Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: lJ0R34OJ7BsjT5ltnTH09Xo+aFoWPf/bGgGZWDzeLTM=
Subject key identifier: 7D:B7:27:32:CE:14:38:9A:AE:23:58:2B:5D:DA:7E:DB:19:3B:E5:9D
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 01974CD69C7D4A01E6EDFDBC630446B31993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: A4
Signing time: Sun 08 Jun 2025 00:00:22 +0000
Manifest this update: Sun 08 Jun 2025 00:00:22 +0000
Manifest next update: Mon 09 Jun 2025 00:00:22 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: gM4OPBddWmNde379BoYEArCqLeatNaDtqQVAHLRAc10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:9c:7d:4a:01:e6:ed:fd:bc:63:04:46:b3:19:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Jun 8 00:00:22 2025 GMT
Not After : Jun 9 00:00:22 2025 GMT
Subject: CN=7db72732ce14389aae23582b5dda7edb193be59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:72:85:c0:a6:9b:81:64:7b:9a:c4:c5:0e:
67:03:49:fb:84:26:ae:d9:5c:e2:2f:6a:7b:53:bb:
00:37:b5:04:11:91:ae:8e:f3:2e:9b:7e:ec:91:14:
5e:12:3c:fc:e5:0e:bb:9d:c1:52:98:ac:fa:08:dd:
c7:0e:1b:69:29:19:5d:72:89:f9:9e:2e:c0:66:82:
e8:39:dc:2d:ef:10:4c:be:c0:a2:19:1c:4b:29:8b:
c4:ab:92:58:f7:29:2f:67:f5:52:68:64:ce:a2:0d:
c7:f4:a3:21:48:26:2c:eb:2b:9d:6d:61:a5:e5:40:
c5:81:2a:9a:02:36:5c:bb:e3:37:66:8f:94:a0:b2:
56:40:3f:89:1b:56:69:e5:36:7f:d4:3b:fd:fb:c1:
68:51:b4:9a:94:05:05:cc:85:c7:92:6e:48:fd:e8:
96:1f:d4:0a:61:f9:c5:6d:24:0c:52:ee:2d:7f:06:
f6:c2:6a:c7:f7:eb:bd:b4:89:48:1f:36:ff:07:a3:
03:2b:54:da:c2:2c:43:d6:d0:7b:60:c0:1d:1a:28:
77:77:08:34:21:53:8b:61:38:85:d2:33:99:95:2d:
28:0d:ee:08:cc:b8:de:44:1f:ed:dd:71:3a:11:03:
9d:3d:9d:b0:d3:68:dd:61:0f:b6:c9:9a:47:b3:c9:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B7:27:32:CE:14:38:9A:AE:23:58:2B:5D:DA:7E:DB:19:3B:E5:9D
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:72:ce:12:4e:3c:1e:7a:e4:c0:d3:30:fb:41:f0:c5:6d:c7:
1d:7a:06:ee:60:cf:05:4f:91:2a:15:f4:a1:55:66:83:c9:f4:
df:09:6d:dc:f6:a3:8f:5e:0f:a6:a1:3c:e8:4b:d3:4b:61:93:
98:6a:b4:d6:2c:bd:ca:ed:98:84:62:80:3c:db:73:6b:04:f6:
9c:8d:ed:93:91:af:ae:fc:41:ed:45:5b:9a:97:58:66:ae:11:
df:f7:6b:6e:2e:4a:81:08:ca:da:80:c3:fa:ff:76:e6:5a:71:
7b:e8:b8:57:65:a9:5f:87:01:12:2b:ff:61:8b:9d:12:27:86:
af:db:5b:cd:4a:32:f8:fb:27:92:79:e4:8e:7a:22:59:64:6c:
ae:06:3d:a0:62:9d:10:d8:cd:4b:dd:09:de:c7:d1:84:c9:a1:
e2:f0:96:8c:b5:1b:c9:c7:6e:fa:f4:7b:cd:a2:21:c8:53:30:
76:0d:9e:5d:c5:d9:ba:30:5c:6d:9d:09:7c:08:aa:b3:07:87:
56:cf:2e:ee:83:92:dc:fb:30:fb:47:6c:f8:e4:92:58:8d:6c:
97:3f:56:c7:f6:e0:bf:06:d8:f1:23:ec:37:64:af:1e:69:aa:
67:37:8e:d3:41:7b:35:81:56:ff:e1:eb:28:80:18:47:8a:d1:
67:a7:61:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:57:03 2025 by rpki-client