Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: C8U06sBzUj+g++uKijQZwia0/pYtvoJVOis4pB0s9VU=
Subject key identifier: D3:6E:88:00:CD:27:65:55:8B:29:15:0C:B9:A9:2D:5D:EB:86:A9:89
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 01974B8D764728335926AAF6337D0541C1FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1511
Signing time: Sat 07 Jun 2025 18:00:51 +0000
Manifest this update: Sat 07 Jun 2025 18:00:51 +0000
Manifest next update: Sun 08 Jun 2025 18:00:51 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: +eW0CKpM/uo+URerw9cji4sqKf885bjnfEJ12EapdI0=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:76:47:28:33:59:26:aa:f6:33:7d:05:41:c1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Jun 7 18:00:51 2025 GMT
Not After : Jun 8 18:00:51 2025 GMT
Subject: CN=d36e8800cd2765558b29150cb9a92d5deb86a989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bc:fb:9a:28:e2:4b:75:66:ca:57:40:ac:b0:
bd:50:10:d0:65:37:1e:4c:d7:c0:44:8d:87:4b:5b:
e1:f9:b1:83:23:87:5b:7b:6a:6c:db:4a:2a:b2:81:
24:e0:a4:a4:20:6d:ad:cb:bd:6c:f6:6e:79:b1:d1:
41:c8:16:71:9c:7c:5d:26:fa:fb:2d:94:d4:8c:30:
3f:68:a0:17:31:3f:63:1f:f4:66:15:32:29:9d:8b:
fa:10:67:60:ce:a3:ce:d9:87:bd:43:61:57:63:40:
43:47:1d:c8:52:6d:6c:af:14:6f:96:c1:bc:a6:82:
22:3e:9c:a5:9f:f9:a0:c1:13:f7:82:f9:37:a6:d2:
56:98:90:0d:99:c6:50:9f:bc:44:09:55:36:90:a6:
f7:5e:d2:16:5c:14:38:0c:0b:17:8c:bd:33:ed:d7:
82:df:7a:4f:3e:6b:58:a8:2c:22:f7:dd:4b:5a:15:
44:86:38:c2:49:b2:09:a5:38:22:02:5f:85:2e:d6:
ef:49:01:5d:ca:b6:6c:af:7a:94:72:95:3f:29:73:
0d:1c:69:13:d6:df:3e:13:95:3a:4e:6a:2c:11:10:
8f:f4:4f:ef:ff:2b:b6:81:bf:96:11:9a:9f:0f:c4:
34:2a:36:06:47:61:2b:0a:dd:d4:e5:b5:be:92:03:
a3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6E:88:00:CD:27:65:55:8B:29:15:0C:B9:A9:2D:5D:EB:86:A9:89
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:3a:29:f9:6c:23:6b:df:66:31:bf:6f:30:7f:e7:74:0c:61:
a1:d8:d5:ce:4e:82:69:59:fd:15:04:4c:21:2e:38:79:cb:fd:
ca:17:e4:7c:ce:7b:ca:e6:cc:7c:cb:99:d6:3f:dc:f9:d1:b8:
96:23:fb:b0:bf:e2:3e:85:b4:73:f4:2d:80:c1:95:69:81:09:
17:40:5e:e3:26:df:bd:68:e1:de:31:3c:9b:34:3a:05:33:23:
8e:ce:d1:8c:24:4a:43:64:a5:4e:59:3e:22:aa:31:91:00:90:
d8:c5:4d:0b:29:57:f3:a7:cd:12:30:14:20:9d:22:c9:03:1b:
70:d4:8d:04:8f:f8:93:ed:a8:0d:ac:41:34:b0:75:74:85:13:
34:9f:e7:26:40:37:62:70:a8:6b:5b:90:a1:39:bf:22:9d:25:
47:65:11:43:ac:69:29:f7:61:3a:32:c6:54:bc:99:2a:96:6a:
25:46:03:5c:c3:c2:fb:f1:97:52:36:97:37:8c:c9:a7:79:c3:
b5:51:d0:e0:90:ee:1a:a0:66:87:5b:1a:df:5b:c6:d7:3f:c6:
68:7c:49:a9:18:c5:ef:c4:79:2c:45:2a:e5:fa:ca:dc:b0:17:
ab:66:f1:ce:6a:24:79:bf:57:47:04:74:d6:b9:7d:e1:1a:36:
8c:83:09:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:26:26 2025 by rpki-client