Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: gWlaYAjAjbtn4w7+j//hm3jHnkknrPbcsC8XZz71VSs=
Subject key identifier: 70:B4:F1:E9:20:C6:83:28:0B:CF:E7:32:65:73:10:C0:17:20:FE:05
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 01989E951CE60CF1947A85E8C06B3F6D40C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0B1E
Signing time: Tue 12 Aug 2025 14:00:29 +0000
Manifest this update: Tue 12 Aug 2025 14:00:29 +0000
Manifest next update: Wed 13 Aug 2025 14:00:29 +0000
Files and hashes: 1: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: XIaZ1ScKwBRBDU5QokKeGcV8wA9GwQS4jTMqQb3uoWg=)
2: wWq59skVXk0ZG4IFLK9dggmPZBc.roa (hash: G7C47jomjQ8yRWntSox+zS/AjFvrINeu+2AEHacLP1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:95:1c:e6:0c:f1:94:7a:85:e8:c0:6b:3f:6d:40:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Aug 12 14:00:29 2025 GMT
Not After : Aug 13 14:00:29 2025 GMT
Subject: CN=70b4f1e920c683280bcfe732657310c01720fe05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:46:8a:49:05:08:5e:34:e8:6b:bc:8d:39:a2:
97:c5:36:78:e2:62:f3:0b:74:22:54:8f:35:35:b1:
6d:7c:c0:81:bf:bd:d2:35:18:c1:4b:08:d7:46:b4:
83:99:39:4b:a8:00:88:8b:4e:66:82:ea:d5:86:eb:
53:4b:1c:38:0a:30:1f:33:56:6b:ef:8b:94:ab:05:
2c:39:02:ad:6d:d7:da:85:d4:13:ed:6b:73:74:8f:
50:a7:e3:cc:63:0f:93:ee:03:94:4a:b4:86:3e:fd:
cf:ae:fe:b3:67:06:0e:f1:f7:cd:0e:1a:00:87:a9:
0c:91:cc:0d:1e:2a:9c:3d:4e:bd:59:44:57:37:e7:
63:05:5a:59:47:d7:a2:cd:b9:ce:d3:8f:5a:30:09:
f4:b2:a0:bf:a9:29:8a:aa:44:e3:25:09:57:54:bf:
03:48:33:64:cb:39:cc:6f:88:ba:31:26:12:10:2c:
e9:27:a6:53:3b:64:ef:f5:af:1f:1d:09:bd:50:0e:
1c:34:aa:f7:67:db:82:ba:8c:06:ce:6c:f0:93:57:
cf:55:83:04:a4:49:88:f6:ae:d0:57:7e:17:cc:36:
98:0a:76:70:31:b3:af:b9:ec:b6:de:17:45:84:8f:
c7:13:c3:1f:19:6d:f9:c5:dd:1f:e8:dd:d3:cf:e8:
b1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B4:F1:E9:20:C6:83:28:0B:CF:E7:32:65:73:10:C0:17:20:FE:05
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:24:95:0f:e6:1b:f1:76:10:f9:19:2b:c3:4e:d9:12:3f:d3:
05:93:05:30:d6:4f:d6:3f:b5:46:7f:3d:d0:ff:b5:5a:c2:6e:
01:c6:2b:f5:96:27:09:24:e2:7e:9d:2d:94:03:af:75:64:7b:
b4:af:fd:a3:d2:34:7b:03:af:8b:9a:12:05:dc:4b:59:c6:ea:
e9:3e:b0:5e:35:a1:d5:c2:46:c8:28:77:09:d4:de:b1:75:f3:
c4:eb:24:2e:13:c4:01:97:46:6f:b7:ba:4e:2d:39:9b:ba:a9:
67:c2:38:91:ad:4d:44:1c:91:e2:26:6a:74:78:a4:4f:86:bb:
e1:16:64:ea:a3:db:16:d4:88:a4:9f:87:ef:2c:4b:51:85:1f:
71:0b:97:9e:f3:c0:17:c0:d9:4f:e7:02:55:2a:a2:d5:06:5f:
e3:ec:28:fa:04:e5:50:ef:c3:14:45:44:a7:1f:8c:b2:30:9a:
f5:7f:10:6e:1e:9d:5b:f8:c4:da:98:70:7c:88:3a:07:55:02:
97:f4:7f:c4:6d:c7:7c:70:3b:9a:5d:9c:89:bc:bf:a5:be:3c:
4a:67:44:fd:ef:72:4f:86:c8:05:e7:d8:58:da:ce:ef:04:29:
8e:21:5e:75:a3:0c:4f:c2:ba:7a:78:f8:12:51:b8:71:33:3e:
72:5d:38:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:40:51 2025 by rpki-client