Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: inBvRHQUNI0SwIJ8uF6NPk/k3fxn7dyxg/aZWIZ8J1c=
Subject key identifier: 6B:E1:CB:ED:3B:55:E8:A5:6B:B1:E9:2C:16:2F:85:86:08:D8:35:59
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 0197466745C12C4B1B3BCA6EBE08B0C4684F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 03AF
Signing time: Fri 06 Jun 2025 18:01:02 +0000
Manifest this update: Fri 06 Jun 2025 18:01:02 +0000
Manifest next update: Sat 07 Jun 2025 18:01:02 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: us+FjW3GpgUu4BqjoYIydcvKBgfim04QaiOgIafOcSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:45:c1:2c:4b:1b:3b:ca:6e:be:08:b0:c4:68:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: Jun 6 18:01:02 2025 GMT
Not After : Jun 7 18:01:02 2025 GMT
Subject: CN=6be1cbed3b55e8a56bb1e92c162f858608d83559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e4:79:70:56:de:51:b1:92:de:bf:b7:f4:93:
de:28:02:f8:94:57:5c:ad:88:f4:3a:28:55:6f:28:
0a:56:7a:42:fe:75:73:8c:4e:3f:69:7b:4a:cd:af:
9b:b1:71:96:3a:6c:c5:58:de:70:42:ec:a2:5b:36:
5b:ca:2e:01:b1:f0:97:f7:ea:27:be:8f:d2:7e:5d:
07:a5:3c:17:90:bb:98:a7:2a:dd:32:86:af:c3:33:
7f:5a:07:80:29:0d:28:db:6f:9f:d4:48:15:40:60:
f1:c4:5c:68:da:9b:97:b4:97:4a:93:b2:3e:d0:c7:
d5:6e:59:9f:50:e3:dc:5b:e7:4b:fe:b7:63:1a:39:
07:ee:ea:09:37:95:c2:17:fd:d8:99:69:79:71:b6:
21:63:c7:57:82:95:13:d4:71:73:83:b8:0b:47:8d:
28:a8:34:4c:dc:02:50:41:88:d0:f3:75:9a:55:63:
6f:d1:64:8a:98:b5:ea:6b:c1:00:89:5b:d3:c6:8e:
15:bb:36:63:72:9c:e8:db:ca:08:25:ce:8a:56:9b:
1f:48:f0:ec:00:0e:d8:53:e1:00:e9:9e:37:8b:34:
8e:16:fc:20:2a:3f:5d:d0:d0:0b:f9:e9:26:81:38:
68:5f:43:22:df:ff:93:88:e2:1f:1f:14:f2:b6:3e:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E1:CB:ED:3B:55:E8:A5:6B:B1:E9:2C:16:2F:85:86:08:D8:35:59
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:81:51:81:93:ed:01:22:fa:82:a2:8a:2a:3d:40:c5:53:77:
42:a7:57:79:a8:6a:8c:88:ad:d1:0c:ee:f7:d0:0b:e0:2e:2c:
01:74:a7:46:29:b5:c6:90:29:33:48:a7:5f:94:25:82:3a:5b:
10:0d:70:6a:83:2c:af:e0:8c:9b:b4:b0:2b:ac:f3:79:3d:48:
5f:be:ef:6e:bb:3c:bf:30:33:da:6f:ed:41:21:11:77:1c:f7:
b4:7e:f0:2e:30:90:05:00:b1:f6:15:96:c8:20:cc:69:7a:1d:
fb:4d:12:02:b1:70:78:2f:ff:8c:25:46:1e:40:e2:1a:ca:13:
c4:be:2e:73:0a:5d:c8:0b:b0:16:62:b5:25:86:4c:a0:ed:7b:
31:a5:cb:d8:2e:70:49:44:ce:01:a4:88:b2:38:76:b4:f3:53:
48:21:45:05:31:ac:9d:c3:8a:46:b7:fb:2c:37:ee:e3:54:94:
b0:2f:dd:99:94:5d:b7:3b:a7:34:ef:bc:19:72:d1:ec:d5:ef:
61:1e:cd:4d:fc:f8:8c:dd:37:1d:ef:98:6d:4a:5a:b0:96:6f:
c8:b0:8e:39:6b:e4:85:45:5c:59:de:64:92:fb:f1:a6:06:97:
f8:d1:f3:e7:2f:e0:b1:ad:24:ea:80:01:3b:6b:6e:ce:d9:86:
9c:69:c2:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:38:51 2025 by rpki-client