Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: Qo1Wz8yZpX1WiIikuwyGdhVUQAVvnjMhZP45vyNjKVk=
Subject key identifier: 31:E0:63:C4:7F:98:F9:4B:58:2C:71:54:B4:A6:C3:32:DA:4F:EB:47
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019770079B56A973D01C11D5F43BB8E770FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 01A2
Signing time: Sat 14 Jun 2025 20:00:36 +0000
Manifest this update: Sat 14 Jun 2025 20:00:36 +0000
Manifest next update: Sun 15 Jun 2025 20:00:36 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 3//G1ZjprY+W3dtqWyRbR4cWkMzBB3JxwxHIGK6L4OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:9b:56:a9:73:d0:1c:11:d5:f4:3b:b8:e7:70:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Jun 14 20:00:36 2025 GMT
Not After : Jun 15 20:00:36 2025 GMT
Subject: CN=31e063c47f98f94b582c7154b4a6c332da4feb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:81:9f:54:fd:27:2e:56:ff:4b:5b:43:22:
f0:22:c4:44:d1:af:e6:37:f6:66:d8:13:b2:2d:3b:
1e:e3:90:7d:91:c0:3d:0c:b8:80:00:cb:57:98:87:
4a:72:f0:63:6c:2e:67:86:53:0d:4f:4c:e7:c4:8c:
40:63:bb:1a:c0:b6:64:58:ad:ef:9e:5c:40:cd:c5:
c6:82:29:ab:57:0a:26:7a:88:90:69:a3:a2:00:f6:
c2:9d:ee:7e:a8:83:9d:01:09:e3:1c:9c:6d:1c:80:
87:83:17:4b:36:e7:22:d2:de:0b:d2:f1:f4:2a:54:
8f:f8:f0:a0:b7:49:b0:2b:58:1c:54:54:b8:d4:b8:
28:76:08:63:6f:86:fd:95:94:b5:70:d0:2c:6e:2b:
6a:4d:15:ea:a2:0b:82:f1:b9:89:ce:91:20:d6:52:
20:fe:f2:4b:ac:36:c0:e6:76:7b:67:5e:57:36:d4:
bc:04:61:2d:d4:d5:2a:fd:b6:02:d0:9b:a9:8d:33:
d9:08:75:8d:49:7f:e6:85:00:a4:d2:9c:87:62:84:
b5:a1:43:0e:50:5d:16:69:03:46:8b:47:40:69:92:
23:9d:07:ae:ed:b3:e4:ad:2b:d8:e9:bc:a3:2d:eb:
92:6d:81:ba:cd:f1:ba:14:43:91:cc:e9:33:34:c7:
1d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E0:63:C4:7F:98:F9:4B:58:2C:71:54:B4:A6:C3:32:DA:4F:EB:47
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:4e:31:ad:e8:b9:bb:c1:23:c9:5a:85:2c:49:e6:63:83:c6:
15:a0:64:e4:e8:ff:fa:6b:f1:80:33:08:b4:0f:f2:4e:0e:7f:
51:22:0e:aa:ef:9a:b8:07:36:15:62:08:dd:be:36:e1:9d:8a:
83:7b:67:7d:c2:2e:11:e3:94:a1:de:84:a6:21:04:89:f1:4c:
1e:78:ee:2d:07:5c:f0:ad:f6:81:19:6f:b5:c4:c2:5f:0c:4b:
b6:02:23:60:c7:f5:c2:46:b2:6d:8b:91:32:ea:71:53:68:dc:
ef:12:80:98:88:ec:20:38:c6:0f:ab:f9:78:3a:08:ba:d0:48:
4b:87:7f:77:c5:f9:ac:fe:d1:4d:a8:07:a1:a3:5c:f9:53:a2:
49:51:80:30:06:4a:67:72:9e:10:52:d9:6b:a4:70:a8:52:39:
7d:cb:28:70:03:ac:29:63:6d:44:d0:61:08:bd:f7:57:03:6a:
4a:47:3b:0a:7e:13:5f:b4:2f:5c:b1:9a:2f:33:2d:5c:c5:76:
3b:29:9d:e7:d0:e2:e4:5e:1f:f4:db:97:6c:ad:d7:83:f1:3e:
75:bb:d2:e5:20:bb:53:e2:9b:a5:8b:09:17:0c:b6:42:c4:5e:
a7:6e:a7:1a:cf:c2:1c:1b:2a:5b:b9:f1:d0:ec:2e:ab:55:98:
dd:5c:91:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:45:38 2025 by rpki-client