Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: GfWGw61dhIsi/m1i0Pud5w8ituIqjExz4/hBZEQ26BA=
Subject key identifier: 2B:A1:10:B1:14:A2:35:1D:65:C4:1C:B0:53:18:09:C0:09:95:2D:45
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 0198730698CEDDE78CA015574489EEBBF7D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 03:01:08 +0000
Manifest this update: Mon 04 Aug 2025 03:01:08 +0000
Manifest next update: Tue 05 Aug 2025 03:01:08 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: o/hFRu6dAPTMQ4iQWjgHMlCTIh1wWvKFvxF5YYvj27w=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:98:ce:dd:e7:8c:a0:15:57:44:89:ee:bb:f7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Aug 4 03:01:08 2025 GMT
Not After : Aug 5 03:01:08 2025 GMT
Subject: CN=2ba110b114a2351d65c41cb0531809c009952d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:90:66:83:ec:d9:d8:35:0c:90:2c:cd:7b:4e:
9b:e6:f9:02:98:93:77:4a:d9:1f:c3:a8:76:bc:1b:
d3:80:56:ee:61:9f:b8:84:3f:e6:88:c4:a1:61:ad:
f7:2d:4c:ad:4e:c4:c7:fe:22:7c:89:d3:8f:56:d6:
31:63:aa:20:d5:3f:5f:f2:c9:e0:a9:5c:f9:c0:5f:
b3:69:12:81:9f:6b:84:b5:c6:21:e6:80:7f:6e:2d:
48:ab:e4:b2:5c:b6:ee:bc:7c:e7:df:06:9f:76:8b:
b8:a5:ff:f7:6f:dc:13:8a:16:27:1e:e2:bc:d2:17:
78:c3:96:c9:ad:79:08:37:48:46:88:e3:77:71:88:
6d:d5:4c:de:3b:99:76:b1:d5:92:93:93:3b:73:01:
80:ff:14:47:c0:ca:03:cb:4f:cc:f8:7e:f2:63:73:
26:6c:92:1d:da:84:bc:15:dc:2d:b8:65:8b:78:ea:
0f:26:26:a6:e1:f5:52:93:95:af:b6:e1:81:27:08:
f9:49:5b:b7:62:54:02:f6:bc:09:0f:b3:11:12:45:
f9:e1:2c:ec:e5:8a:7d:71:01:32:4e:38:9f:bb:eb:
f9:0a:23:81:a0:7d:67:91:7c:eb:a5:e8:45:e9:3b:
cc:6b:bf:de:3a:69:c5:66:5e:df:72:a4:a8:4d:b2:
72:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A1:10:B1:14:A2:35:1D:65:C4:1C:B0:53:18:09:C0:09:95:2D:45
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a2:06:dc:85:62:b8:76:39:26:51:29:f8:ef:1f:f4:1f:81:
77:99:7b:dd:bb:73:9e:a3:47:9d:f5:4e:1c:cf:a2:81:53:22:
22:fd:38:06:46:7f:a8:45:39:f2:ca:d9:cb:b9:dc:66:2c:ef:
e1:53:4c:d0:07:66:25:12:0a:53:99:c2:f7:2a:d1:74:e7:36:
08:eb:70:0f:b0:3f:62:14:9b:bd:10:00:7f:4e:fe:6c:e4:4d:
6d:ae:b0:da:a7:70:c5:19:4e:d3:b1:2c:74:27:47:dd:83:65:
9c:60:fa:b3:b0:bb:d0:7a:c4:c2:df:51:47:1d:a1:31:c1:ac:
db:7e:5e:12:ab:42:81:9d:1a:2e:cc:22:c6:29:e1:3e:16:f8:
e2:31:fe:da:de:32:70:6e:8b:90:0b:32:b6:91:4e:a1:55:3c:
17:dd:6a:46:59:d3:1f:b2:cc:72:12:98:72:54:20:57:f7:80:
38:f4:06:a9:9c:34:1c:92:48:a7:1a:28:eb:70:b6:7e:c4:77:
d5:69:a0:f2:fc:b2:55:b4:83:79:ef:08:6a:20:40:16:c3:b3:
63:c3:b9:d9:5c:c4:d1:8f:11:6d:33:06:a9:7d:01:63:16:6b:
dc:03:07:bb:cb:52:4f:4b:ab:57:61:d9:84:61:75:58:7e:df:
58:a2:8e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:08 2025 by rpki-client