Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
File: HkXMabTR7hUbUCdEL7upRMJ035c.mft (raw, json)
Hash identifier: CsfLdR3UpYwyqL1DCWtSa4UdlzPFE4IdDgwAryIWHt0=
Subject key identifier: 58:FA:4D:97:6A:31:BC:B7:D9:3C:36:E1:2A:8F:53:17:5B:B5:54:3B
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 01987FE61617E8F037E65B07F79F17F91453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
Manifest number: 1597
Signing time: Wed 06 Aug 2025 15:00:41 +0000
Manifest this update: Wed 06 Aug 2025 15:00:41 +0000
Manifest next update: Thu 07 Aug 2025 15:00:41 +0000
Files and hashes: 1: HkXMabTR7hUbUCdEL7upRMJ035c.crl (hash: KzEP68Oin6gEZwVyNsNrV1rtqzoQPaQP7qpz+byNlBQ=)
2: gzmNz0PYWdcLgL6_SHiIcrAToJE.roa (hash: Guzyh0bDeJqFnbpc68wrDXyHWPH3X5psfEh7CAeI44k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 15:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:16:17:e8:f0:37:e6:5b:07:f7:9f:17:f9:14:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Aug 6 15:00:41 2025 GMT
Not After : Aug 7 15:00:41 2025 GMT
Subject: CN=58fa4d976a31bcb7d93c36e12a8f53175bb5543b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:cf:b3:c0:81:eb:fe:de:b0:11:a3:57:9b:
7e:14:e1:1f:e3:44:19:ec:54:85:75:b7:29:1a:48:
6a:8c:84:e5:c8:71:88:d0:dd:bc:23:69:f4:ab:fd:
fd:fc:42:fd:64:4f:e7:63:f1:04:57:8b:b0:b2:38:
8f:63:bf:8e:04:08:27:c6:10:25:c9:3a:a7:bb:4b:
23:f1:32:c1:23:d3:8c:28:4a:4e:4f:4a:ba:41:57:
79:78:c9:5b:4c:dc:01:ec:1c:ec:e6:7b:d2:9b:55:
06:c5:01:f8:17:94:62:e1:bf:8a:30:f0:cd:b2:f1:
77:21:c4:e4:a2:ea:5f:77:af:4d:2a:23:5f:90:b2:
17:00:40:5c:e8:1e:0c:d9:af:83:bc:94:c9:0c:b4:
77:14:3a:f7:57:31:0f:0d:36:ea:24:e3:21:ea:64:
bd:a9:9b:32:d7:32:2f:15:c1:59:31:75:4f:3f:85:
4c:05:4a:4c:01:ad:33:5e:7b:ed:06:2e:49:9a:f3:
64:bc:76:82:05:7b:e4:a0:89:c2:28:ef:89:f1:0a:
c4:b1:9d:df:15:d6:0c:a5:cd:5a:57:97:67:7a:3b:
c4:73:12:2e:36:b6:65:ea:1d:b5:18:73:28:52:b6:
3c:4e:6c:76:47:35:95:63:dc:65:24:4a:cb:5b:42:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FA:4D:97:6A:31:BC:B7:D9:3C:36:E1:2A:8F:53:17:5B:B5:54:3B
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:85:12:2b:c8:db:aa:8b:d8:8a:06:af:54:ce:1d:cd:3c:ab:
48:10:d3:18:d9:2e:f5:91:ab:af:34:77:cc:fd:31:0b:2f:f8:
d1:6b:f9:27:b2:9b:8e:3b:c9:60:fd:98:81:9f:d3:a8:18:b1:
92:db:6d:08:9d:55:c4:11:17:74:96:bc:18:f4:90:1b:8d:25:
8d:6b:75:03:53:ce:cf:7b:e2:72:7e:43:87:b7:ec:ca:65:ac:
6f:25:3a:e4:08:ea:74:af:2a:af:29:43:e4:a7:ba:d9:88:e6:
a6:8e:5c:32:d5:0e:0f:20:ea:da:78:b6:86:bf:a6:fe:0e:8b:
57:4c:bb:23:0d:3e:97:46:54:8f:97:7a:9e:3f:91:b7:14:4c:
e6:10:ed:a1:ef:ac:ca:39:e3:83:80:6c:be:23:fb:5d:38:0a:
36:b5:eb:bb:9d:58:ae:c6:1a:ae:f5:92:f7:53:50:f5:5f:6e:
48:71:4b:ba:44:db:4c:37:be:80:97:5e:aa:9b:2b:fe:96:d9:
40:ec:aa:3a:7a:64:8e:0c:e8:45:61:bb:46:ac:98:d0:8a:b7:
76:26:86:ce:da:1b:77:4a:67:ca:d3:56:79:43:92:ef:81:31:
8d:4a:15:dc:45:50:ca:91:25:ff:80:e1:b9:a7:66:4d:ca:a8:
7e:b6:cf:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:04:43 2025 by rpki-client