Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.mft
File: HANEzHl26gFSj9EefFpmiu_jHcs.mft (raw, json)
Hash identifier: j7ftWV6JZe4PRY18lFYXi2u+NZ1s5XtgaJpUlSY32rM=
Subject key identifier: 9E:CD:CC:96:F5:C9:6B:7F:52:25:AF:E6:E5:14:86:38:6E:80:2B:38
Authority key identifier: 1C:03:44:CC:79:76:EA:01:52:8F:D1:1E:7C:5A:66:8A:EF:E3:1D:CB
Certificate issuer: /CN=1c0344cc7976ea01528fd11e7c5a668aefe31dcb
Certificate serial: 01976D3D93FE749854A1C738D278E16DD938
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HANEzHl26gFSj9EefFpmiu_jHcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.mft
Manifest number: 0216
Signing time: Sat 14 Jun 2025 07:00:41 +0000
Manifest this update: Sat 14 Jun 2025 07:00:41 +0000
Manifest next update: Sun 15 Jun 2025 07:00:41 +0000
Files and hashes: 1: HANEzHl26gFSj9EefFpmiu_jHcs.crl (hash: ViwcSdAgFDjegbEF04r+k2PFfpsZxxmLpKITCaWjRig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HANEzHl26gFSj9EefFpmiu_jHcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:93:fe:74:98:54:a1:c7:38:d2:78:e1:6d:d9:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c0344cc7976ea01528fd11e7c5a668aefe31dcb
Validity
Not Before: Jun 14 07:00:41 2025 GMT
Not After : Jun 15 07:00:41 2025 GMT
Subject: CN=9ecdcc96f5c96b7f5225afe6e51486386e802b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:33:c6:dd:99:4c:b6:6d:bf:a7:1d:10:00:14:
2a:47:9c:01:15:e1:73:81:e7:e9:86:71:b2:d0:76:
da:b1:a1:10:e9:87:96:7d:00:25:04:10:8f:1a:8e:
d8:9e:0d:67:9a:96:03:67:80:d7:99:70:31:70:d9:
ef:87:bd:78:6d:8d:8d:b9:8b:1d:f6:3a:99:a2:8f:
bd:48:a8:65:09:02:89:5b:9d:b3:6c:e3:97:a0:3a:
05:1b:fd:4e:d5:72:a1:05:96:0c:fe:e1:29:c1:1a:
94:8a:ba:22:ac:b6:db:1b:2a:97:64:1d:2a:14:5f:
db:c8:39:4f:00:48:9d:1c:2d:f8:e8:6d:29:e5:10:
83:5b:ef:ab:57:e8:d8:38:df:c9:2f:a2:20:e7:e6:
1e:52:4f:1c:51:ae:0c:f3:12:31:54:79:4e:8a:ee:
3f:81:35:59:73:da:35:44:81:4a:c0:56:f4:6e:51:
f0:0c:6a:1e:37:0b:40:4e:93:4a:d5:db:6a:49:98:
36:6a:6f:79:ac:e8:0b:ec:c0:e6:15:32:45:b3:5e:
1b:7e:22:6c:1d:e9:51:0d:47:61:80:df:c2:c3:90:
8d:21:7b:60:a4:73:b9:b0:d4:a1:85:38:b8:50:92:
4e:a7:b0:5c:e6:fb:46:bb:e8:29:5e:42:fc:60:a6:
c4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:CD:CC:96:F5:C9:6B:7F:52:25:AF:E6:E5:14:86:38:6E:80:2B:38
X509v3 Authority Key Identifier:
keyid:1C:03:44:CC:79:76:EA:01:52:8F:D1:1E:7C:5A:66:8A:EF:E3:1D:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HANEzHl26gFSj9EefFpmiu_jHcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8f0f8-a96c-429f-9de6-bdf204247c4f/1/HANEzHl26gFSj9EefFpmiu_jHcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:bd:27:ff:78:f7:5e:56:74:96:d8:1b:7b:26:5f:0f:74:68:
d2:9a:52:58:ba:74:94:87:fa:cc:05:39:8b:40:75:8a:a2:db:
4d:4e:20:2b:26:b2:a8:39:e5:c9:83:dc:b3:80:62:a6:8e:4a:
de:6b:cc:57:88:00:27:28:30:72:60:27:ff:d8:82:6e:80:8b:
ba:2a:e9:6b:10:57:ea:a3:fd:38:35:56:d8:a0:8b:8d:fe:91:
cf:fb:fd:7d:5c:2a:1d:d7:0a:77:a3:23:54:b2:1c:9f:b6:44:
8a:49:91:a3:8d:8e:6f:a8:0a:6a:1b:43:cf:72:09:94:6c:e9:
ee:f8:ce:56:15:64:ff:68:57:63:c3:52:8f:d8:67:7c:39:b5:
40:e5:85:ed:d8:e8:c4:5b:5f:d5:d9:b3:b3:f4:91:7c:f2:b0:
ed:62:16:f5:18:35:92:11:23:61:9d:9c:a8:49:fa:8c:1f:15:
76:d3:ec:a2:03:a5:31:18:e8:7e:58:bb:3c:9c:3f:71:c0:8b:
b3:b4:fd:cb:81:19:03:e3:b4:12:a4:78:c1:07:14:3d:39:40:
29:13:e9:a3:5f:41:c1:c4:c8:d9:0f:4b:21:a9:a6:4c:f3:b4:
2d:ae:db:85:ea:03:36:eb:6a:c4:27:c2:fa:34:42:72:98:c8:
a9:bc:0d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:14 2025 by rpki-client