Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: C1wnLp0AvALp6tCZ8LtZx1UuBPPcorFCVNEL+MRrHKI=
Subject key identifier: D8:B9:50:B5:BA:9F:8C:22:74:D2:50:F6:4A:B3:85:2F:C4:DE:43:FD
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 01976EF4BF1D6B6D712AA5AE7B0330A208E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 133D
Signing time: Sat 14 Jun 2025 15:00:22 +0000
Manifest this update: Sat 14 Jun 2025 15:00:22 +0000
Manifest next update: Sun 15 Jun 2025 15:00:22 +0000
Files and hashes: 1: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: uJ+2RfVl6eOS0pmm1lRVV3wVt189sz6yKYVjb3FNvT4=)
2: jHj1kA03qC8i8hguuEC8ASnj4XQ.roa (hash: 6J5ezyoc/LI46xWXhW/cUUltYyOZg4CBJG0jaVAl1nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:bf:1d:6b:6d:71:2a:a5:ae:7b:03:30:a2:08:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Jun 14 15:00:22 2025 GMT
Not After : Jun 15 15:00:22 2025 GMT
Subject: CN=d8b950b5ba9f8c2274d250f64ab3852fc4de43fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:20:94:e7:ad:ed:a7:33:5f:7b:4d:ef:d0:2a:
2f:4a:81:4d:1e:4d:cc:80:21:96:9b:8a:67:26:0f:
31:37:c0:df:e7:a2:a5:76:2c:e3:96:e7:47:24:0a:
73:22:c8:4d:5d:a1:d8:7a:66:89:0b:7f:e3:a8:1d:
68:27:bb:45:bc:da:63:9d:4b:10:6f:1b:d5:06:62:
90:41:e8:4f:a7:c1:14:b0:2c:19:cc:ae:32:ab:a8:
53:bd:20:a1:a9:3f:e9:6e:58:2f:86:e1:08:67:60:
d1:bc:db:53:18:da:5a:98:8f:cf:b3:16:97:6c:79:
b8:18:6f:b1:84:40:70:2d:66:f8:63:75:4d:76:2e:
d9:1a:2c:31:3b:cd:a3:b8:7c:13:3d:1a:8d:ab:b9:
e4:33:ae:7b:18:9a:f2:83:d8:b5:2d:65:3d:0a:e7:
0c:f1:70:f1:4f:83:c3:a4:11:28:fe:8e:ed:51:4f:
6e:c0:c4:7c:f0:42:89:4b:b0:d7:f8:d7:87:f6:28:
f3:c8:56:7b:19:05:77:d8:2b:85:0c:62:10:81:b5:
fd:92:44:b3:3e:3c:0a:36:83:e3:87:c7:88:5b:d7:
93:2b:a4:d1:d0:4e:e9:a9:33:91:52:4f:d7:2a:c2:
85:a8:71:ae:c0:7e:15:af:87:cc:fe:d4:e2:4d:4f:
60:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B9:50:B5:BA:9F:8C:22:74:D2:50:F6:4A:B3:85:2F:C4:DE:43:FD
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a4:3c:ab:e9:36:86:2a:b7:61:10:1b:57:f2:27:d7:45:95:
2c:ee:84:c9:28:cb:3b:98:ab:6a:3b:d4:01:c3:a6:c6:b0:de:
57:64:5a:bf:df:a6:a3:7d:ca:b6:d8:d6:ea:01:f9:6e:1c:37:
2a:77:3a:33:ed:da:7f:e6:e9:31:ce:c3:9d:f0:39:ae:f7:ff:
1f:0b:21:d7:20:2c:83:96:0e:c4:ef:43:91:de:ae:39:0f:7b:
39:ae:ec:11:12:76:0a:98:ce:0f:55:9f:14:15:1a:b7:ac:c5:
e0:73:ff:4f:9b:fa:f9:56:23:98:10:a6:1e:88:ae:c8:54:af:
dd:67:8f:c4:88:4d:88:40:f9:f2:d7:e1:df:91:27:18:df:60:
c5:9f:ed:37:c0:42:5d:4f:6d:00:da:6b:54:09:40:6d:74:d5:
bf:94:2e:59:35:65:ec:9b:a6:85:2b:d8:6c:be:04:61:da:69:
1a:00:de:62:29:3f:95:db:9d:94:97:c0:3e:58:00:bd:73:72:
61:c4:c9:b0:f8:96:83:91:5a:ee:49:5d:cd:4b:e8:df:ac:6b:
4b:8e:dc:66:72:69:6f:9a:0c:72:1f:dc:b5:75:20:01:b5:96:
f4:15:3a:66:c6:c6:b5:8c:73:b1:23:0f:5b:71:55:dc:e0:c4:
5d:6d:b8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:15:00 2025 by rpki-client