Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
File: HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft (raw, json)
Hash identifier: px2+Ld59vglXLlCD+qii6k9Q9Up2J0iw4lUwfAD2t3k=
Subject key identifier: B0:45:8C:EB:18:71:9F:A3:62:48:C7:BF:A1:13:C6:EB:1E:F3:FB:17
Authority key identifier: 1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
Certificate issuer: /CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Certificate serial: 0197711AA1D1C8CCC522811AAD31CE46A1A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
Manifest number: 14EB
Signing time: Sun 15 Jun 2025 01:01:00 +0000
Manifest this update: Sun 15 Jun 2025 01:01:00 +0000
Manifest next update: Mon 16 Jun 2025 01:01:00 +0000
Files and hashes: 1: HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl (hash: N8VuDjV37KW0qQTrtkRlTBooyu+Ilq86d7644hBpiFk=)
2: bDOy4M4R57nj8_Sff5gfBKz-LP0.roa (hash: vm1SQ0etoIa7LbOonRtmj5Ah0LoPLSlL7NdxQSQ76i0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:a1:d1:c8:cc:c5:22:81:1a:ad:31:ce:46:a1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Validity
Not Before: Jun 15 01:01:00 2025 GMT
Not After : Jun 16 01:01:00 2025 GMT
Subject: CN=b0458ceb18719fa36248c7bfa113c6eb1ef3fb17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b8:76:28:ed:d2:d1:73:7f:0b:ba:97:5b:2e:
c0:1e:3a:93:41:f0:34:4a:c1:94:83:74:d8:45:11:
1b:dc:c7:ca:dc:b2:8e:eb:0f:87:8b:ac:61:33:79:
da:ac:d7:69:cb:a6:66:98:92:16:cc:69:00:3c:20:
77:8b:2c:c1:cc:af:ac:cb:77:17:db:25:76:08:b1:
b9:51:11:36:e6:ea:25:ec:81:92:e9:b8:bd:05:2a:
5b:43:7c:3e:41:b3:0c:d9:4b:d8:32:c4:86:6e:69:
08:02:cc:6f:b0:39:22:3e:04:d3:de:1e:c9:ad:e4:
03:d8:76:0a:7e:80:ce:d8:6f:df:16:a4:ad:32:6d:
fb:ff:3a:d6:0f:e3:39:52:3a:65:0c:ec:4b:fb:e4:
d6:c2:3a:2c:b7:97:55:ad:08:38:df:ed:51:50:84:
80:64:c8:d6:3c:9b:f0:41:78:62:7a:31:09:1e:11:
1b:4a:93:f2:c9:ce:93:cb:62:3e:38:c3:eb:bf:2e:
9c:66:cb:5a:1f:39:d7:90:f5:70:2b:01:fc:1e:89:
fb:ae:bb:64:ad:f0:ba:78:47:67:66:5b:60:7a:91:
00:fc:88:68:99:b8:bf:8b:fb:f7:79:c4:7e:a1:62:
72:ad:b4:9c:ee:22:d6:b2:38:20:c7:d9:25:a5:e9:
4f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:45:8C:EB:18:71:9F:A3:62:48:C7:BF:A1:13:C6:EB:1E:F3:FB:17
X509v3 Authority Key Identifier:
keyid:1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:af:d0:eb:7e:48:f7:8f:c3:2f:67:f1:0f:ad:ec:80:61:c5:
c8:ce:2a:a5:31:28:56:df:5c:5e:a7:3e:ee:0b:87:b4:ac:5e:
f0:4e:80:21:cb:7f:0b:89:a4:96:73:8f:fd:22:f7:e5:5d:6c:
85:f1:ba:d7:66:56:36:e2:25:f0:2e:de:d6:ec:b9:e0:be:6e:
05:a4:b9:60:d3:15:1b:0d:12:f2:66:97:1f:70:21:33:d4:f5:
28:03:b2:3f:30:54:d4:81:3e:6f:a6:0d:37:20:71:fa:02:22:
a7:56:a5:25:6a:03:32:b8:65:09:89:dc:88:2d:74:34:b1:9a:
9b:d3:59:f5:bd:ea:2f:b4:67:e2:01:ad:b8:44:d3:7e:be:86:
39:7a:01:d2:07:55:fb:d1:20:1c:21:73:ff:47:14:16:c8:e2:
06:6a:ac:a1:01:8f:0c:70:2d:fd:19:49:3a:d4:74:3f:5d:98:
14:9d:f2:df:f1:cf:c8:bd:b7:20:e5:20:2b:e6:91:0f:7d:e4:
05:36:e3:d8:be:16:ef:13:76:09:4d:b3:8d:83:e6:25:ca:5b:
81:63:81:67:dd:d2:67:e7:37:cc:92:50:de:a6:55:6e:40:57:
f3:db:b5:47:38:94:6b:55:ab:1f:bc:9e:1c:ae:28:13:13:84:
18:89:52:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:36:40 2025 by rpki-client