Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
File: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft (raw, json)
Hash identifier: shdxlA109OIZdo4DDIBhsKh2Tla7+7CJsa1UTbUHGso=
Subject key identifier: 9F:9B:19:52:EA:DC:83:C3:AE:64:8B:81:65:B3:EA:F9:C2:3F:C9:E7
Authority key identifier: 1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
Certificate issuer: /CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Certificate serial: 0197499EF88120AD6052204DCB89C16BEC03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 09:00:44 +0000
Manifest this update: Sat 07 Jun 2025 09:00:44 +0000
Manifest next update: Sun 08 Jun 2025 09:00:44 +0000
Files and hashes: 1: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl (hash: 5K2VP88CGRek3s1NTRLeCRDaH1nCYDb7jqiyYxXfZRI=)
2: Rk8F0_O96bWnV23XOY1ym8DMObc.roa (hash: mN43AwUntAXDuv+4vVnXFfluzZ73Kps3qVN8w0gCSEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:f8:81:20:ad:60:52:20:4d:cb:89:c1:6b:ec:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Validity
Not Before: Jun 7 09:00:44 2025 GMT
Not After : Jun 8 09:00:44 2025 GMT
Subject: CN=9f9b1952eadc83c3ae648b8165b3eaf9c23fc9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:9f:40:cb:2a:ee:26:43:ec:45:8e:2a:2a:
78:f6:67:0c:c8:9c:2a:1d:48:e5:ef:19:ab:85:f9:
d1:45:c7:b6:60:a3:1c:e7:97:8f:42:d3:d1:09:10:
36:27:9a:83:6e:aa:0a:c2:b5:55:18:c2:4f:7f:0c:
ca:61:48:66:b2:3a:5f:07:5c:3d:2f:49:1b:3f:e1:
97:0d:9a:65:61:06:02:95:9c:5c:f8:22:f2:a5:46:
c3:5f:26:83:1c:e1:7b:19:0b:85:16:d3:a3:4c:0f:
c9:cd:22:7b:50:af:e7:71:80:63:87:3d:20:6c:18:
2c:e1:1e:a1:d8:e2:c8:9b:5b:fe:30:8c:46:a3:42:
b4:37:48:95:ec:36:03:2d:75:db:80:65:0d:56:17:
0a:1d:0d:5b:1c:4f:72:4f:6c:f4:75:19:61:d5:29:
e3:1a:88:fe:e1:bc:fe:07:d5:8b:ba:d8:8d:e5:6e:
22:7d:bc:0d:64:fe:d8:cf:ff:df:bc:83:45:e3:c0:
25:32:e3:ab:32:73:ea:d6:51:8f:57:dc:24:a4:63:
b3:e5:b3:f8:b0:a9:05:2d:48:8a:64:b0:66:00:62:
15:6b:3d:aa:71:9e:b9:2a:9d:ac:5c:00:13:9d:bc:
7d:c6:bf:16:c3:66:55:73:90:33:03:0c:37:e5:1f:
ab:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9B:19:52:EA:DC:83:C3:AE:64:8B:81:65:B3:EA:F9:C2:3F:C9:E7
X509v3 Authority Key Identifier:
keyid:1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:04:35:79:2a:39:23:10:77:94:0c:ea:79:10:fb:d8:0c:4a:
36:3b:9b:03:fa:14:9c:15:e8:60:45:68:b9:7d:56:7b:dd:ab:
0a:48:3b:49:6c:69:d0:59:52:57:f8:97:42:b8:4c:1c:f7:fc:
1f:59:0e:9c:62:ab:f7:4c:87:6e:98:9a:90:24:ac:45:1e:a7:
82:e8:dd:30:7c:51:71:0c:fa:85:58:71:09:06:58:68:ab:32:
6c:37:30:f7:e7:92:35:37:f8:c3:6c:dc:a8:b3:18:43:96:b9:
64:99:4b:df:28:7a:b5:be:da:f3:6d:6c:01:0b:52:13:b3:16:
6c:f5:07:1a:0d:10:e2:b5:70:70:1d:d1:13:0e:57:90:4b:b2:
f2:8c:f5:71:6b:93:69:db:31:0c:32:c0:15:15:00:28:93:43:
ca:a3:da:74:ea:0a:80:b6:cb:71:1f:99:b2:55:0f:82:75:35:
ea:5e:12:c5:ac:d3:6c:40:ca:43:e5:14:4f:b8:3b:57:fd:fe:
46:13:47:36:9f:34:84:ef:41:fe:87:15:e6:09:29:15:ec:8d:
b0:aa:02:1b:e8:bd:4e:6f:33:7e:01:a7:b4:eb:be:ed:5f:b6:
ff:92:be:90:02:08:f8:35:ff:15:e6:e9:95:a0:aa:b1:e0:69:
24:ba:b1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:05:27 2025 by rpki-client