Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: /GrTcW+VoT/rQ1CNvb1td0JHT68hrQaii+afytJdAGw=
Subject key identifier: 33:6A:A5:DA:26:EE:62:FA:10:9F:F9:6D:29:7B:4E:B9:18:D8:16:5F
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 019921B105FB39D7DF56A32B2681BD485057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 1123
Signing time: Sun 07 Sep 2025 01:01:13 +0000
Manifest this update: Sun 07 Sep 2025 01:01:13 +0000
Manifest next update: Mon 08 Sep 2025 01:01:13 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: 7Ku2C+5V0alPb7E2EipN/KbB9qgEwUiuoEY8aZn16X8=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:05:fb:39:d7:df:56:a3:2b:26:81:bd:48:50:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Sep 7 01:01:13 2025 GMT
Not After : Sep 8 01:01:13 2025 GMT
Subject: CN=336aa5da26ee62fa109ff96d297b4eb918d8165f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:52:0a:7a:20:e6:1b:d9:e4:6e:95:60:58:f2:
97:1e:1f:3a:fe:5c:67:41:c3:7f:f0:32:fd:94:bb:
aa:33:9e:dc:d1:bc:9e:e4:6c:24:6a:45:e8:6a:d1:
b5:41:30:a0:65:d4:61:d0:bd:5f:eb:9d:0c:01:ed:
85:0a:21:6b:8a:94:c1:46:f3:bb:7b:c9:00:3d:6e:
ff:24:fa:83:a8:7e:cf:63:7a:67:e5:56:51:74:95:
b6:b0:b7:4d:42:0a:57:5d:24:f2:aa:ee:66:5c:c3:
c0:3e:44:72:34:c8:80:d1:90:c4:73:ac:cd:ed:80:
13:c6:be:d0:dd:1e:b1:d8:aa:5c:b6:76:25:53:57:
75:70:e8:34:b6:47:df:6c:09:52:17:66:01:d2:3c:
93:4b:b9:2e:44:1e:8f:f3:b7:d1:29:80:29:ec:5f:
c6:3c:8a:c7:1a:29:80:cb:82:27:37:c6:d4:9c:34:
4d:ab:4a:57:0b:3f:1c:70:f6:c5:0b:17:dc:e9:81:
3a:e6:24:35:a3:30:a1:ab:f0:41:be:fd:61:b0:31:
7c:0d:a3:2b:1f:43:23:fb:c8:a0:b5:27:a7:b1:f4:
af:6c:67:f5:d3:6a:d0:a2:26:ef:d3:22:bd:62:9b:
46:10:db:24:cb:cd:96:21:70:3f:19:fd:41:67:a0:
a3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6A:A5:DA:26:EE:62:FA:10:9F:F9:6D:29:7B:4E:B9:18:D8:16:5F
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:99:ca:43:0d:df:c4:5c:ce:6f:c0:9d:b3:7d:63:95:13:d0:
50:8d:bc:5d:26:a4:d8:09:b5:e5:ec:1c:4c:2e:84:6f:df:cc:
fc:54:72:56:0b:d2:9f:65:47:28:0a:34:f0:4e:8a:57:25:b5:
66:ee:4a:da:3c:be:bb:e2:29:85:6c:6a:7d:d4:74:01:72:0e:
27:8f:e0:40:90:c1:24:a1:e7:9f:f1:be:b6:8c:8a:74:a9:ff:
49:f7:8f:d5:45:dd:34:c3:51:19:06:be:ee:b4:fa:cd:69:ba:
61:ff:2e:56:e5:a8:8b:48:38:0b:47:f2:fe:27:85:ae:af:3c:
60:86:e8:97:7e:74:1b:8d:c7:70:ba:b1:9d:07:95:22:ff:41:
f5:84:9b:2f:74:54:b7:b0:65:95:08:1a:7b:bb:a2:a2:2d:6d:
69:07:e9:0f:40:e1:7e:81:06:4d:01:ca:dd:23:32:e7:12:9b:
53:54:4f:f5:79:51:94:91:23:c3:d5:75:9c:6f:11:86:a4:bf:
49:1d:1c:5b:b9:fa:3c:b3:53:14:7f:47:04:c7:67:ec:41:3f:
99:3e:c9:6a:15:bd:ac:ab:a8:97:75:97:39:80:4f:d5:4c:9d:
f6:01:c8:5a:de:b1:79:42:43:18:8c:b0:57:4c:e3:04:4a:6f:
69:12:4b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:19 2025 by rpki-client