Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json)
Hash identifier: fuzZpPWde/dXpxl8N2MWEyx5qMqNlXjFaTl942pGyYc=
Subject key identifier: 6A:30:F7:4E:82:5B:ED:FC:54:84:CD:FF:5A:FB:3C:B9:D8:A5:D3:78
Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Certificate serial: 01978C24B0DC5863476C817BEF3C087A7969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
Manifest number: 159E
Signing time: Fri 20 Jun 2025 07:01:43 +0000
Manifest this update: Fri 20 Jun 2025 07:01:43 +0000
Manifest next update: Sat 21 Jun 2025 07:01:43 +0000
Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: 4k1HdxEnUqSWyDZ2w7H4Y4rWOZe1XQLf+zpDHo0uqzU=)
2: NgTdB5AEPD4DAHaTIZRq0754ZYU.roa (hash: X0ljVmj2cD5On812FnYT4pXdeEcEXod3j6IYZXkhhSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 04:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8c:24:b0:dc:58:63:47:6c:81:7b:ef:3c:08:7a:79:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Validity
Not Before: Jun 20 07:01:43 2025 GMT
Not After : Jun 21 07:01:43 2025 GMT
Subject: CN=6a30f74e825bedfc5484cdff5afb3cb9d8a5d378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:87:ac:37:64:4b:a5:37:e6:ae:1c:9c:97:bb:
18:98:13:7e:43:7c:c5:e1:ef:12:3d:03:03:ef:0a:
1b:28:39:13:7d:be:a9:2b:cc:5d:6b:0c:ef:f1:97:
9d:8d:7c:24:27:ba:77:b7:ac:b2:6c:4d:28:7e:2d:
f6:26:ba:a7:70:a0:04:a1:e0:5c:11:52:a0:9a:25:
37:64:6e:50:4d:75:68:c8:e4:5f:c9:86:8f:a3:20:
99:03:b9:3d:00:4c:85:f3:9a:b0:8f:cd:c8:9e:cc:
88:53:bb:ef:df:0c:2c:79:0c:78:e0:d1:46:74:1d:
0d:32:a8:8d:54:ee:5b:1d:3c:ce:0d:78:36:b7:eb:
f3:2b:e1:f4:fd:c8:bb:e7:d9:8a:ce:ec:c7:ab:f5:
af:a2:77:88:be:48:3c:95:cf:ce:ed:68:f9:5c:31:
96:62:d5:f8:63:ff:8a:3b:2d:45:45:8f:83:4d:e3:
5d:20:7d:82:c5:f5:67:24:72:40:b0:b9:22:02:85:
49:b4:da:73:2d:3f:aa:88:a0:06:92:4b:fc:6a:18:
f1:f9:d2:44:46:f7:84:28:d4:12:c7:12:92:d8:d9:
9c:b7:fc:2f:38:3b:c2:71:df:40:ba:9e:c2:bf:06:
20:ad:f9:2a:cf:fc:57:68:59:e7:3d:3e:6f:9a:2d:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:30:F7:4E:82:5B:ED:FC:54:84:CD:FF:5A:FB:3C:B9:D8:A5:D3:78
X509v3 Authority Key Identifier:
keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:8b:6a:00:a9:93:1e:56:88:d2:00:8e:8d:1d:43:8d:25:75:
14:ad:11:09:b9:33:05:72:9f:9f:5f:ff:15:a1:40:d4:87:7f:
4b:5c:c7:04:76:fc:8e:2e:40:4a:78:a0:65:ab:24:98:17:ed:
91:5a:08:16:34:8b:46:2a:29:21:fe:44:3a:3d:54:91:1b:43:
34:b5:7f:11:33:21:1c:65:1c:d0:89:b8:40:e8:57:1c:99:05:
b7:bf:19:ed:ca:cc:c9:14:13:26:87:47:3d:6e:ae:12:f8:d8:
e5:29:bb:54:f3:df:27:cc:0c:24:ab:33:79:42:c7:43:f0:0d:
f8:2e:a5:7e:b1:88:6d:8d:3b:41:5e:29:4d:1f:bf:97:16:4b:
91:02:19:ed:7b:62:33:f9:ce:02:c2:de:8c:71:82:b8:e2:4d:
58:7b:32:ac:93:7a:e0:db:38:f4:f7:d4:2a:05:1a:e1:4c:ab:
91:78:bf:ee:7a:c7:d8:58:29:30:3d:b8:38:64:aa:8a:a9:2d:
7f:0e:d6:bf:94:f9:97:22:b5:a1:3f:ff:a8:90:7c:41:3f:a5:
e9:28:c8:e5:e1:0a:1b:a3:a0:90:08:bf:81:7a:a6:a9:28:16:
fc:e1:d5:60:77:be:e1:61:cc:11:bf:4c:77:a7:3f:2b:fd:65:
58:8f:fe:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 10:19:14 2025 by rpki-client