Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
File: HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft (raw, json)
Hash identifier: 2Uxq6p/I4yhh9Jss2e0z/EdBOnea/H50Ylujdi4OMeE=
Subject key identifier: CA:50:B5:21:85:11:A5:3D:17:26:71:03:EF:95:47:87:11:39:73:48
Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Certificate serial: 01991876724A272F7194BC366BE534E23221
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
Manifest number: 1390
Signing time: Fri 05 Sep 2025 06:00:39 +0000
Manifest this update: Fri 05 Sep 2025 06:00:39 +0000
Manifest next update: Sat 06 Sep 2025 06:00:39 +0000
Files and hashes: 1: HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl (hash: rnQ3SYcDwS9t/1RnaNNClAJB0KcKz1v2YED1mu2MUlA=)
2: Vu2y-aZXZUUf1w0WU_d1LDGMCjI.roa (hash: FtyHvpwzr+fctqlndkuiTxqEdI3uy3i+5i35b5nlvso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:76:72:4a:27:2f:71:94:bc:36:6b:e5:34:e2:32:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Validity
Not Before: Sep 5 06:00:39 2025 GMT
Not After : Sep 6 06:00:39 2025 GMT
Subject: CN=ca50b5218511a53d17267103ef95478711397348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b7:84:29:6b:7c:04:3a:90:5c:57:33:aa:ce:
fd:00:81:88:b0:d1:ab:57:82:f5:31:fd:e7:e1:fc:
49:6b:d6:78:fd:cb:49:5b:0a:0b:fd:78:ec:70:df:
ec:f4:17:60:90:bc:8d:0c:6e:68:26:32:5a:92:3b:
fc:3e:e7:88:60:63:97:f6:33:61:de:bd:16:30:54:
1a:34:f7:71:43:0c:c8:8f:0f:84:ee:fb:5b:d5:74:
83:3d:c7:f2:1a:27:ec:f9:aa:c9:cf:a8:d4:da:ef:
46:f5:71:25:f0:56:59:bd:4b:10:01:27:7d:8f:11:
f3:4c:6b:27:41:ac:c7:56:38:28:c5:c1:c2:63:32:
74:f9:78:a1:07:72:d0:1f:7b:00:e8:d4:5b:10:4a:
21:eb:aa:89:84:c0:c8:ed:e4:90:7f:2d:a9:e6:be:
2c:87:6e:0b:20:86:2e:be:d0:c2:44:0e:c9:e8:62:
2e:e7:dd:88:9b:c2:51:13:58:37:9b:3f:55:40:32:
1b:f9:02:47:16:be:1c:bd:73:17:58:2f:e5:57:97:
c7:b4:d8:60:7f:28:86:77:11:1c:c1:d3:f8:9d:94:
c6:65:96:36:ba:c0:48:57:e0:68:7d:cf:b1:67:29:
40:8c:90:9b:10:4c:9f:72:fb:ef:42:db:c0:41:3b:
d9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:50:B5:21:85:11:A5:3D:17:26:71:03:EF:95:47:87:11:39:73:48
X509v3 Authority Key Identifier:
keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:9e:69:6e:28:19:ff:de:12:2f:84:93:34:17:57:d1:7a:03:
c6:eb:c1:d9:b5:fa:c4:1e:07:87:fd:f2:b2:d3:19:c1:71:44:
07:49:cf:5b:c4:3c:82:2b:b2:e7:ac:f4:5b:46:18:e8:6a:f5:
16:82:16:72:e0:c9:69:4f:ac:9e:cb:34:21:1d:e9:62:0e:b3:
7b:d4:cf:21:7b:12:42:a5:c1:94:b1:4e:b7:6b:f0:41:35:86:
fd:2b:32:8e:a6:f3:fb:4f:ac:c3:83:31:ee:f0:42:3b:c9:dd:
23:1a:f6:b7:a2:ff:cc:b6:40:83:55:5a:66:5b:ec:c3:68:0e:
e3:63:c0:88:ee:35:c5:4f:d8:cc:ad:f6:c4:e2:a3:fc:cf:97:
4d:ae:ef:d2:68:00:4f:53:68:82:51:1a:8a:5d:5c:2d:2f:fb:
cd:88:08:e1:29:1e:96:14:18:ed:7d:6f:03:d6:45:7b:76:07:
71:bd:3a:ca:f1:66:9a:7a:86:57:a0:67:a5:06:e1:41:64:1b:
de:90:ff:b5:43:e8:4a:9c:b8:d4:e8:90:70:48:d7:15:27:53:
74:ca:28:9a:a4:57:64:67:81:f5:67:da:86:77:1d:73:2b:9f:
e3:14:ee:e6:03:4d:98:05:82:5e:1b:d7:96:27:be:ce:2c:89:
a9:5b:71:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:39:24 2025 by rpki-client