Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: z+nUgawPIQZ8JxcP+/7IWT1nrqQps946pAshzYjV724=
Subject key identifier: 74:0E:72:45:DB:20:F3:93:0F:BC:ED:8B:11:CE:27:FB:AB:CD:F9:EF
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 01976DAC126BF28127301D690C16AA87E87C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 09C4
Signing time: Sat 14 Jun 2025 09:01:22 +0000
Manifest this update: Sat 14 Jun 2025 09:01:22 +0000
Manifest next update: Sun 15 Jun 2025 09:01:22 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: erybq5Hu+T1Pr1w9N9/FDH5nhtf54ILtxLFMz4ZJC9A=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ac:12:6b:f2:81:27:30:1d:69:0c:16:aa:87:e8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Jun 14 09:01:22 2025 GMT
Not After : Jun 15 09:01:22 2025 GMT
Subject: CN=740e7245db20f3930fbced8b11ce27fbabcdf9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:36:aa:4b:8a:a3:b0:23:48:10:7c:26:d1:
7b:c8:97:fb:23:9e:eb:19:7b:b2:9c:76:07:2c:0b:
50:65:d1:98:0c:00:cb:17:e3:a4:f3:7e:4d:7b:13:
15:57:2a:e7:30:03:a2:fb:1b:e3:b3:9b:e8:55:2f:
d4:e6:1a:77:c5:28:2f:5e:4e:cc:66:39:b3:dc:50:
80:5c:eb:bb:5e:3a:42:24:5f:14:d7:93:7f:ae:51:
01:67:58:66:bc:19:11:44:c0:6f:8d:79:7f:f6:ed:
83:b4:0d:8c:22:ed:24:e0:72:9a:75:4b:68:ed:6e:
d6:8d:45:4e:6e:30:18:2b:49:34:cf:0d:00:af:4a:
e8:4e:6b:45:23:15:da:06:2a:79:67:0e:4f:c3:fb:
fd:57:8f:73:4d:08:d9:00:a0:f0:fc:40:88:21:66:
10:77:2d:24:cf:44:c9:cc:fa:33:7c:af:af:0c:87:
0e:38:99:d4:78:19:c3:39:30:de:9a:b9:b1:4a:14:
67:e6:cf:9a:49:25:f9:02:fa:52:73:86:96:6c:26:
a0:c5:5f:45:f5:1b:5e:1e:14:f4:b2:85:ab:ce:b4:
02:f9:82:08:55:f5:8e:b0:5a:5a:6b:8a:ea:90:68:
4b:cb:01:b8:53:15:2b:0c:d6:57:6c:45:82:3b:da:
5f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:0E:72:45:DB:20:F3:93:0F:BC:ED:8B:11:CE:27:FB:AB:CD:F9:EF
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:2c:a5:d5:2d:4d:d0:03:46:52:22:55:81:64:64:ce:38:12:
d2:6a:f7:ab:81:0a:ba:5d:cb:78:d3:02:00:35:d7:b5:72:46:
14:fb:fd:e3:0f:c4:76:b8:b8:d0:0f:cf:6d:9b:b8:70:8e:71:
72:4b:1e:1b:66:47:a4:85:ef:c3:c8:bc:00:70:48:49:cc:20:
fd:c6:f3:31:10:70:61:44:49:19:b9:d0:fb:75:ce:78:cf:ef:
20:61:11:b7:76:22:9f:98:4e:ef:92:65:82:d5:2c:79:c9:77:
01:e5:70:25:b5:4c:54:e0:79:dd:f5:66:67:6a:82:a5:16:fa:
20:ad:88:51:3c:92:84:5f:29:a8:be:93:57:84:8b:70:05:c7:
f2:b8:4a:ed:00:e0:4d:d8:62:63:53:bc:e8:1d:35:d5:76:61:
fe:b4:21:a0:f1:e0:6f:6e:8e:ce:76:75:ee:b0:06:cd:17:02:
e0:6f:1b:f4:13:e2:36:b8:76:5c:83:aa:2e:f0:0e:8b:2b:cb:
c6:e4:1c:b5:60:68:c7:ce:0b:3f:3a:4d:74:b7:9d:76:97:99:
35:4a:f5:66:1f:81:d3:91:26:6b:3a:ea:bd:b6:3a:77:70:97:
81:7f:b1:5e:78:a3:62:a8:2e:24:7c:d5:ce:15:91:30:55:17:
6f:b5:4b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:04:33 2025 by rpki-client