Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json)
Hash identifier: +Uf+W85WcAqot3QeFGW9kv2SzoNRWmT9uZmgVjMs2II=
Subject key identifier: A2:B5:8F:7F:34:70:75:0C:04:D8:AB:94:23:C5:7E:4F:66:2C:DB:4F
Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Certificate serial: 0198A196C505BF64C918875D72369B3B5955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
Manifest number: 07EE
Signing time: Wed 13 Aug 2025 04:01:09 +0000
Manifest this update: Wed 13 Aug 2025 04:01:09 +0000
Manifest next update: Thu 14 Aug 2025 04:01:09 +0000
Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: xHTlq8udvPZCjOrXtsRS52r4iG9vxPzqj91IPoAspyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:96:c5:05:bf:64:c9:18:87:5d:72:36:9b:3b:59:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Validity
Not Before: Aug 13 04:01:09 2025 GMT
Not After : Aug 14 04:01:09 2025 GMT
Subject: CN=a2b58f7f3470750c04d8ab9423c57e4f662cdb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6d:ba:47:9a:51:4f:04:34:73:26:20:b4:59:
8b:a9:63:91:db:34:19:c2:87:76:68:fb:c4:c3:d7:
f6:bf:33:09:6c:56:39:34:50:57:48:de:6d:55:01:
68:66:51:e4:e1:2c:cd:0d:96:f5:00:8e:0e:45:73:
e8:27:a4:25:cf:dc:9c:d6:a4:9a:95:1c:f2:0f:fd:
59:1d:c9:25:f7:e6:da:45:1c:ea:f2:5c:3b:4d:ec:
79:cf:40:e8:72:84:26:2f:9c:b5:76:0a:fb:13:bd:
f0:b3:85:07:3c:71:18:1d:08:63:02:ea:f8:93:34:
e3:8e:04:41:74:05:5d:44:59:39:02:06:55:80:63:
a8:6c:e4:8a:9d:d9:89:ee:ac:74:eb:8e:cf:2e:1d:
bc:c7:60:18:45:51:cd:73:7e:84:f9:bf:75:28:60:
78:96:5c:77:ba:14:ab:5c:11:ea:86:cb:52:d3:8f:
eb:97:f7:b4:66:6b:d0:13:39:8d:e1:dd:fe:bb:13:
7d:d2:14:27:1b:fe:73:50:12:bc:8c:cf:fa:29:50:
b5:74:ae:aa:25:fc:dc:83:27:f8:1a:e3:08:8b:04:
67:a2:f7:86:3f:0b:ad:29:e3:29:a6:c4:91:e1:06:
dd:43:e8:3c:db:dd:34:61:ed:91:e2:5d:59:35:66:
46:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B5:8F:7F:34:70:75:0C:04:D8:AB:94:23:C5:7E:4F:66:2C:DB:4F
X509v3 Authority Key Identifier:
keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:3e:65:35:df:52:fa:b1:ae:6f:85:e9:49:e7:e4:60:46:42:
ff:bd:ea:11:e5:f1:b6:29:da:6f:1f:bb:70:9a:6c:53:35:23:
e4:a9:69:ab:7b:cf:b3:23:91:82:31:41:9c:6e:19:89:9e:78:
b9:a2:16:20:02:c0:c6:86:70:d7:0c:e0:7c:26:ff:1e:51:24:
c0:98:f5:d2:7e:8b:b2:9d:4d:17:bf:ca:b1:d4:2d:42:e9:a3:
8d:7c:3f:44:0c:db:53:92:ef:e7:e8:d6:c5:9a:b6:43:ef:f5:
5a:49:99:5d:23:72:48:7e:8a:f8:4a:ed:d5:83:f0:11:75:39:
a0:67:82:28:da:21:0b:31:34:ab:bf:e1:03:7c:7c:51:15:4f:
5c:c3:9e:a5:a4:ab:26:ec:17:84:6e:c1:07:1e:17:25:18:4d:
77:d3:43:5c:48:0e:ce:1d:76:50:92:61:63:a3:38:35:a0:05:
82:2b:b7:f1:9f:08:fc:fb:b0:7a:8c:45:ac:85:7d:e7:fb:bb:
4b:29:64:0e:0f:fc:f5:8b:04:e1:65:e4:c4:3c:7c:67:7b:51:
3b:df:80:0e:b6:18:ce:84:a3:b4:4c:54:9e:9b:cd:2a:c6:87:
87:b4:96:0a:00:06:4e:6e:7b:5c:49:13:71:2d:41:50:2c:1c:
68:c8:49:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 07:58:32 2025 by rpki-client