Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
File: HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft (raw, json)
Hash identifier: 3kWZUKJhWWBi2oQYWe/t0UfdYbhWdlndgxn2jayvSd0=
Subject key identifier: 04:C8:58:F7:C1:CE:89:89:2D:CA:EA:66:5D:EE:55:13:0E:B7:96:45
Authority key identifier: 1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
Certificate issuer: /CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Certificate serial: 019873E316BD3A0377667D1A563AF675A4C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
Manifest number: 1571
Signing time: Mon 04 Aug 2025 07:01:58 +0000
Manifest this update: Mon 04 Aug 2025 07:01:58 +0000
Manifest next update: Tue 05 Aug 2025 07:01:58 +0000
Files and hashes: 1: HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl (hash: ipyWtPaatlTvq1SyM0MMb1/3oQol+gYCr1p0N1YIIt4=)
2: bDOy4M4R57nj8_Sff5gfBKz-LP0.roa (hash: vm1SQ0etoIa7LbOonRtmj5Ah0LoPLSlL7NdxQSQ76i0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:16:bd:3a:03:77:66:7d:1a:56:3a:f6:75:a4:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Validity
Not Before: Aug 4 07:01:58 2025 GMT
Not After : Aug 5 07:01:58 2025 GMT
Subject: CN=04c858f7c1ce89892dcaea665dee55130eb79645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:52:b1:4f:1f:9c:85:91:18:cc:ed:63:fa:9e:
f1:bd:d8:70:21:1d:c3:04:24:95:1f:c9:59:36:8d:
cd:c2:2e:19:72:2c:ef:30:74:34:18:ce:96:70:d7:
57:61:4f:02:2d:9b:0b:73:0c:e1:54:32:45:c6:cc:
e6:62:68:aa:94:61:70:46:54:b5:1f:87:1b:81:e4:
7f:03:51:af:22:68:8e:cf:59:14:9d:6e:fc:57:18:
d0:9a:9e:47:7f:29:88:03:2e:86:3e:9e:f7:39:1a:
4c:fc:08:df:da:0e:fa:29:50:f4:fc:75:06:4c:08:
b9:0f:8a:2e:65:41:e1:af:3f:00:2f:44:9a:24:f1:
4c:78:de:79:e6:ff:e4:12:6f:fa:54:bb:38:41:4a:
c9:08:0d:fc:bf:23:70:52:37:4a:f5:c1:f6:1e:c2:
59:29:58:28:87:db:6f:a4:33:5d:e5:c1:a8:70:e4:
2c:7a:d8:e6:1b:79:c0:33:ba:6d:c7:08:e1:2f:d7:
e9:01:3d:21:9c:9f:f7:3b:f8:5b:0b:62:e7:8a:42:
bf:73:0a:a5:31:2d:62:96:d9:ba:19:5a:7c:ad:71:
4c:0b:80:92:a9:3e:73:b0:6d:52:8d:bd:21:2b:48:
3c:e5:79:89:d4:9a:88:5e:60:c1:a2:8f:31:cb:30:
a4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C8:58:F7:C1:CE:89:89:2D:CA:EA:66:5D:EE:55:13:0E:B7:96:45
X509v3 Authority Key Identifier:
keyid:1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:be:10:37:83:a9:89:ad:3f:ce:a5:f6:13:ca:f5:b2:b3:27:
01:91:d2:68:78:d0:8e:60:f6:bb:7a:89:08:1a:08:bf:24:6b:
8e:63:d0:4f:45:b0:23:43:75:25:bc:9a:17:f8:fb:89:7c:4f:
a0:1a:77:8e:65:6e:cc:70:36:87:16:aa:b9:17:6e:ca:0a:0b:
e6:e4:55:f7:4a:5d:14:5f:a2:b8:1a:ae:b6:5b:8e:8c:96:68:
13:f1:7d:6a:95:74:f7:07:d1:ee:eb:0a:b7:e2:06:fd:66:ee:
97:17:86:cc:72:e7:9d:68:9f:62:4b:64:fa:7a:06:11:7e:22:
33:80:5c:f6:b6:d8:3c:f9:40:0f:85:1a:f8:d2:d9:3d:d2:e3:
02:cc:27:84:26:d4:79:b3:de:d7:77:1b:05:37:0f:47:bf:aa:
36:dd:c7:2d:06:83:b1:23:10:0a:84:e4:04:ea:77:76:cd:11:
5a:dd:3d:a7:f9:c0:54:3f:86:e7:1f:69:f2:6b:0e:41:15:f9:
0a:eb:cd:2c:fa:94:1e:20:29:78:0d:71:e2:f6:9f:77:6a:78:
0d:07:9a:d3:d5:c9:71:b2:cf:7e:95:1b:83:85:7b:5d:8e:17:
19:9d:31:12:02:8e:ee:84:3c:ab:0d:0f:84:df:48:33:f8:ab:
ce:13:e7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:08 2025 by rpki-client