Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
File: HkXMabTR7hUbUCdEL7upRMJ035c.mft (raw, json)
Hash identifier: htLJhntDDtnf78W/6AxZYU2nuIK5xm1tdh1gtqINPLg=
Subject key identifier: 1E:6A:2A:8D:37:21:08:A0:F3:2C:3C:5D:12:A1:34:3F:F5:4D:54:EB
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 019771886B39BE80B5F54E45E34CCFDFEBDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
Manifest number: 150B
Signing time: Sun 15 Jun 2025 03:00:55 +0000
Manifest this update: Sun 15 Jun 2025 03:00:55 +0000
Manifest next update: Mon 16 Jun 2025 03:00:55 +0000
Files and hashes: 1: HkXMabTR7hUbUCdEL7upRMJ035c.crl (hash: Enoykwm0nZdVtxBhsHB1Yo4V3uXPJFxiY/1+xmDCA/Y=)
2: gzmNz0PYWdcLgL6_SHiIcrAToJE.roa (hash: Guzyh0bDeJqFnbpc68wrDXyHWPH3X5psfEh7CAeI44k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:6b:39:be:80:b5:f5:4e:45:e3:4c:cf:df:eb:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Jun 15 03:00:55 2025 GMT
Not After : Jun 16 03:00:55 2025 GMT
Subject: CN=1e6a2a8d372108a0f32c3c5d12a1343ff54d54eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0c:26:21:97:00:9b:0c:37:53:19:bc:e7:5f:
98:2b:c6:6f:b2:aa:2b:1f:e0:b7:e7:ba:8d:13:11:
a7:ca:2e:4d:14:98:92:36:b8:eb:99:44:32:f5:e8:
3b:f5:9c:21:ae:de:55:b3:8e:79:9c:65:fe:f4:65:
84:a0:1d:9b:7b:f2:db:53:14:cf:9e:5d:9e:d9:5b:
f3:da:d5:8c:6f:5b:ba:ed:78:a2:47:b7:ba:d3:e4:
a8:27:68:58:7b:a8:1a:51:2b:95:e7:70:fb:3d:59:
87:97:a5:2e:fe:d2:c5:89:ae:d1:2c:f6:7e:ab:39:
90:b5:ce:d9:3e:b2:e3:e1:7d:86:94:31:87:17:b3:
aa:40:da:43:a0:9a:c4:92:5f:83:4a:54:21:b1:aa:
ce:de:8c:1d:28:f5:8f:03:88:2d:6b:31:d2:4b:da:
24:0b:90:b1:d1:b2:5a:40:96:8b:1d:14:f6:66:97:
8d:10:fd:ce:3d:bf:11:24:e1:62:5a:c5:88:ab:5c:
cf:57:98:74:58:e9:07:97:10:4d:75:33:02:50:cd:
a5:76:19:28:8e:b7:17:22:68:e1:9b:54:99:7c:fb:
f9:91:9e:07:a5:81:dc:25:09:d4:b5:31:51:34:66:
49:f9:d1:ba:a5:92:03:4d:3e:54:2a:68:0f:a7:f0:
a9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6A:2A:8D:37:21:08:A0:F3:2C:3C:5D:12:A1:34:3F:F5:4D:54:EB
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:95:91:57:dc:7e:4e:76:7e:0a:c8:a8:3a:c7:73:9c:21:f5:
10:d7:0a:33:85:60:21:36:3f:47:a0:2c:d9:6f:76:66:cd:c6:
f2:2b:1a:10:1d:b4:2c:43:39:29:3e:21:9a:3f:17:a5:fb:1d:
2d:a5:45:05:b6:95:17:2f:7b:22:a9:dd:20:99:d5:61:d6:e2:
9f:25:57:db:90:27:84:37:1e:11:2d:5c:33:50:78:2a:ee:07:
21:d2:9b:77:14:52:7a:07:bf:4f:41:58:34:8f:41:47:f3:24:
cd:7b:63:16:bd:2e:2e:56:24:d7:eb:d3:32:c7:e5:77:cf:9a:
25:18:b2:85:9a:0f:7c:50:2d:59:61:85:61:82:fe:47:4e:66:
6b:ea:89:a0:7b:6e:d2:ad:de:a5:78:df:33:bb:1a:03:d3:de:
13:e6:21:87:d3:62:b7:80:7d:d0:c7:ca:4d:dd:77:dd:91:9e:
e8:ba:fc:28:0b:24:28:22:d6:f0:81:22:ac:f9:3f:ab:65:cf:
ca:4b:6b:55:e0:40:ec:ee:26:11:51:7d:6e:f4:8a:c5:ac:0b:
93:1b:3b:48:f6:a0:7e:ca:ae:f7:1c:69:95:6f:ae:ba:b6:a0:
f3:18:22:e7:c0:77:34:78:70:37:ce:83:9d:b3:06:38:14:ba:
7b:26:22:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:35:51 2025 by rpki-client