Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: eO0+z84O3I8+fwuvOq6wy0hbme4Xe9alumJ37gRVvy8=
Subject key identifier: AE:F5:5D:D8:6B:91:25:98:DC:73:33:D1:35:E4:F8:0C:9F:1B:37:35
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0197900156F64D1187C49392814B2BD5301D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 10A0
Signing time: Sat 21 Jun 2025 01:01:36 +0000
Manifest this update: Sat 21 Jun 2025 01:01:36 +0000
Manifest next update: Sun 22 Jun 2025 01:01:36 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 2GHW29J1HU4OgCXMAcluVXLqmUCj3khOJ6U/d340utY=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Jun 2025 01:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:90:01:56:f6:4d:11:87:c4:93:92:81:4b:2b:d5:30:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jun 21 01:01:36 2025 GMT
Not After : Jun 22 01:01:36 2025 GMT
Subject: CN=aef55dd86b912598dc7333d135e4f80c9f1b3735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:db:59:f1:5c:78:95:d3:50:7c:4a:6c:ca:ca:
f8:16:12:03:09:2a:3d:1f:e5:7b:05:a7:59:61:bd:
81:60:7e:19:7c:82:ac:ed:e1:89:f9:c2:b3:99:0e:
a1:ec:6c:d1:65:ac:03:23:0e:48:1a:09:d5:ba:13:
2f:9c:da:1c:dc:cd:75:61:31:ec:2f:c4:bb:44:57:
c0:f1:1f:67:1c:87:56:03:f3:93:22:2d:79:1a:be:
5d:1b:0f:f0:5b:eb:53:92:00:3b:9c:22:92:d8:60:
a9:26:52:f7:c9:e9:6e:b9:e7:38:68:12:b6:8a:a0:
b4:4c:37:c4:25:30:77:f7:23:d2:20:26:71:0d:46:
24:09:4c:be:bf:e3:34:bb:2e:65:1f:e6:6f:08:97:
d1:20:4e:4c:74:10:08:01:5a:e2:19:fb:92:3d:6d:
c6:e7:5e:cb:9f:e9:81:43:96:fd:5e:4d:55:5b:78:
08:0c:34:cd:34:0b:1c:53:a9:8e:1c:a1:b1:43:13:
7b:3a:df:01:7f:65:af:e4:6f:f3:80:b8:13:73:23:
6d:91:c5:66:41:3e:62:69:6f:0a:af:4d:95:b7:ba:
0d:7c:18:ff:5f:32:b7:e4:07:df:9b:61:21:1b:67:
e6:46:07:5d:83:76:f9:6a:d9:cf:85:6d:7f:5f:23:
c8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F5:5D:D8:6B:91:25:98:DC:73:33:D1:35:E4:F8:0C:9F:1B:37:35
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:5f:8b:09:49:1f:c5:93:12:d9:39:a3:a1:aa:d9:b4:83:f5:
de:5e:44:78:c6:7d:e6:98:c4:b4:7f:c5:bd:ef:5f:7f:61:0e:
0f:65:38:f4:d4:04:18:5a:71:9e:9d:22:3f:32:8b:68:17:6d:
78:88:83:76:45:af:6c:37:d3:17:94:0b:b8:7b:a1:cf:82:61:
ff:d7:4a:70:1a:e7:5a:f7:8d:19:83:39:19:50:4a:a4:1d:db:
bf:48:dd:04:50:83:36:32:c6:60:25:4c:ba:78:b4:02:dc:75:
ce:e7:d2:31:0b:63:d3:57:10:66:e1:2c:25:10:66:66:35:cd:
69:7a:4b:0a:3e:71:08:61:b6:1b:5f:b9:f2:72:55:8e:7d:27:
28:7d:91:b4:48:8d:26:63:b4:e9:24:fd:82:63:d1:19:91:29:
86:e1:c3:08:30:20:74:ae:86:c2:f6:74:5e:25:3c:7e:ba:28:
5e:0c:07:8f:a1:7a:ec:60:84:57:08:f6:34:e5:5c:6c:30:18:
cc:0a:57:1f:5f:9c:70:76:79:04:b1:0c:df:4a:4a:33:40:55:
35:32:82:46:7b:7e:e9:b0:51:c3:ea:cc:56:4f:cf:f7:fd:26:
7a:0a:8b:54:27:72:b6:a6:e6:a0:dd:26:df:e1:b0:37:ba:24:
f1:35:f6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 10:53:05 2025 by rpki-client