:95:b8:58:75:3c:0b:88:02:4f:
aa:92:5e:70:9d:4f:c2:b3:76:20:fa:3f:55:61:f3:
c0:91:a6:4d:95:ff:8a:1c:82:c0:68:5e:b9:cb:e7:
51:7e:05:80:95:67:58:13:f6:d4:d1:12:0d:cb:15:
13:bb:04:5c:08:fe:55:6b:43:06:c6:98:3a:7a:b3:
98:a0:52:f4:d3:45:d5:c5:e4:e3:3f:0e:36:dd:36:
db:0a:23:be:89:ac:49:9f:f5:22:72:2d:db:83:90:
9a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AE:BC:C5:C9:F9:43:0E:43:28:F2:C0:4F:3F:EB:E2:39:A2:8B:87
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:8d:b1:96:67:97:96:df:4d:75:9d:0c:46:c4:3d:b7:be:7b:
05:a7:82:51:44:5d:3f:c2:9d:f0:c6:15:1b:ea:67:8f:38:57:
9d:49:72:9b:d9:4f:10:86:31:36:e6:27:97:bb:84:3b:3a:a9:
eb:9d:33:8f:f4:31:80:88:3f:2a:e3:b4:fd:ab:99:cf:c3:34:
c6:ba:8f:9e:1b:d7:62:ae:5c:2e:15:2d:61:96:87:f1:30:2e:
8f:7d:31:12:20:e8:08:9c:56:35:dc:f4:ec:83:68:1a:21:e8:
98:6f:f1:78:e7:e3:f3:06:c4:5d:27:9a:0b:96:0d:52:43:8f:
f5:e5:64:41:db:1a:2c:eb:08:17:c5:77:32:dd:17:48:77:92:
cc:5f:95:3a:0e:f3:34:59:69:72:3b:09:34:40:7a:03:a2:fb:
2d:be:a3:07:c5:92:93:db:06:85:35:ef:1c:9f:78:47:b4:83:
6b:41:c1:df:5a:3b:d5:03:07:7f:48:3f:8c:8c:47:6c:e0:c1:
32:0d:6c:05:1a:84:24:a4:a9:62:da:99:4d:9d:29:c1:ae:59:
f8:b8:f3:16:8d:02:12:28:9f:b4:ed:69:74:46:05:e8:dc:15:
e4:28:60:17:98:43:b3:a1:60:6b:25:c1:5c:88:e6:e2:fc:7f:
1a:be:32:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:36:37 2025 by rpki-client