Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
File: HNq3BST9UTE7hPXY9GNio9jICBQ.mft (raw, json)
Hash identifier: 9gRsVqpdKjTSR7pePnfU/9bVmzCFpP2m94d0CGGTzKg=
Subject key identifier: BC:BF:3E:ED:08:A4:14:89:2B:5D:C3:45:22:EB:E0:20:1E:79:BF:DB
Authority key identifier: 1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
Certificate issuer: /CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Certificate serial: 01988BEA25E8B985817F93768C316870D830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
Manifest number: 1624
Signing time: Fri 08 Aug 2025 23:00:34 +0000
Manifest this update: Fri 08 Aug 2025 23:00:34 +0000
Manifest next update: Sat 09 Aug 2025 23:00:34 +0000
Files and hashes: 1: 8H6vwz49R0kM-gbNtDLGiXSOgWE.roa (hash: 7d11KfsVtGX7lu3CgRTWP0J/PhStNQboteNSMa34UZE=)
2: HNq3BST9UTE7hPXY9GNio9jICBQ.crl (hash: oZ/uTsyRNh07NrGPclBElziwtkhSJsot5fQP9Dmyl7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:25:e8:b9:85:81:7f:93:76:8c:31:68:70:d8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Validity
Not Before: Aug 8 23:00:34 2025 GMT
Not After : Aug 9 23:00:34 2025 GMT
Subject: CN=bcbf3eed08a414892b5dc34522ebe0201e79bfdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fb:76:e7:9b:1d:46:3a:a4:3b:7d:db:a4:64:
11:70:9b:c1:0a:c3:2b:9a:54:fb:d6:33:0b:30:3f:
9b:73:59:3d:9a:30:f1:cf:9b:e3:97:20:d7:c5:a8:
c7:33:41:1c:db:eb:84:25:97:a1:7d:2c:c6:f0:dd:
00:9f:fd:2b:01:ee:b6:64:62:77:a5:fb:d1:15:6c:
82:16:10:0f:2b:f9:3c:a1:ad:f3:d1:3b:03:83:39:
b8:39:ff:28:a5:1a:f0:a8:a6:cf:39:37:08:dc:92:
9e:aa:0b:aa:e8:91:5a:6e:0d:29:49:15:5b:79:36:
f1:61:72:24:86:9c:3e:35:94:67:f1:2f:3d:0f:f1:
f7:3c:a6:99:e7:cb:b6:4e:c3:ad:e0:38:db:a1:d6:
69:cb:66:b8:52:bd:b2:ba:ad:4a:9a:83:66:d8:dc:
f8:c1:1a:57:9b:13:82:3c:9b:c7:1a:2c:59:da:91:
fd:38:28:bd:fc:9f:db:07:a9:8b:f1:28:63:37:2a:
b1:93:76:c9:ce:35:ea:40:77:cb:45:28:49:68:f1:
f8:73:51:f5:9c:34:75:1a:e3:64:16:d4:73:fb:1e:
a2:64:c3:c4:bb:d6:1e:dc:9b:87:d8:22:36:58:ec:
71:33:21:8d:00:f5:e4:fa:8a:a3:47:81:7e:9d:45:
75:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:BF:3E:ED:08:A4:14:89:2B:5D:C3:45:22:EB:E0:20:1E:79:BF:DB
X509v3 Authority Key Identifier:
keyid:1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:bd:9a:b4:39:6b:57:22:96:18:f5:a9:48:d4:26:e4:d7:74:
23:f4:36:a6:29:32:55:46:6d:40:ac:d0:d8:b7:98:1d:66:b4:
a7:b8:1b:4b:1a:66:d4:ca:0b:a2:7c:7b:ca:64:bd:1d:f9:8c:
62:5f:d9:b5:dc:3f:15:d6:ff:c4:2b:a1:a5:13:55:5e:14:57:
d9:3a:f0:ba:f6:ac:97:0a:fc:1c:fc:53:7a:20:a4:50:a8:1f:
c4:05:c0:91:95:9e:58:f5:d4:f6:80:84:36:e7:30:82:04:0c:
1a:58:62:2f:ea:f2:08:8b:6f:04:72:73:61:b9:d5:81:8e:e3:
9e:e4:b7:00:fb:99:9a:41:45:5e:36:51:0e:83:15:88:9f:36:
25:e5:9d:11:30:30:fb:ee:f0:76:97:69:29:79:ed:fb:00:fb:
07:58:2f:b8:b2:3e:26:e6:3c:da:27:f5:10:ca:03:b0:4e:08:
56:bf:34:e9:ad:f0:4b:a7:72:c3:7c:3b:7f:70:3c:57:b2:c7:
3e:c2:21:c1:2f:6c:98:8e:b8:97:e6:55:1e:28:b1:3c:cd:19:
5b:42:77:15:25:70:56:12:70:c3:a2:01:d6:25:27:56:5e:36:
61:6a:cb:89:cd:8c:2f:21:bc:2a:77:35:54:42:50:2a:00:dc:
f5:6e:b9:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:36:44 2025 by rpki-client