Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: VFJtBtKZJWtHNhFsMJlDd9GpbrYhB6Mp8WWj2ajJPT8=
Subject key identifier: A2:49:81:CA:01:1F:01:F3:D3:00:2F:33:2C:A3:C1:69:78:AD:D7:78
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 01974AB1D159EF194F438771BF04DED32052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0694
Signing time: Sat 07 Jun 2025 14:00:56 +0000
Manifest this update: Sat 07 Jun 2025 14:00:56 +0000
Manifest next update: Sun 08 Jun 2025 14:00:56 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: 4VLM4a+oIbL/uo/w8Up7iJDnRsjEyczvwWzQ/HuPclo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:d1:59:ef:19:4f:43:87:71:bf:04:de:d3:20:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Jun 7 14:00:56 2025 GMT
Not After : Jun 8 14:00:56 2025 GMT
Subject: CN=a24981ca011f01f3d3002f332ca3c16978add778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:29:d9:38:6c:d8:82:c0:e7:ac:b0:5c:86:eb:
ac:94:13:ec:90:1d:9e:79:75:8e:c0:3b:99:8d:7e:
c1:a0:85:1e:c1:5d:c1:9c:fc:b7:45:1e:57:f3:a8:
78:c8:24:bf:a9:16:98:43:d4:8b:c6:9b:6b:24:99:
be:6f:4a:2b:40:15:b0:ce:7f:0c:a8:c5:26:f7:84:
ee:9c:36:e4:f5:a4:ff:4f:e0:03:b0:9b:a8:60:54:
63:8b:f3:7e:3c:aa:72:57:07:13:df:00:f0:e9:c0:
16:2c:83:44:61:84:d4:cc:13:30:05:44:d8:23:a5:
c7:ad:3d:5d:75:6a:e5:23:35:96:aa:1b:82:19:42:
08:bf:2f:f1:62:79:52:ee:cf:01:f7:fd:77:0c:c4:
83:56:a6:2f:cc:57:8b:6f:f6:99:83:f8:49:d4:f1:
06:97:ef:65:25:42:e4:77:20:8e:4f:1c:57:ee:0e:
b1:6c:5f:98:60:15:58:63:66:cb:06:cb:e1:5c:9c:
62:51:bc:bd:c8:1f:35:6a:60:e4:99:17:81:e9:6a:
16:35:94:ad:36:e6:4b:10:74:90:80:c7:41:51:ff:
0f:e0:b4:b4:7d:30:df:32:f4:95:d2:d4:96:93:c8:
29:ad:67:87:51:20:5b:7c:26:e4:3a:92:72:ba:62:
3f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:49:81:CA:01:1F:01:F3:D3:00:2F:33:2C:A3:C1:69:78:AD:D7:78
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:62:43:64:dc:7a:bf:50:18:65:86:3f:07:9e:50:98:eb:14:
9e:3b:ae:c4:2f:dd:68:21:ee:90:ed:f1:8d:a3:88:3b:5a:6f:
22:22:14:bb:90:a0:2e:07:10:38:9d:be:51:1d:26:56:d8:03:
08:86:c5:c1:2b:06:6b:ee:7e:70:d4:14:7c:e6:1b:80:96:5c:
44:a5:35:3f:f8:d8:64:4b:50:db:33:72:c2:bf:66:b8:8c:10:
77:81:7c:68:33:a6:c6:3a:f6:5b:03:86:f5:fa:bc:48:8a:39:
79:1c:96:3b:8c:1e:84:43:78:c8:13:62:87:de:97:a0:23:4b:
45:9f:d9:92:f0:ea:e2:fb:91:2d:b1:89:e4:4e:1f:99:11:62:
eb:b2:e4:0d:f9:7f:74:c1:c5:62:f0:3b:8d:56:62:51:3a:3f:
8e:2b:ad:cc:0a:10:74:18:69:2f:4d:e1:41:dc:2b:f6:d5:a6:
d0:5e:1d:25:bc:f9:62:5f:57:82:3b:29:d4:37:53:a7:c3:6c:
65:83:6d:d4:81:c4:2e:54:7f:2d:4a:34:63:e7:a1:3d:f5:33:
96:92:5a:e7:9c:ba:1f:4c:6f:be:1f:33:0a:37:ad:8e:07:82:
f3:6d:96:a6:af:ad:e8:56:e8:ea:0d:21:ca:49:9b:5d:e0:c6:
a5:84:1d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:20:21 2025 by rpki-client