Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: cjlmBgsxURJRYfiRix3lGUFfMCiXuuMjiyUs1rLRwtQ=
Subject key identifier: 2E:D8:A1:EC:61:75:D7:34:5B:C2:2D:8C:67:23:6C:FF:34:42:5C:73
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019895C9033A0B046F382160EBB1F58B0331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 09E9
Signing time: Sun 10 Aug 2025 21:00:35 +0000
Manifest this update: Sun 10 Aug 2025 21:00:35 +0000
Manifest next update: Mon 11 Aug 2025 21:00:35 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: kqXf68NaePa+TjscYz3n1GzAo+xPe5gDbj8JGd7AULU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:c9:03:3a:0b:04:6f:38:21:60:eb:b1:f5:8b:03:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Aug 10 21:00:35 2025 GMT
Not After : Aug 11 21:00:35 2025 GMT
Subject: CN=2ed8a1ec6175d7345bc22d8c67236cff34425c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6b:14:32:53:d3:2a:37:96:6b:80:45:65:e7:
f6:4f:04:8e:d5:cf:25:6c:dc:bf:87:9d:8f:26:ef:
9f:bf:30:5b:fa:63:4d:b4:1e:1b:33:9d:6b:d0:f5:
e6:85:ea:7a:9a:00:e5:81:69:62:5b:40:5e:ae:56:
e4:43:5d:e8:7b:ca:1a:3c:87:19:f1:eb:3b:b0:b9:
05:a7:d7:8d:fe:8f:e6:c1:20:32:98:e8:7c:64:65:
9d:20:a3:81:22:1b:23:5d:01:68:dc:9c:3a:2c:2a:
54:f2:22:b6:9c:ef:f1:4d:28:0d:98:e8:9a:2b:5d:
b1:ad:9a:ce:f3:48:43:ed:bc:a6:11:48:49:e4:81:
a3:6c:3d:34:c5:c7:dc:64:47:55:8b:b0:d8:c4:0d:
b6:62:39:6d:d8:f1:0e:cd:80:59:a3:d7:02:a6:30:
a0:c9:67:45:a2:92:c9:a4:95:49:9f:37:c6:8c:19:
98:b1:13:d2:0a:38:87:47:d2:30:b7:0a:36:3c:6a:
96:6c:88:63:8f:a8:34:8c:77:7d:61:7d:bf:ac:8b:
51:65:bb:4f:ac:11:51:4b:27:40:1e:e3:2a:b0:d0:
28:00:f8:d8:34:fd:4c:e0:33:cf:f6:47:80:d9:70:
09:c5:54:84:b0:d2:49:ca:dc:21:40:4d:a0:6b:3a:
ad:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D8:A1:EC:61:75:D7:34:5B:C2:2D:8C:67:23:6C:FF:34:42:5C:73
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ef:6c:d6:53:31:b5:68:98:fb:f9:6e:7c:34:e7:32:2a:b8:
d0:7a:a6:35:a3:48:a3:a9:2a:cf:d7:7a:31:62:8f:8f:7d:38:
ee:5a:66:f8:55:6a:6a:38:b8:84:39:7e:5b:a7:61:64:3d:ff:
77:6a:63:6c:eb:5d:91:ee:4a:a3:2c:62:76:f8:38:58:dc:08:
4d:3f:60:3a:e3:71:3b:57:03:43:c9:30:29:0c:74:c2:0d:a1:
9a:0d:08:f2:95:7d:90:8d:28:ad:1f:96:05:75:ab:73:8e:8a:
1d:b6:d8:84:b7:58:18:cc:98:20:52:e2:44:01:f0:7d:d5:89:
ce:32:7f:72:e1:9b:98:14:76:b0:04:f2:df:be:1f:c4:a0:5b:
03:3d:be:a7:24:70:50:d5:51:8a:e0:22:99:f9:00:25:4a:eb:
ad:4b:ec:62:c6:e1:01:47:96:8a:4e:78:92:e6:ff:e6:b9:0b:
01:5a:29:10:35:91:36:dc:97:7f:0d:ae:d6:62:2b:c1:e9:78:
8d:b4:ef:5c:ad:ed:5f:b8:18:74:b5:de:29:8e:12:84:ba:91:
2a:0d:cb:8a:67:a2:e0:6f:1e:f0:bd:0e:20:86:b5:22:cf:13:
ed:b4:b9:01:7c:61:e6:a1:27:44:c1:b7:2b:ea:26:d2:36:db:
1f:35:6c:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiVyQM6CwRvOCFg67H1iwMxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0
MmRhMGMwHhcNMjUwODEwMjEwMDM1WhcNMjUwODExMjEwMDM1WjAzMTEwLwYDVQQD
EygyZWQ4YTFlYzYxNzVkNzM0NWJjMjJkOGM2NzIzNmNmZjM0NDI1YzczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGsUMlPTKjeWa4BFZef2TwSO1c8l
bNy/h52PJu+fvzBb+mNNtB4bM51r0PXmhep6mgDlgWliW0BerlbkQ13oe8oaPIcZ
8es7sLkFp9eN/o/mwSAymOh8ZGWdIKOBIhsjXQFo3Jw6LCpU8iK2nO/xTSgNmOia
K12xrZrO80hD7bymEUhJ5IGjbD00xcfcZEdVi7DYxA22Yjlt2PEOzYBZo9cCpjCg
yWdFopLJpJVJnzfGjBmYsRPSCjiHR9Iwtwo2PGqWbIhjj6g0jHd9YX2/rItRZbtP
rBFRSydAHuMqsNAoAPjYNP1M4DPP9keA2XAJxVSEsNJJytwhQE2gazqtiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7Yoexhddc0W8ItjGcjbP80QlxzMB8GA1UdIwQY
MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt
MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5
LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI+9s1lMx
tWiY+/lufDTnMiq40HqmNaNIo6kqz9d6MWKPj3047lpm+FVqaji4hDl+W6dhZD3/
d2pjbOtdke5Koyxidvg4WNwITT9gOuNxO1cDQ8kwKQx0wg2hmg0I8pV9kI0orR+W
BXWrc46KHbbYhLdYGMyYIFLiRAHwfdWJzjJ/cuGbmBR2sATy374fxKBbAz2+pyRw
UNVRiuAimfkAJUrrrUvsYsbhAUeWik54kub/5rkLAVopEDWRNtyXfw2u1mIrwel4
jbTvXK3tX7gYdLXeKY4ShLqRKg3Limei4G8e8L0OIIa1Is8T7bS5AXxh5qEnRMG3
K+om0jbbHzVsvg==
-----END CERTIFICATE-----
Generated at Mon Aug 11 01:46:23 2025 by rpki-client