Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: 0ViL3mdPxCHQyaRQiIgMdPiz8Chl3KLGG0u7tX2iG/g=
Subject key identifier: E7:CE:5B:32:FB:76:9D:CD:87:6C:61:D3:6C:AF:DF:4E:26:87:3E:ED
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 01976DABCE9F2F975ADEFBEBBCB63CACCA17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: B5
Signing time: Sat 14 Jun 2025 09:01:05 +0000
Manifest this update: Sat 14 Jun 2025 09:01:05 +0000
Manifest next update: Sun 15 Jun 2025 09:01:05 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: BNtV0J2VuL7uOqKN/1gDBKLZHfe3PVkg+GQgejhDSUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:ce:9f:2f:97:5a:de:fb:eb:bc:b6:3c:ac:ca:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Jun 14 09:01:05 2025 GMT
Not After : Jun 15 09:01:05 2025 GMT
Subject: CN=e7ce5b32fb769dcd876c61d36cafdf4e26873eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e3:23:1f:0c:6f:11:64:c5:af:e8:a7:e9:8e:
35:a8:cf:65:16:15:64:26:c9:f9:6e:c3:78:c2:25:
4f:ed:9a:3b:65:e1:fd:73:0a:60:e3:e4:18:d9:87:
90:9a:8b:e8:4d:4d:ef:ea:65:f5:95:ef:ff:55:2d:
35:70:9f:eb:bc:ab:a2:ea:40:f1:90:ab:ff:02:13:
42:50:89:10:93:f3:a3:d6:df:62:fc:9d:4e:83:5c:
8c:0b:35:ac:59:65:fa:a9:18:53:9b:11:9e:21:f2:
fe:08:9b:b5:63:cf:9a:31:36:54:b5:1c:3b:19:d8:
2a:39:60:8d:5e:45:70:ad:ed:f0:25:a8:93:30:69:
e6:f2:2f:19:33:d9:ab:89:16:45:9c:22:e0:32:8b:
20:76:f4:0a:f6:03:d6:41:2c:f7:8b:07:86:80:c5:
47:57:65:a0:ff:98:92:02:60:32:ec:6e:52:97:8f:
e0:92:f4:88:49:7c:1c:72:09:19:3f:88:96:61:5f:
f1:02:b8:02:c1:e5:02:60:ae:af:ac:a5:7b:61:09:
af:53:a8:63:b8:b2:a7:86:9f:60:b5:ef:f7:04:89:
e1:6c:2a:d6:f8:cc:74:5b:eb:9b:de:f9:ee:ff:ed:
4b:fa:69:0b:d0:7b:82:4f:00:5d:1d:dc:e8:00:3a:
04:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CE:5B:32:FB:76:9D:CD:87:6C:61:D3:6C:AF:DF:4E:26:87:3E:ED
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:43:b1:5e:11:43:b4:81:39:cb:b5:36:0a:6f:34:6f:b9:f9:
b3:a8:80:55:da:6a:70:81:dc:4d:54:8d:b6:17:e8:9a:17:6a:
5a:6b:db:ba:59:92:10:c0:2d:7f:c6:8e:b5:c2:d5:ff:1e:33:
9b:0d:57:c8:7b:a4:23:8d:35:bb:d2:05:d2:a2:93:cf:6b:27:
33:ef:ec:e3:f8:e2:a9:c8:65:2e:6a:38:6e:02:92:a5:ce:0e:
a3:ac:15:29:ea:1b:4d:4e:63:2c:b3:70:00:36:c3:31:6d:42:
4f:b5:6f:3e:70:cb:ee:b4:df:66:08:97:6c:63:04:5d:f5:a9:
ce:45:ba:5a:ae:a0:9a:d9:87:42:af:a5:76:52:d0:ae:d5:51:
b3:f2:0c:d2:c6:63:ab:2a:8d:eb:ab:05:a6:24:f5:be:96:3e:
7e:a5:d6:ac:04:3f:9c:c6:57:ed:2c:08:fe:25:47:6a:20:15:
d3:f7:b6:a3:53:95:2f:6f:57:8d:a0:b1:23:c4:21:3b:a6:42:
04:46:f7:0d:8b:da:aa:0a:99:41:e8:48:54:f7:a8:77:10:a7:
e9:09:56:e6:b2:7f:0d:0b:82:a3:ab:f6:c3:2f:0f:97:9a:f8:
16:13:7d:50:dc:aa:b8:9f:82:f2:59:04:82:fe:88:8e:7c:a2:
bf:25:96:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:51:17 2025 by rpki-client