Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: NEqKlZ7t4HLm2FGAoXnXbibTblrdpSJ9F1Qj+R7SmZQ=
Subject key identifier: D4:D7:D8:2C:57:81:5A:7F:8F:7E:A0:CF:F2:56:AD:E5:02:92:1D:91
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0198A23B7967A390F0C65829534C1BF343BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 112E
Signing time: Wed 13 Aug 2025 07:01:03 +0000
Manifest this update: Wed 13 Aug 2025 07:01:03 +0000
Manifest next update: Thu 14 Aug 2025 07:01:03 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: yBDjGYuXl7dxUBD1ax4rU8h8qwoPtVN/OoUHfAqMjPA=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 Aug 2025 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a2:3b:79:67:a3:90:f0:c6:58:29:53:4c:1b:f3:43:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Aug 13 07:01:03 2025 GMT
Not After : Aug 14 07:01:03 2025 GMT
Subject: CN=d4d7d82c57815a7f8f7ea0cff256ade502921d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:57:a0:97:56:08:59:81:16:7f:e9:89:4e:2d:
3f:98:e0:1d:9c:03:64:77:93:aa:0d:9b:67:7f:f3:
1c:cc:c3:85:40:ce:2f:55:af:a8:48:df:85:c3:c1:
13:4c:bd:71:23:8c:cf:ad:ed:f2:61:99:d4:8a:9e:
eb:7c:a5:1a:96:c0:a8:97:56:db:81:0d:2c:90:45:
21:04:6d:c4:23:c6:d8:0c:2c:71:77:ae:a5:b9:ae:
f8:5b:83:92:86:91:45:91:0c:8c:10:95:d1:01:77:
85:41:72:6e:bf:a1:1a:cc:f1:e9:a9:98:c2:53:88:
d8:50:7b:16:85:d2:41:9a:79:03:77:8b:88:0b:40:
36:86:7b:2a:b2:81:90:6e:46:6c:5d:41:9b:2c:e6:
39:3f:b1:b5:a3:84:f4:d4:37:7f:39:49:48:20:ee:
87:eb:93:7e:70:37:ae:30:75:ab:f7:9b:38:ab:fb:
a5:bd:25:12:34:2a:c2:bd:61:c4:b0:61:ee:7e:46:
93:d7:f9:22:ea:b0:26:31:34:e1:9e:1e:59:54:c3:
ac:a2:2c:9a:eb:4f:47:e5:5d:f9:b8:a7:9b:dc:1e:
16:45:4e:31:b9:fd:cc:e7:0a:be:42:26:19:89:22:
3a:3b:8a:6c:0f:3f:1e:14:fc:51:a6:24:af:23:b5:
2b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D7:D8:2C:57:81:5A:7F:8F:7E:A0:CF:F2:56:AD:E5:02:92:1D:91
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:08:ff:18:dc:36:e7:09:ea:b7:e6:d8:0a:f4:d4:fd:4c:3e:
64:a7:2e:c0:9e:c0:63:69:b8:aa:71:bc:f3:27:46:88:aa:34:
9b:0b:b6:09:63:51:9e:13:f1:19:84:76:0a:d4:e5:5c:ea:b8:
72:6c:7b:19:60:66:0a:11:89:71:36:8a:99:33:ff:86:b6:d8:
09:5b:b4:62:e5:b3:e2:1f:54:38:68:e9:26:c9:12:53:87:4b:
df:a9:70:a2:e2:44:62:ae:7f:f6:b7:11:fa:3e:9e:d9:62:85:
12:6c:50:de:c5:2c:75:6d:d6:94:5b:0b:43:f6:6b:af:0b:ac:
79:05:48:4a:17:a8:a5:9b:30:b2:84:6b:ce:e4:af:32:b8:19:
93:bc:db:d9:dd:42:27:90:b1:36:a6:c7:60:f1:ef:02:87:55:
20:de:d5:cf:7e:53:fc:c7:a0:dd:30:4a:bb:53:9b:36:68:c7:
e7:17:0e:ff:74:78:18:aa:7c:3b:0a:9a:9a:cc:48:3a:2c:24:
11:df:fb:bc:9c:c8:de:d3:8c:bf:3a:2e:3a:2f:85:b8:c6:35:
9f:8b:f0:ef:0e:08:e9:e7:a0:f6:ba:84:4a:da:ee:fb:c7:36:
fd:17:f1:15:20:d1:48:0f:0b:0e:c9:b8:7c:2b:80:8b:bd:25:
6e:75:fc:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 16:06:06 2025 by rpki-client