Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: LYIPqQpYI4NJszjMEFTmxqCDkfYH1MWuVGyIW/5uxyw=
Subject key identifier: 69:F8:C3:C5:41:F8:73:95:9D:06:3C:E2:D1:41:6C:FF:C4:2D:16:C1
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 019774F7A526C3B77D725505C46808A2E3D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 1012
Signing time: Sun 15 Jun 2025 19:01:16 +0000
Manifest this update: Sun 15 Jun 2025 19:01:16 +0000
Manifest next update: Mon 16 Jun 2025 19:01:16 +0000
Files and hashes: 1: CJqITen207ZODHzo1XtCMdI_VBo.roa (hash: f1FWG5pswdJQTpL1NXAace6jGLQD4G1flmSN2+tjCMo=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: mRbBaVXZlhZoc3kp9IOMQ/LX1HHIhCDEhhq8XPJjZqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 19:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:f7:a5:26:c3:b7:7d:72:55:05:c4:68:08:a2:e3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Jun 15 19:01:16 2025 GMT
Not After : Jun 16 19:01:16 2025 GMT
Subject: CN=69f8c3c541f873959d063ce2d1416cffc42d16c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:f6:3e:af:bb:7d:b8:2d:ce:91:27:e0:a8:
31:99:d2:fd:87:dd:d4:34:21:93:4c:4a:fd:ab:f1:
99:ab:42:08:fa:a2:93:d1:48:d4:e8:70:d0:1f:1e:
7a:a1:e9:7a:6c:fd:ef:f3:b6:3f:aa:bc:9c:cc:75:
1f:b8:75:ab:41:d6:a3:53:8a:73:5f:18:80:70:cb:
7d:d5:86:fa:6c:83:7e:55:52:a3:74:f0:3e:5f:13:
e8:e9:fc:16:8e:78:e6:02:0c:4d:45:e5:d8:3f:04:
59:47:38:db:db:ef:db:f7:72:21:34:1d:b2:9e:08:
56:4e:18:c6:51:c3:e5:e2:64:af:8e:06:ef:82:3e:
f7:19:32:a0:3e:f6:95:ee:ac:d3:32:49:71:60:77:
df:3b:08:9c:c4:21:d8:a8:e1:cd:61:78:09:a1:4a:
27:00:21:a6:3c:76:55:e8:33:1b:0a:42:31:a7:ac:
28:38:d0:9f:9f:fb:7b:06:25:29:6e:19:3e:9e:d1:
18:01:10:17:b9:f1:d3:d0:aa:48:f5:50:cf:e6:c1:
c6:c0:3d:96:2f:72:8b:b5:7d:26:18:78:e1:73:ea:
70:5c:dc:55:75:35:04:5f:09:77:9f:85:73:5d:8b:
df:c9:08:24:00:c7:4c:3c:c2:ea:a9:a5:05:36:76:
47:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F8:C3:C5:41:F8:73:95:9D:06:3C:E2:D1:41:6C:FF:C4:2D:16:C1
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:37:5e:62:06:b8:25:1b:6b:26:f1:95:43:0c:47:14:9f:fa:
ed:e2:e5:d3:5c:95:3d:b5:87:74:3e:7c:1a:0a:71:79:43:77:
20:a6:d8:d6:c8:94:4b:06:78:5d:6b:77:c6:d1:0c:2c:4e:f9:
7d:a9:40:e4:5b:73:25:05:42:d0:dd:50:0c:88:0c:83:be:df:
76:a3:85:4b:2d:b9:c2:8e:ed:af:f9:cc:69:61:3a:ff:3b:24:
75:00:90:02:b7:cd:74:64:34:70:c1:e9:bf:83:c1:5a:f1:71:
11:43:97:67:98:52:af:3f:56:5f:45:db:53:fe:a2:18:ef:9b:
0d:58:c4:dc:a4:4d:b1:2e:b7:9e:bf:d3:58:06:82:7e:5a:a6:
86:c9:24:6f:73:cd:55:a4:d0:17:90:99:45:8f:29:b3:47:c5:
09:bb:da:74:2e:4a:52:c7:39:73:28:fa:53:f8:1c:59:cc:aa:
64:24:3e:ec:28:fa:10:ea:0e:a9:49:92:3a:d8:d9:7a:f4:80:
b6:8d:17:e6:52:b3:0d:c3:2d:1a:ab:23:4b:68:29:ab:c4:15:
79:82:6e:44:8c:2c:08:e5:71:9f:1f:99:75:a5:5d:52:92:e7:
ef:b8:21:ad:d3:cd:d5:85:57:f6:80:77:5f:02:1d:71:69:71:
6f:85:d9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 02:26:08 2025 by rpki-client