Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: 8XWnm6gBDr2wnDA3uWOuNNo/lVJX/ieEubEmpj6Vc5M=
Subject key identifier: 76:AB:5D:30:B3:DC:26:7F:9A:85:85:7D:68:A8:BB:D8:05:E1:57:99
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 01988167EA1097D26B0AA789E99B3B950552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0231
Signing time: Wed 06 Aug 2025 22:02:07 +0000
Manifest this update: Wed 06 Aug 2025 22:02:07 +0000
Manifest next update: Thu 07 Aug 2025 22:02:07 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: WNYyUsrccUiEWMhyQfwByfr+Y3l+JEFFn72wzKLbxc4=)
2: wSGsamIp2JavINuAG5Ge2cvZdUw.roa (hash: Yu+PmAJW3EqzZtBozauuFMpDk9UoMVCMv7Pei6FBkQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:ea:10:97:d2:6b:0a:a7:89:e9:9b:3b:95:05:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Aug 6 22:02:07 2025 GMT
Not After : Aug 7 22:02:07 2025 GMT
Subject: CN=76ab5d30b3dc267f9a85857d68a8bbd805e15799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e4:b2:b7:ed:77:cb:48:fc:9f:d2:f0:42:13:
7a:46:c8:ff:ab:dd:86:36:1f:d4:85:aa:aa:83:74:
3c:8d:f3:2f:39:f3:e2:23:f0:f0:8d:ad:94:9f:18:
58:01:41:4d:b7:c3:ac:78:01:7e:0b:b2:58:c3:c7:
13:de:df:1c:62:aa:49:1b:e4:c3:57:01:c5:73:3d:
9f:79:3b:0a:ac:94:ff:7f:35:e5:e2:22:d2:bb:d8:
9b:08:07:f3:f1:2f:ac:77:d0:cf:c4:4e:ae:57:e3:
7d:fb:60:5d:f9:e3:f1:34:c8:76:c6:66:99:db:4a:
bf:cb:13:8b:f5:df:e2:38:e7:83:ff:50:77:ce:ee:
3e:fc:a4:91:7c:95:2e:7a:ce:c2:75:3c:56:ab:d9:
af:7c:30:5e:57:50:1b:e2:11:c9:7e:5b:ad:7b:6c:
ce:10:20:4d:d2:ae:0f:24:f1:25:91:c9:64:97:02:
24:c7:43:d4:7e:7f:b4:62:b7:7f:17:f1:b6:9f:11:
b4:4f:fe:a3:46:2a:1c:b9:dd:c0:5b:d0:bf:ab:67:
c7:2d:3e:85:f8:9d:98:e3:cd:e6:0a:64:60:6a:17:
57:77:95:74:c1:86:d5:2c:b1:d7:a0:7d:95:89:88:
c4:03:0e:ac:44:91:fc:7d:3a:65:27:89:55:19:08:
4c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AB:5D:30:B3:DC:26:7F:9A:85:85:7D:68:A8:BB:D8:05:E1:57:99
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:29:f3:6c:36:68:37:45:e0:5e:b3:32:42:9e:46:e3:33:51:
c8:31:d5:da:b2:20:86:a4:3a:84:38:e1:b7:e3:d3:20:2e:60:
e0:ee:76:43:8b:42:bb:5a:81:e2:a4:d0:f3:2f:5f:8a:6e:ef:
f3:6a:d2:01:2c:d3:8d:17:55:01:24:b8:63:c8:2c:0b:b8:66:
50:17:c1:2f:b8:e1:ba:b1:71:8d:42:26:dc:42:38:2e:d9:d1:
e3:42:e5:aa:f4:59:ca:ea:59:d4:9f:d4:b7:8f:39:2f:16:38:
4a:e9:df:4b:09:60:e0:a4:79:2e:11:30:44:c4:11:7e:f7:05:
89:f5:e8:b7:2b:1f:2b:98:2b:e1:b5:2d:48:5f:3c:8c:e2:cc:
64:ce:9e:8b:4d:b5:b6:7e:42:df:a5:2c:f3:59:35:4c:af:0a:
0c:22:d4:b7:1f:b6:f3:e5:f1:29:fc:15:52:4e:b3:17:00:d3:
98:5a:4f:28:e6:66:f7:45:04:dc:09:cb:50:e4:80:9e:ad:6f:
0a:85:01:64:0e:d3:11:08:6a:bd:37:28:60:af:0f:6d:fb:b3:
80:8a:7a:b1:ae:81:60:bd:55:19:f8:37:1f:d9:82:1e:ef:fc:
f9:69:64:10:0b:55:6b:54:be:fe:64:3d:ff:e6:cf:82:e8:c4:
ef:53:c4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:25:24 2025 by rpki-client