Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: xGoNnRpGZ1lPU6GcImyu5zY1uHLSd5gt67bEXGAX6/Q=
Subject key identifier: 17:71:47:52:CB:8A:D1:3E:DE:68:23:9A:13:5D:70:5C:D7:82:81:77
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019772D1E46455E9DE37386C83DA39F8FA90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 013A
Signing time: Sun 15 Jun 2025 09:00:47 +0000
Manifest this update: Sun 15 Jun 2025 09:00:47 +0000
Manifest next update: Mon 16 Jun 2025 09:00:47 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: FmGr3snqEbhDA5fwj+iLdrBkbG+hOTeExIZ6gAtR3xQ=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:d1:e4:64:55:e9:de:37:38:6c:83:da:39:f8:fa:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Jun 15 09:00:47 2025 GMT
Not After : Jun 16 09:00:47 2025 GMT
Subject: CN=17714752cb8ad13ede68239a135d705cd7828177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ec:05:a6:1f:b5:54:3e:0c:7a:51:53:fd:a2:
fe:cf:c0:7c:84:ab:25:64:d8:60:d4:eb:62:94:c7:
21:93:37:45:00:4a:17:e8:87:58:17:35:18:5e:9a:
1d:98:b5:00:8b:2a:af:6c:57:8d:31:f7:12:3b:36:
5f:93:53:1e:c2:07:12:07:74:c0:08:c3:f7:23:ed:
65:f3:77:68:06:31:07:a3:95:c8:71:f7:1b:c9:20:
a4:b7:8d:d8:f2:05:6f:72:3f:77:47:40:f6:3f:7c:
a8:06:fc:3d:6c:56:f3:c2:9a:1f:e9:62:6c:55:84:
a8:26:e7:0b:fb:29:2c:ac:3f:da:4e:f9:f3:09:b9:
4e:f6:55:57:c7:64:59:be:59:da:29:cc:45:b0:5f:
a1:36:aa:cd:63:5d:a7:13:a2:62:0f:14:1c:22:8c:
67:31:21:85:61:bd:ff:1b:ba:03:05:a1:af:51:f0:
cf:ed:3b:73:1c:81:24:46:cb:82:65:88:71:b6:73:
64:2d:e1:21:e3:60:49:50:a1:80:23:e5:b1:e1:14:
a8:19:92:8d:9b:93:ca:eb:b3:1a:06:19:42:9c:c3:
b6:d3:12:f6:e0:0f:a2:19:82:61:0e:3f:74:aa:0b:
89:b2:df:c8:45:c8:e9:cf:c6:d7:f4:78:63:f3:84:
cd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:71:47:52:CB:8A:D1:3E:DE:68:23:9A:13:5D:70:5C:D7:82:81:77
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:ce:1e:40:0c:ef:5c:57:48:06:96:55:69:65:e5:11:03:40:
d2:05:76:aa:b3:38:13:8c:28:da:f5:25:6b:17:a0:f2:89:f5:
40:b2:a6:08:a4:0b:ec:8d:70:3c:27:19:73:b0:15:20:2b:fe:
fa:f6:3d:5d:f4:a0:e0:c0:de:b5:1e:6f:31:80:6e:60:27:b1:
6f:74:c5:58:a2:ad:c6:d3:65:92:c4:f6:23:4f:a9:73:31:b7:
c1:2c:de:3d:0d:b6:a0:f1:f1:da:e0:2d:09:e0:be:a5:6d:be:
67:ea:28:51:c1:14:10:6b:4d:b0:29:dc:d3:70:40:db:8e:32:
fc:84:92:31:5f:63:f7:e4:28:9b:97:83:31:e6:5f:fc:f5:4c:
38:19:39:18:eb:6d:73:89:48:b8:fb:a2:1a:b4:b2:fa:b5:32:
d7:f5:00:8b:e6:93:35:fd:54:2d:fb:84:15:e6:20:c6:90:79:
a6:80:8f:0a:2a:fb:10:5f:fa:af:83:f2:d9:b3:cf:62:87:00:
14:8f:a1:95:c1:59:e9:b4:79:c2:28:f6:32:3f:90:50:02:d2:
58:ba:6c:2c:b7:76:ef:3e:fc:a2:4d:0a:42:01:e2:c1:ab:f3:
d3:c6:20:f6:ad:68:a4:3e:e9:18:6a:4f:81:39:54:60:26:b0:
ba:06:84:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 11:36:24 2025 by rpki-client