Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: YQH+9eXv/YnGZVkJW44j+nK/4Ln0jBQLlorUBjpWTrg=
Subject key identifier: 47:CB:96:EB:B0:16:19:2C:5A:88:0D:F7:56:DF:22:B3:BC:F5:19:C1
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 01974A0CE4BD903209E657ED85487535600C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 0E54
Signing time: Sat 07 Jun 2025 11:00:48 +0000
Manifest this update: Sat 07 Jun 2025 11:00:48 +0000
Manifest next update: Sun 08 Jun 2025 11:00:48 +0000
Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: rq3PsrQnT2RSv5PTmOV4f6rb/KKTUQ80K/5eXxrznkM=)
2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e4:bd:90:32:09:e6:57:ed:85:48:75:35:60:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Jun 7 11:00:48 2025 GMT
Not After : Jun 8 11:00:48 2025 GMT
Subject: CN=47cb96ebb016192c5a880df756df22b3bcf519c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:38:c4:83:08:4a:bd:91:3d:f4:be:68:c3:03:
f7:fd:57:82:d1:65:a7:b9:70:cf:38:a6:a3:c4:29:
e5:ad:05:23:2d:1d:0c:42:6e:f4:6b:c0:fb:4f:8a:
27:92:ae:c9:bd:b0:05:ff:f1:a3:37:1f:e2:be:85:
fe:72:fa:22:ab:ea:33:1d:65:2b:38:eb:0a:d3:0e:
f4:74:64:a3:9b:f4:64:cd:46:5d:60:98:61:88:f4:
a8:41:02:4f:d9:e2:66:c0:42:8b:b7:35:f7:27:e2:
76:0f:dc:b4:0d:83:30:94:be:60:2d:11:5b:77:0c:
68:0c:bc:c8:b9:c5:92:e6:9a:56:5a:b0:37:91:3b:
c8:8f:8d:72:f7:1b:09:df:27:f1:79:d3:39:05:06:
0f:bc:9d:a3:8e:e2:b0:0b:85:e6:bc:02:3c:14:f6:
53:65:0e:0e:61:69:9f:2e:17:9c:70:6e:1b:6a:e0:
5a:28:cb:bb:b6:14:96:23:9d:cd:81:06:d4:1b:90:
a7:65:29:13:82:25:5c:cf:3c:54:af:3a:2e:da:9f:
00:18:3f:e1:98:d5:27:99:d6:97:fe:74:05:cb:9d:
65:2f:00:cd:fd:0d:90:64:0c:57:bc:b5:06:f7:3e:
9b:56:34:cd:0a:74:df:75:c9:b8:b8:08:68:7a:d3:
3f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CB:96:EB:B0:16:19:2C:5A:88:0D:F7:56:DF:22:B3:BC:F5:19:C1
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b7:b2:48:ff:c7:83:d7:a4:4d:dc:bd:25:65:72:64:88:72:
94:01:f2:df:4d:bb:d6:23:5e:04:e9:5a:b1:25:46:09:fc:d3:
bb:ad:e8:31:b5:58:c6:99:23:e7:ac:0a:48:ab:96:05:f6:c3:
3c:4e:6e:12:b7:80:bc:3c:f5:4a:e9:64:ff:fe:7b:02:f6:5b:
28:81:fb:62:23:a4:50:88:83:94:55:ee:ee:85:10:6c:5e:41:
36:df:8f:65:75:73:5a:63:2c:8d:62:7c:f7:03:9a:33:32:56:
62:7b:14:7f:6e:39:10:5a:1c:bc:c7:12:51:20:2d:33:66:2b:
d1:60:00:44:d8:6d:1f:06:94:f3:34:61:df:9f:8c:c9:c3:7a:
44:66:77:58:7d:3a:e8:9b:91:f6:0c:53:b9:6f:18:c0:9c:2e:
cb:03:d9:43:bb:6f:85:70:d5:82:93:0e:af:c7:67:e0:71:88:
92:7b:2a:dd:39:a4:37:82:c0:6d:37:10:4e:40:bd:d7:23:30:
3c:e0:9d:a2:ac:6a:50:77:8c:33:97:a1:43:4a:e2:36:70:2f:
64:70:b0:76:f7:8a:c6:43:ea:02:45:b4:50:93:34:1c:d5:e9:
cf:2e:34:d4:bf:f3:39:63:d3:11:7d:70:52:6c:b8:c3:30:a8:
b2:0c:7e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:47:45 2025 by rpki-client