Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: QtACs5bmXda0WMPQse13tEauF53UCCgaap++/eBbY3c=
Subject key identifier: 69:1C:EC:A5:37:6D:BA:94:D2:D7:71:A1:69:27:24:D1:CE:E6:7F:8C
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 0198971286FA4BAEFC529EF1B77FDE3859EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0A5E
Signing time: Mon 11 Aug 2025 03:00:30 +0000
Manifest this update: Mon 11 Aug 2025 03:00:30 +0000
Manifest next update: Tue 12 Aug 2025 03:00:30 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: 8i0SsvARaHmuj9i7QD1ZkL/rBK+Eft2YDH6I/9MpUXA=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:12:86:fa:4b:ae:fc:52:9e:f1:b7:7f:de:38:59:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Aug 11 03:00:30 2025 GMT
Not After : Aug 12 03:00:30 2025 GMT
Subject: CN=691ceca5376dba94d2d771a1692724d1cee67f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:3a:22:c9:da:85:68:20:ab:f6:db:77:cd:
f4:cc:8e:c0:45:e7:09:e1:8f:c6:a6:1c:ee:cc:f1:
d2:47:69:c5:a0:0d:79:e5:76:3c:47:40:68:1b:9d:
a6:04:b8:fc:a8:ed:2c:c3:96:df:c6:be:88:11:d9:
cf:c5:0a:74:5c:15:f6:29:5c:15:f2:78:11:69:99:
05:16:1d:d9:43:62:33:c7:d2:e2:84:11:6f:bd:82:
b7:24:ac:c3:b4:88:36:78:d5:ac:54:22:11:62:04:
2e:d4:a8:b1:b1:36:57:c7:41:1c:b0:86:5e:3f:7c:
ab:32:a2:17:91:e8:01:11:2c:1e:a8:33:84:6a:62:
6c:20:f9:a7:31:da:4e:57:50:13:c8:42:73:91:d3:
6f:10:0f:bb:a0:e1:fe:25:eb:13:de:a7:af:ac:37:
62:b4:13:b1:42:1d:5a:b4:51:68:c6:70:6e:f3:a3:
b5:e8:1f:d8:c8:79:b4:d9:bf:33:94:c9:2e:ea:fa:
0e:53:bf:7d:04:08:6c:a7:1a:1e:7d:6d:6f:f8:49:
96:b4:2a:bd:69:66:25:2e:d7:04:f9:2f:83:28:a1:
ae:76:af:41:b0:16:4b:47:d1:d8:94:79:77:04:49:
00:2f:4f:10:95:ee:3e:db:fc:c6:e6:73:94:30:ef:
98:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1C:EC:A5:37:6D:BA:94:D2:D7:71:A1:69:27:24:D1:CE:E6:7F:8C
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:28:9a:bb:69:88:ff:c1:1e:d1:d2:af:b6:83:66:7d:dd:ff:
ac:44:dd:39:3b:4f:c4:9b:88:8c:63:1a:a6:d0:16:f2:c6:0b:
36:9e:aa:58:3d:b9:12:04:fc:19:c6:43:8d:7d:77:6a:40:e8:
53:16:68:95:d2:a5:2e:cf:c1:ac:7c:eb:b0:01:e7:a6:0c:ac:
11:41:e5:1c:ea:c9:aa:92:28:aa:97:0d:40:dc:fe:92:53:42:
4d:38:d0:03:40:b1:16:ee:72:10:c5:73:03:8d:21:48:9e:dd:
64:8b:0e:f9:02:b7:a5:dc:2a:0e:03:7a:ad:9a:c5:86:7a:57:
d9:5d:d4:72:53:2a:9e:20:c2:ac:2b:48:77:16:a1:c0:f7:1c:
d9:c5:46:e1:ea:7c:4b:42:46:c6:67:f5:c0:ca:3d:dc:51:31:
35:87:eb:76:36:d2:b9:c2:de:84:4f:91:d7:19:c0:43:50:5a:
e1:5b:e3:9a:41:95:b8:71:58:3a:d8:ab:94:c0:00:5b:5a:70:
9d:b1:7a:21:f6:8c:00:f6:b2:f5:4f:8c:4d:c4:6f:7f:46:c1:
bd:8e:69:77:0d:84:6b:df:95:4a:72:9a:7c:e9:22:cd:67:ce:
50:5e:c8:f5:27:38:27:cf:1c:ba:34:54:a6:7d:6c:62:95:f8:
0d:43:0b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:50:37 2025 by rpki-client