Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: mWsDsleJ3JfjcaXMOBLIEnN6h2j2plG3nreJn+HeMUQ=
Subject key identifier: 0B:96:11:D3:68:A6:D8:5A:77:0B:32:20:89:47:D4:CA:29:F4:50:0A
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 01989E955378E01261253371240650EF33E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0DB2
Signing time: Tue 12 Aug 2025 14:00:42 +0000
Manifest this update: Tue 12 Aug 2025 14:00:42 +0000
Manifest next update: Wed 13 Aug 2025 14:00:42 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: qvu/I7C5W5ZuubLyM/Ocu/yn2o2lrpdOpFUYQAv6o+0=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:95:53:78:e0:12:61:25:33:71:24:06:50:ef:33:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Aug 12 14:00:42 2025 GMT
Not After : Aug 13 14:00:42 2025 GMT
Subject: CN=0b9611d368a6d85a770b32208947d4ca29f4500a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:86:bc:04:23:89:fe:cf:2a:ed:18:dd:5d:69:
a4:a7:5b:20:e9:9a:ec:d4:d2:e0:40:d8:c7:35:71:
2e:19:bb:32:f1:f0:57:8f:da:cc:c3:35:9b:19:a8:
f3:d1:a4:c0:a5:34:07:f1:df:08:34:d2:58:b0:62:
54:c0:dc:35:32:08:7b:19:e4:80:e8:68:f5:b9:3f:
22:6a:28:6b:93:1a:e7:9b:47:86:35:99:da:8e:61:
ba:76:69:c9:f1:ba:dc:d2:f7:55:17:00:82:1e:d9:
ee:c2:d3:0e:1c:f5:b2:9b:2c:63:a9:a5:b5:7b:7b:
fa:19:73:09:1f:80:9c:a6:da:7a:aa:9c:e4:5b:b0:
e3:d6:23:df:54:93:e3:fc:e8:21:03:94:e4:cd:bf:
3d:7c:f5:f5:0a:b3:47:ca:0a:b5:4d:b7:36:d8:f7:
cc:90:57:3a:d7:d6:cb:a7:ea:7c:a0:bf:42:28:81:
3f:d8:f1:60:e2:63:ec:fa:ee:1c:e6:b4:eb:1d:d4:
d7:d5:9f:bf:ad:7f:6c:68:53:07:65:0a:bc:66:11:
5e:2b:1b:09:94:1a:56:48:c8:f8:a5:25:c0:36:25:
4d:f9:13:c0:bb:82:53:3e:0c:bf:0a:7b:69:bd:cd:
9d:7f:cf:e5:04:38:57:16:62:74:9b:da:ab:5d:2e:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:96:11:D3:68:A6:D8:5A:77:0B:32:20:89:47:D4:CA:29:F4:50:0A
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:7b:29:60:5c:6b:29:8c:e6:d1:74:b4:44:ab:c1:13:2a:0f:
54:1f:45:64:cd:82:11:3f:cd:f4:d8:60:34:ca:da:87:51:5c:
2d:3f:7e:f6:0e:b3:21:8b:dc:e6:6c:5b:e0:9f:ea:3e:9c:b1:
70:71:73:5c:67:4f:40:7e:7b:21:7c:f1:79:35:99:bf:80:88:
86:fd:66:ff:d8:63:91:7f:d1:02:f1:74:44:d2:44:d8:1d:cd:
4b:19:35:95:6e:4a:7a:78:5e:01:59:65:01:43:ae:77:fb:8a:
a6:4f:85:fb:1f:4e:18:ef:23:46:e5:f0:48:30:fc:aa:c4:59:
0c:d0:f4:81:f4:d0:2c:26:a4:f3:e3:07:74:53:69:08:c4:31:
84:ea:45:d7:a6:b2:92:1a:6e:2d:71:da:57:34:cc:b7:b6:8e:
ae:65:68:08:04:af:d7:cf:9e:08:19:b6:0c:d1:93:84:4f:c7:
54:88:07:cd:a9:13:82:84:ee:93:28:14:a9:67:48:e1:2b:36:
c5:31:31:d1:74:23:48:7d:db:6f:08:2e:70:89:c6:b3:eb:93:
3d:ea:58:42:b4:40:60:5b:59:e6:54:43:93:6d:a3:9d:21:66:
0f:db:cd:8a:da:78:47:6d:e8:6b:1e:ea:78:85:30:c5:90:01:
00:d9:49:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 18:54:10 2025 by rpki-client