Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
File: HNq3BST9UTE7hPXY9GNio9jICBQ.mft (raw, json)
Hash identifier: TooyD0BiFkRiAbahotZyyhCll5sGjsvi11CYLHIB8Cg=
Subject key identifier: 88:83:19:1A:D2:50:25:AF:75:6D:A4:17:C6:1E:FB:25:A0:9C:19:D9
Authority key identifier: 1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
Certificate issuer: /CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Certificate serial: 01977007F1A0AFEC8590AEE4707E16FF335A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 20:00:58 +0000
Manifest this update: Sat 14 Jun 2025 20:00:58 +0000
Manifest next update: Sun 15 Jun 2025 20:00:58 +0000
Files and hashes: 1: 8H6vwz49R0kM-gbNtDLGiXSOgWE.roa (hash: 7d11KfsVtGX7lu3CgRTWP0J/PhStNQboteNSMa34UZE=)
2: HNq3BST9UTE7hPXY9GNio9jICBQ.crl (hash: kDbhps+703WixnX3+ODtD0gzevzGAVqSLR5XvAvLPMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:f1:a0:af:ec:85:90:ae:e4:70:7e:16:ff:33:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Validity
Not Before: Jun 14 20:00:58 2025 GMT
Not After : Jun 15 20:00:58 2025 GMT
Subject: CN=8883191ad25025af756da417c61efb25a09c19d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a5:d1:46:e8:c2:fd:2d:0d:37:30:87:25:13:
18:88:b9:10:09:54:3a:93:98:3a:df:18:49:b9:2a:
ae:3a:90:7c:0c:ef:cc:3e:87:6d:53:3e:18:f0:c0:
f4:dc:16:3b:aa:90:e1:d0:e4:51:27:8c:54:ff:83:
ae:3c:8c:8c:1f:5d:8e:06:39:38:8e:a8:92:06:33:
b5:4c:09:82:12:6a:91:78:da:17:a4:e2:1d:19:75:
2a:1b:07:bd:10:5f:95:d8:84:16:24:85:23:6f:6e:
00:aa:f8:84:2d:ed:69:d1:38:ad:ab:a1:71:27:a9:
05:cc:02:b8:19:3a:5a:cf:ac:71:a3:0c:7d:64:43:
7a:b8:3c:be:ad:b0:11:c8:09:ae:ce:c5:22:4e:f8:
04:20:2b:4e:77:ca:33:dd:57:91:5d:8f:e0:7e:b3:
c3:4e:e3:e6:19:bc:28:2b:58:01:0d:31:16:80:b1:
a1:11:29:ea:5d:c0:09:6d:47:07:ad:8b:b2:b7:ad:
80:ec:1e:38:d9:5d:77:3d:5d:0b:56:19:84:d6:c6:
97:75:88:e9:b8:bf:f1:ab:ef:39:42:55:13:24:f2:
20:7d:9d:8f:b1:e7:23:0e:a5:a7:9e:50:13:26:aa:
82:93:a8:b4:35:9b:db:3e:a8:d1:a7:73:0e:c1:d8:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:83:19:1A:D2:50:25:AF:75:6D:A4:17:C6:1E:FB:25:A0:9C:19:D9
X509v3 Authority Key Identifier:
keyid:1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:54:e4:f7:72:57:92:6c:3c:6c:9f:0e:94:7a:a6:95:74:a1:
58:cd:a7:92:a3:6c:0d:be:55:4d:52:29:7f:42:61:1a:7b:1b:
02:94:5c:da:5c:03:c9:b0:76:03:86:e9:68:59:51:5d:42:70:
85:55:99:1e:11:d6:f8:35:8f:d1:c0:89:59:d8:c4:35:bf:33:
da:95:56:3e:85:e5:1a:ef:38:83:f5:25:8e:fd:90:d9:19:2c:
d8:48:ff:56:40:29:48:6f:e6:54:af:f0:14:1c:b8:23:48:97:
94:1f:b4:88:30:c1:90:9e:33:58:89:b3:3c:ef:cd:3f:48:8c:
40:7a:7c:06:ab:79:63:d1:92:f8:d1:8e:bb:ec:99:2c:f4:4a:
60:1c:83:c1:32:db:09:c5:f0:5b:b3:c6:2b:d8:6b:2b:36:da:
b6:9c:e6:93:27:c5:30:1b:0b:14:33:13:3a:57:72:35:13:57:
ae:d1:63:e7:4d:c7:82:83:4d:f3:92:e0:52:e9:b2:f9:dc:26:
6c:00:9c:fe:9c:a9:06:36:19:9a:24:4e:18:a7:af:1b:bb:0b:
15:35:35:27:98:e9:81:d7:f5:5f:4b:ad:eb:1b:94:3f:0f:50:
b5:38:a0:8d:82:da:c2:70:5b:22:34:55:0e:ff:f8:68:57:91:
f2:b0:53:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:06:55 2025 by rpki-client