Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
File: HtVdI1ecZBJxVa72UGlueVMdUI0.mft (raw, json)
Hash identifier: mQlbxrwUSp+kxPMBn5SyXpxQoqMFOw7EexNV+rlJApY=
Subject key identifier: 5D:DE:8F:8C:A9:0D:D6:21:C3:10:5B:0D:CA:3D:56:C3:A4:35:05:05
Authority key identifier: 1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
Certificate issuer: /CN=1ed55d23579c64127155aef650696e79531d508d
Certificate serial: 01987C77AF662C5B55A5F5C7BFD0F96B188D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
Manifest number: 126A
Signing time: Tue 05 Aug 2025 23:01:15 +0000
Manifest this update: Tue 05 Aug 2025 23:01:15 +0000
Manifest next update: Wed 06 Aug 2025 23:01:15 +0000
Files and hashes: 1: 6JyLUIA_3_F6lFc7OjrgVvilXiM.roa (hash: Uy0b+c0tNGh5Lnfz6gBjiWLD/+3F2702TS3OgZODmXc=)
2: HtVdI1ecZBJxVa72UGlueVMdUI0.crl (hash: 9MrWXnUtLElHZuSfuC0Nwh9zbC1UwddtTRntWcdYgcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:af:66:2c:5b:55:a5:f5:c7:bf:d0:f9:6b:18:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed55d23579c64127155aef650696e79531d508d
Validity
Not Before: Aug 5 23:01:15 2025 GMT
Not After : Aug 6 23:01:15 2025 GMT
Subject: CN=5dde8f8ca90dd621c3105b0dca3d56c3a4350505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:c4:2f:e6:7f:02:ce:0f:ac:f1:dd:9a:77:
f5:ee:65:d5:6b:c8:b1:6f:63:b3:7f:23:b0:93:b2:
58:be:8d:a6:39:5b:cc:4e:c7:58:d8:d7:9c:49:5d:
c0:0b:84:85:50:85:ad:0e:85:58:ad:58:fd:f9:ff:
3c:9a:4d:c3:2c:4b:22:53:2d:fd:40:23:a6:55:61:
7d:01:8d:35:75:32:4b:d5:ef:8e:f0:29:ad:f4:4f:
5c:4d:4e:ee:92:91:05:ae:e4:c1:0a:33:69:2e:f6:
6d:35:7c:90:91:42:b1:2e:eb:31:21:d6:a9:9c:91:
13:a5:3b:27:07:22:15:54:47:c2:44:17:30:dc:ad:
0d:a2:ad:28:00:81:90:39:bf:e4:bc:d3:9f:e9:ec:
7c:3c:59:74:f4:01:2b:d0:aa:39:f9:c4:34:d0:8b:
d2:ed:19:36:5e:0c:cb:04:bd:be:ba:a7:9d:ed:51:
37:e6:2b:28:6c:e8:4d:22:86:ff:95:fb:56:30:8c:
7a:7f:98:13:58:9f:f1:aa:e7:27:ff:76:a5:c5:8c:
10:da:b5:28:f0:8e:ab:75:11:09:6c:f9:14:bf:1e:
2e:f5:59:cb:31:ed:54:4d:f3:c6:18:a5:57:83:67:
ab:7e:f6:9d:07:fa:6b:46:73:61:3d:80:72:05:59:
01:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DE:8F:8C:A9:0D:D6:21:C3:10:5B:0D:CA:3D:56:C3:A4:35:05:05
X509v3 Authority Key Identifier:
keyid:1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:e8:90:27:d6:02:66:60:66:f0:15:b4:45:ed:8d:be:7c:5a:
50:6f:cb:6e:74:bd:87:79:c0:c4:cd:4e:da:7b:36:ec:9c:6b:
1e:4e:7b:63:6e:be:be:69:49:ba:50:f9:2d:87:04:d9:16:ba:
95:12:ed:ea:65:ad:bc:30:98:06:93:05:5a:5c:38:55:2a:3f:
d1:ca:c9:65:25:0e:27:c2:9a:a8:32:fe:cd:94:94:4f:d6:da:
04:a6:27:9c:43:b2:72:93:74:28:23:96:5c:61:24:14:10:e4:
00:f8:ff:a9:82:5d:8c:c2:31:10:13:77:c0:cb:25:9a:d6:85:
50:d5:0e:8a:df:49:d7:5e:03:6d:1d:2b:be:da:e5:c1:f7:c9:
71:50:2e:0d:3a:2a:b6:c7:77:54:46:3c:43:89:6b:5a:42:e8:
01:bb:9d:c3:86:9f:d5:0a:b8:a5:57:f0:21:67:a2:e2:48:92:
67:7c:e3:79:54:10:3b:8d:cc:96:9d:87:ad:e4:95:49:c4:d4:
e7:a4:ac:5f:43:43:72:5e:d0:ed:99:08:31:1a:d2:1a:55:00:
23:ab:0a:b7:9a:40:e3:f0:6e:cc:6a:53:3d:9e:9d:3a:a2:bd:
91:fa:fb:05:94:8f:e8:c5:b5:1c:19:99:17:5b:1b:44:7c:97:
14:ec:d8:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 03:58:07 2025 by rpki-client