Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: fR4HZUHqKH47w1pYqsre7fMpnlON0t/06JJh1pd2vQo=
Subject key identifier: 9D:7B:B1:4A:B6:16:04:B6:CA:EE:C2:F2:48:27:40:6A:7B:56:96:3B
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 01974A4393B5F1064883E53F42291CD1FA92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 102F
Signing time: Sat 07 Jun 2025 12:00:32 +0000
Manifest this update: Sat 07 Jun 2025 12:00:32 +0000
Manifest next update: Sun 08 Jun 2025 12:00:32 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: qCmlS/NeJw9bU7Hqk27ENvBDB32t1Oi/paHKV1lQCxc=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 12:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:93:b5:f1:06:48:83:e5:3f:42:29:1c:d1:fa:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Jun 7 12:00:32 2025 GMT
Not After : Jun 8 12:00:32 2025 GMT
Subject: CN=9d7bb14ab61604b6caeec2f24827406a7b56963b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:57:a1:6e:4b:84:5c:9f:cf:9e:ff:a3:90:8c:
f0:a0:0b:04:76:27:5b:4b:af:c8:26:01:7f:3b:b9:
0a:75:ed:5c:8a:3c:92:23:29:72:65:bf:71:29:79:
1d:46:bc:dc:c6:dc:f5:bd:36:58:2b:b2:1e:fb:4a:
8d:8e:e0:a2:01:f0:6b:bc:fc:28:1e:51:83:c3:54:
1f:96:ca:5d:bc:35:eb:73:33:95:21:fa:d1:35:3f:
ce:ea:44:5d:8f:51:96:46:d2:f4:15:5c:df:64:ed:
21:b5:30:80:68:45:b6:da:2d:ff:c9:52:40:87:73:
20:e9:b2:f7:c0:07:b5:86:3a:b3:66:4d:2c:ff:d5:
6b:90:32:c1:39:c7:fd:12:b8:cd:e8:94:4d:35:6d:
56:7a:98:29:40:da:ce:a4:29:f2:2a:e8:2d:45:93:
05:c4:9e:e3:6e:c9:16:05:be:60:18:e5:8e:29:67:
4d:d6:2c:1c:25:42:28:df:55:dd:c9:a8:44:75:63:
4e:5e:5a:d2:eb:1d:1c:ae:1e:8d:18:17:f4:b3:b1:
31:24:20:73:65:eb:e5:0c:1b:ce:63:3d:fc:ea:e5:
2d:6e:18:dc:43:27:78:52:a4:6d:93:12:13:1f:95:
73:09:ee:11:56:8d:2f:4b:76:54:b1:e5:0e:be:78:
45:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7B:B1:4A:B6:16:04:B6:CA:EE:C2:F2:48:27:40:6A:7B:56:96:3B
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:e9:9f:1c:84:e7:ad:b1:75:17:f2:72:10:65:06:bf:ab:b5:
ca:73:4d:8b:77:b3:7e:9b:7d:c4:60:5f:7a:7c:37:27:52:9b:
27:7b:87:08:2a:3e:c6:0e:2b:6f:60:d4:25:f1:b0:2b:40:c8:
a0:86:49:93:cc:ef:2a:f7:91:24:93:32:20:20:07:a0:fd:92:
33:0f:97:21:c8:9a:d5:ae:b0:20:0a:d7:9f:47:d8:ea:8e:93:
5f:b4:fd:f1:da:c2:5a:a9:1f:6f:67:26:9d:42:48:61:43:f7:
c1:99:42:28:db:8f:b1:e0:51:ce:72:a6:41:ae:6d:07:d1:1a:
70:b2:1d:eb:c7:6f:da:60:55:33:02:0f:c1:7f:c8:a1:ee:76:
48:43:c1:78:14:f7:38:50:5b:d9:02:7a:2d:23:9b:4f:f0:35:
1b:7e:70:75:00:fb:b6:0e:b0:53:51:61:c7:0e:2e:48:b0:b1:
f2:ee:5f:21:1a:03:ba:8b:93:6d:db:89:e6:7c:49:73:8a:17:
2f:28:cd:22:cf:a4:8f:ce:4a:b9:bb:21:9f:8f:76:a7:d8:e3:
83:fd:e9:6c:3c:84:37:cf:85:08:49:a0:fa:01:85:1c:53:2a:
93:e9:0f:67:1e:d3:29:ba:c9:d2:40:9d:19:43:d0:54:6b:a4:
26:7d:f9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:50:29 2025 by rpki-client