Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: BDlVwDO6YNs1DvFXgsZ4vnb1Joi/330ieIB4KUVxMRw=
Subject key identifier: 90:E8:C0:22:B3:91:24:6B:D0:86:C8:D6:AF:26:D9:4E:91:A3:0E:29
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019770753CDFCC26D55B08D0FD0C0D83A841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 159F
Signing time: Sat 14 Jun 2025 22:00:20 +0000
Manifest this update: Sat 14 Jun 2025 22:00:20 +0000
Manifest next update: Sun 15 Jun 2025 22:00:20 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: jfL0VA9lRN0Mq13w+njH88ApPBmcLfyizPRhfQNjzGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:3c:df:cc:26:d5:5b:08:d0:fd:0c:0d:83:a8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Jun 14 22:00:20 2025 GMT
Not After : Jun 15 22:00:20 2025 GMT
Subject: CN=90e8c022b391246bd086c8d6af26d94e91a30e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fc:81:01:fa:2d:52:f6:56:95:89:17:8f:b7:
a7:3b:ed:69:e2:23:ef:d2:85:2c:39:78:c1:bc:5d:
77:6f:e0:74:ec:07:2e:8d:60:c9:58:52:e4:fd:56:
c4:3f:d1:f3:9c:0f:2b:53:fd:9a:41:d3:67:73:f7:
40:f9:d3:11:ed:45:e4:11:a3:ba:e6:87:2c:f8:f4:
81:fb:6d:88:69:14:01:6d:1e:ef:7b:61:e8:53:74:
c2:0b:76:06:aa:c6:1e:4e:b9:c4:14:5e:9e:d9:19:
3a:02:57:ad:38:eb:1d:b3:2e:47:cf:1e:20:f4:f1:
c6:2c:79:94:b3:b3:35:9b:e0:52:a9:20:c3:b3:05:
a2:70:5e:e6:a4:b5:d9:97:b0:ad:ae:4a:84:eb:fa:
c2:a5:dc:4a:11:c2:ff:a1:e1:9c:4b:a5:e7:40:d0:
11:e5:04:c7:36:ce:dc:aa:21:27:7d:99:1c:b5:6f:
96:23:27:a1:7e:69:6a:b3:19:9e:e8:56:d6:67:16:
9e:0b:e7:4b:97:04:7a:4c:ab:ff:1c:13:e7:9b:22:
ea:77:02:bb:91:36:f6:b9:2e:0c:19:5f:b8:ec:ed:
97:3f:b2:69:36:05:05:2b:1b:12:7e:e0:0b:db:a4:
62:fd:51:50:f0:3a:04:18:d5:72:da:80:6f:98:4e:
ef:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E8:C0:22:B3:91:24:6B:D0:86:C8:D6:AF:26:D9:4E:91:A3:0E:29
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ca:c3:19:cb:6c:aa:53:ee:d7:56:2d:84:3f:16:63:36:ef:
8d:01:f4:f8:ff:cc:16:8f:f2:5c:16:7e:d8:9b:55:16:0c:76:
9c:23:a0:a3:4d:26:d5:78:42:68:7b:3f:13:21:81:fb:c3:93:
fb:1d:67:ff:c2:5d:64:2a:aa:42:50:c8:05:33:db:4d:67:3d:
e3:4b:18:9f:2b:73:a6:8c:89:02:ff:e9:3f:79:bd:6a:d8:18:
40:ff:a2:86:54:ab:91:cb:08:9a:61:8a:c3:74:2f:4e:d9:5c:
85:ca:12:72:fb:0b:b4:40:36:c3:46:9c:fa:e4:22:a9:6c:f3:
c4:b0:3d:82:47:2f:17:ee:f8:15:49:95:9c:b8:20:83:f9:60:
cf:36:90:79:41:68:4a:a8:91:cb:a8:6f:fa:32:03:0a:94:c7:
81:df:ca:8c:2a:6d:42:37:04:ea:b9:f5:c1:f2:9b:74:70:30:
28:d8:cb:1d:fe:a1:8f:f3:81:b0:a5:af:4e:0c:a9:98:75:66:
77:c4:ed:21:70:fb:94:52:4f:e6:57:55:4d:81:d5:fc:31:3c:
e0:8e:0a:73:ca:4e:e3:5d:44:9c:f9:ab:c3:a3:23:43:cb:2f:
70:c9:95:a5:6c:9b:c1:5c:66:57:37:2a:fc:4a:b7:9a:7a:77:
ec:af:d2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:13:13 2025 by rpki-client