
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
File: Hrq0DWCBM83fdsO1pvgV34H7x90.mft (raw, json)
Hash identifier: pQIW6QKIgNRrXhH5yjxf0guFrxr+1db+84Y4c4XJCaM=
Subject key identifier: C4:DD:57:EF:F8:AE:53:A1:35:21:F9:99:F2:30:31:19:09:EF:2A:D3
Authority key identifier: 1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
Certificate issuer: /CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Certificate serial: 01976BF3F2CC58AF0B09DC7723C46B08CEFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
Manifest number: D9
Signing time: Sat 14 Jun 2025 01:00:38 +0000
Manifest this update: Sat 14 Jun 2025 01:00:38 +0000
Manifest next update: Sun 15 Jun 2025 01:00:38 +0000
Files and hashes: 1: Hrq0DWCBM83fdsO1pvgV34H7x90.crl (hash: KNMr8zind+KD6uTGVw9ZIRNBUMIFz6As5OwC4UnCCds=)
2: dOirMHERf2S7XaVhDBj8pRwQyLU.roa (hash: RUHnPEXdDgz2x6FeuZ8yiEPV6rqAxw/OAxkwBlLK73U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f3:f2:cc:58:af:0b:09:dc:77:23:c4:6b:08:ce:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Validity
Not Before: Jun 14 01:00:38 2025 GMT
Not After : Jun 15 01:00:38 2025 GMT
Subject: CN=c4dd57eff8ae53a13521f999f230311909ef2ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a7:3c:19:de:9a:c1:b6:6f:1e:d3:75:43:5d:
8a:41:ef:5c:a1:41:19:ca:a7:90:c1:d7:9f:d2:a4:
9f:c8:80:d4:83:ca:29:40:83:3f:82:2a:ef:6c:1a:
a7:48:81:da:98:e3:40:63:df:da:27:3f:38:fb:ec:
ef:a4:94:51:59:1c:66:4b:cb:b4:b6:b1:8d:69:fc:
bf:8e:72:f3:98:c2:fb:c3:14:ab:b9:55:c1:99:93:
a0:84:70:ef:8e:fd:8e:3e:f4:93:2d:e1:4d:38:3a:
2d:95:0e:00:bb:1e:d8:f0:ad:42:e1:9f:7b:3b:1d:
4f:b6:a3:d9:b1:c2:33:0c:d7:89:b9:5e:ef:dc:bf:
e1:94:62:4c:c9:96:ec:6e:d6:93:85:72:5d:2a:73:
09:15:55:c2:46:55:90:22:8f:af:5c:0d:e3:a7:52:
f9:35:fe:76:74:5b:be:96:8d:b6:85:f7:45:0e:58:
4a:99:9d:0d:31:27:af:68:ae:d2:b1:47:e4:2b:46:
91:6e:68:c1:2f:70:b0:04:c9:80:ad:14:08:ba:07:
92:94:6d:09:85:5e:9b:8a:e9:2a:92:6c:cb:3d:36:
43:2c:bb:14:8a:63:b6:9f:84:1d:a2:28:c1:b1:49:
bd:4f:64:2f:05:54:e9:a6:56:35:0b:6a:83:54:df:
d9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DD:57:EF:F8:AE:53:A1:35:21:F9:99:F2:30:31:19:09:EF:2A:D3
X509v3 Authority Key Identifier:
keyid:1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:f9:4b:5b:dc:af:bd:6c:69:bd:4b:5e:bd:71:88:4d:af:35:
3b:09:43:41:96:ba:55:1b:1a:06:bb:cd:ff:89:4c:a1:7a:f1:
e7:85:e4:e3:9e:55:31:33:e1:6e:7c:3c:ec:4b:da:c2:c5:f9:
a4:19:87:40:bc:af:f1:ee:4e:9e:d1:c1:b2:08:d1:17:5b:c5:
ba:1e:3c:df:d0:ff:0a:d9:1f:02:79:04:05:46:c2:56:4a:77:
0d:35:3b:12:30:3a:67:56:dd:e6:7d:ae:cd:a7:5d:72:12:98:
36:f1:f3:e1:be:f0:ef:05:af:fa:37:5e:b4:34:1b:05:75:98:
f1:67:ef:94:73:f3:23:4b:f6:bf:a9:69:84:58:f9:c3:85:80:
b6:2a:bb:26:09:c2:6b:28:98:46:3e:7e:77:bb:6c:e7:44:ae:
79:3f:30:6f:96:0a:86:ed:51:28:8f:ed:3c:47:48:ad:cb:84:
db:08:09:bc:6d:f3:65:49:0a:4e:af:a8:73:76:5b:e7:21:75:
15:d6:56:ef:09:42:f9:ba:06:3a:6a:ea:34:b6:4d:d5:8e:7a:
df:5f:05:bd:05:79:1a:05:17:c0:a3:31:7f:24:01:a4:ab:08:
15:fb:09:d9:1f:12:66:6e:ff:54:c7:9e:6c:45:2e:62:b2:66:
a6:e6:3b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:44:36 2025 by rpki-client