Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: YiOtPwyaHkal4y6yaBNLMZQJwuWO5/1CpvZbku/kRJs=
Subject key identifier: DF:C1:9D:F1:04:D2:98:A9:47:C1:4B:09:63:8F:B4:E8:5A:E8:9F:9D
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019922FA0CB1727ED335C661191F6237918B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0287
Signing time: Sun 07 Sep 2025 07:00:36 +0000
Manifest this update: Sun 07 Sep 2025 07:00:36 +0000
Manifest next update: Mon 08 Sep 2025 07:00:36 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 0SGXbkGtPhLAvZXnSE03EwDqQm+un2WfaADPKX92Vnc=)
2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=)
3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:0c:b1:72:7e:d3:35:c6:61:19:1f:62:37:91:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Sep 7 07:00:36 2025 GMT
Not After : Sep 8 07:00:36 2025 GMT
Subject: CN=dfc19df104d298a947c14b09638fb4e85ae89f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:1d:87:27:af:1f:7c:48:b5:c2:c9:a8:6b:
8e:99:85:88:f9:cb:6e:a1:1c:6b:33:47:53:f7:ed:
8a:54:e9:27:03:1f:f7:2e:68:7f:86:4c:7b:c1:7a:
fe:86:3f:e9:58:38:d3:5b:99:21:d8:d1:8e:57:ab:
0b:85:2d:b5:a3:9d:6f:37:8c:6a:3d:dd:4c:5f:cf:
04:6c:f3:fd:02:77:07:ce:bd:91:9c:46:4e:61:28:
f8:54:31:c1:65:79:7f:8c:48:e2:8b:96:c1:b6:06:
fb:16:c6:0d:bf:dc:66:1a:2a:c4:5b:08:f9:bd:f6:
ba:cd:20:d6:35:c3:bc:7f:9a:38:09:c1:fa:b5:7f:
7e:11:7a:aa:01:a8:a2:3d:fb:72:44:1b:3e:1f:03:
29:e2:f5:71:52:09:96:ed:df:25:90:44:ed:4c:b6:
09:a2:a3:96:6b:70:6e:46:e3:f7:51:ce:50:73:8e:
eb:ad:ce:0a:e2:c0:44:87:e9:41:48:61:2e:b0:f9:
7e:63:c7:cf:62:28:bf:03:31:29:84:6c:c1:2e:f2:
eb:c9:3e:98:fd:79:c3:25:d6:90:ed:98:bd:80:ad:
87:a9:64:3a:97:ce:e6:5e:f3:95:16:71:79:b0:2c:
c8:52:02:f3:9a:e0:c2:7b:a2:54:79:e1:eb:61:e4:
80:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C1:9D:F1:04:D2:98:A9:47:C1:4B:09:63:8F:B4:E8:5A:E8:9F:9D
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:23:a3:7f:69:44:cf:18:ea:46:c1:95:52:9f:cd:11:84:e4:
a0:51:3c:31:bf:ce:96:2a:9b:f8:a6:fa:b2:9e:12:67:e7:ce:
6d:d0:d9:2b:75:14:f6:cb:c4:1c:c7:1b:82:bb:46:3c:81:16:
f9:b7:1f:f8:10:37:b1:d3:64:50:0e:49:0d:81:c6:bf:e6:92:
1f:c4:32:1c:71:f3:9c:a5:c2:75:0a:ef:7c:39:8b:87:36:db:
74:37:67:54:54:bd:78:9e:04:96:14:ba:bb:51:a6:2a:88:12:
b9:89:fa:6e:6a:d3:72:56:62:52:4a:c3:56:64:36:73:83:f9:
dc:34:45:5b:38:05:39:17:91:78:2f:9f:a5:5a:61:a0:c5:71:
9e:e1:a7:3d:d3:f8:fa:82:be:4e:1d:59:da:92:34:89:61:f2:
2d:62:e3:59:f1:89:f0:6a:e3:91:3a:39:5c:2e:74:3c:4a:d0:
90:3d:b8:81:5c:27:79:82:ba:ee:28:d5:17:5e:71:2f:7d:05:
dc:f0:c8:27:d8:34:47:1f:f5:51:03:ac:19:f8:1d:b5:90:e4:
74:55:25:f9:b8:59:13:68:6a:ce:6a:6b:90:0b:46:c7:15:9b:
6c:d7:c7:c8:e7:08:bd:67:e2:2e:bc:b0:a0:03:e7:81:00:94:
e3:5a:63:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:01 2025 by rpki-client