Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: FtblyQL+QJLxHJxk6pPG/BRv95c61tKsOB9Kjtow4SU=
Subject key identifier: 32:D8:07:3A:C7:B8:7A:51:B5:82:03:42:1F:22:2E:62:F6:5F:77:40
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019874F52320FFA1EB9067CD770BECF008B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 12:01:19 +0000
Manifest this update: Mon 04 Aug 2025 12:01:19 +0000
Manifest next update: Tue 05 Aug 2025 12:01:19 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: LIX6VOG5D4TZGG0gK04aq6tiC/JTYsyC5i78bSfCum4=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:23:20:ff:a1:eb:90:67:cd:77:0b:ec:f0:08:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Aug 4 12:01:19 2025 GMT
Not After : Aug 5 12:01:19 2025 GMT
Subject: CN=32d8073ac7b87a51b58203421f222e62f65f7740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:4e:db:45:cb:44:6e:b4:0b:91:c4:aa:6d:6e:
cd:f4:e8:3b:60:4d:70:d6:30:78:c8:cf:69:8b:03:
79:7c:10:07:71:3d:73:cc:49:0f:89:b3:14:d7:3f:
77:e6:b9:de:23:3a:e9:ea:d7:9a:c1:e5:cc:71:db:
b6:15:ca:6d:2a:80:22:ba:0b:b2:3e:cd:f8:6b:78:
dd:03:ce:07:72:ed:43:17:0d:a4:5c:3c:5b:72:6d:
2c:10:ba:10:02:c3:ea:f9:54:66:7e:31:4a:af:37:
f8:03:22:8a:c0:9b:fa:1f:32:5c:32:b6:64:c6:46:
e8:00:a1:f2:66:b1:1d:b1:ac:a6:33:6b:fb:72:9d:
82:12:91:b2:4e:03:f5:80:22:94:01:cb:af:2e:a8:
ae:9b:30:cc:56:c6:4e:ef:f9:a5:59:6f:22:23:0f:
a1:c0:66:4b:ea:f7:6f:e5:82:c3:72:17:e5:54:fa:
f9:b5:86:9b:50:e5:fc:23:b2:71:dc:cb:98:2c:35:
ec:01:cb:8a:ad:ec:1a:a6:f2:94:ad:d3:bd:46:e4:
71:61:70:46:72:50:76:98:c3:3a:b8:1f:25:e4:1d:
15:7a:67:f7:a6:b3:d7:5b:33:25:be:ea:d9:9b:32:
d2:7e:5c:5c:13:f7:40:49:69:18:10:5b:4c:25:45:
50:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D8:07:3A:C7:B8:7A:51:B5:82:03:42:1F:22:2E:62:F6:5F:77:40
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:aa:63:44:49:ce:9d:c1:a1:71:86:1a:46:ab:db:47:a4:26:
22:3f:40:e9:fe:e4:52:7e:dc:63:09:b7:96:7a:e6:d2:67:e3:
60:a1:eb:76:0c:b5:19:ad:2f:bd:cd:ad:4f:e7:dd:59:a6:76:
74:89:a1:ff:66:d1:1b:8a:c8:a5:15:55:b3:09:ca:7e:a9:5d:
e3:6f:f7:1a:e0:33:dc:39:20:1b:b6:36:d2:87:1e:8e:d2:49:
d3:e4:f4:06:99:23:31:46:0e:af:b4:93:7f:ab:be:d8:c8:2f:
70:3b:96:e7:9f:34:44:6d:76:ac:90:e7:4f:9c:6b:20:55:94:
8e:dd:aa:6d:38:9c:23:a5:53:01:21:5a:ec:e3:c8:dd:3c:c7:
7a:17:12:11:10:7e:fc:87:93:44:60:a9:52:a6:3b:32:bd:c3:
08:2e:b9:b8:47:28:a7:ac:97:2f:93:b0:d6:49:9f:10:8e:6b:
1f:a5:19:99:40:d2:49:ed:da:11:22:6f:e8:43:9a:43:21:e0:
16:86:6e:1e:34:0e:cc:4c:5c:24:4a:d1:50:25:32:67:08:d8:
57:f2:7f:a5:58:7e:23:4c:2e:b3:ed:de:0e:61:d3:c2:17:b5:
b2:ac:01:0c:42:d5:39:7b:8e:d2:50:c8:fe:25:6d:d7:1b:fa:
43:b2:f9:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:00:12 2025 by rpki-client