Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: 7xe6PWiEb6rJlPXf6dF+xXM9/bbsW/TkeZQ6w1nILZQ=
Subject key identifier: 4B:E4:CE:C2:69:CD:DE:23:F3:80:62:23:30:5C:8C:AD:A2:3B:2F:77
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 01976E506FA4304AC989A5DB1C0FA2866D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 12:00:54 +0000
Manifest this update: Sat 14 Jun 2025 12:00:54 +0000
Manifest next update: Sun 15 Jun 2025 12:00:54 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: LGNWFSI0PpM35qMdL98ose3dOFf4zTWouvK58bCfwE0=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:6f:a4:30:4a:c9:89:a5:db:1c:0f:a2:86:6d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Jun 14 12:00:54 2025 GMT
Not After : Jun 15 12:00:54 2025 GMT
Subject: CN=4be4cec269cdde23f3806223305c8cada23b2f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:24:a8:59:9c:ca:51:14:5e:35:3e:e4:8c:9e:
a2:96:9a:3a:55:15:7d:d2:f8:00:a1:c5:fa:2d:0a:
0e:49:03:63:29:90:c3:d5:92:7f:37:e8:7e:87:61:
2c:1e:16:8b:7e:75:35:6e:de:e6:9d:6f:39:1b:d6:
6a:7b:a2:49:40:fa:f8:d4:8e:4e:67:a5:3b:56:6f:
e2:5f:fe:8e:91:9e:18:a5:83:11:ca:5d:b2:f3:7e:
49:01:40:37:18:9f:0d:05:47:37:9e:47:47:c9:ac:
73:55:0b:09:b4:42:1e:97:10:3f:13:4a:6a:7b:52:
66:dc:b1:73:fa:b5:ca:4a:bb:92:c1:b3:10:6c:c4:
bb:6d:3c:fc:17:ea:ca:01:0a:50:f6:e2:61:31:4e:
47:53:be:27:cd:60:6f:79:13:f8:4c:01:24:25:14:
83:94:59:1e:55:a4:0c:e4:b4:18:f4:52:69:e0:1e:
84:67:e6:50:c3:9d:2d:93:5c:19:8e:4e:aa:a9:c4:
54:90:7b:f1:33:a2:90:47:88:f3:85:6f:46:d7:13:
f2:93:45:39:0f:ba:9b:25:13:82:1f:1c:6d:16:d5:
1d:89:2e:ae:94:e3:ea:d3:2b:49:66:dd:8c:99:f8:
14:95:80:4f:14:f0:d3:31:01:18:14:09:77:49:9a:
47:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E4:CE:C2:69:CD:DE:23:F3:80:62:23:30:5C:8C:AD:A2:3B:2F:77
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:dc:d3:03:4b:18:2e:10:55:82:47:81:3b:3c:4b:d3:af:ac:
44:17:f9:66:9c:0a:99:1c:5c:4e:a6:63:0d:8a:67:d0:49:8c:
e6:fe:3b:e8:9c:32:0e:87:0f:1f:25:d9:66:0b:af:5d:f6:1c:
8b:3a:ad:90:ca:5b:12:75:8e:5c:c9:d7:85:ad:77:e9:02:1e:
35:f1:3b:72:81:bb:2a:8f:d9:3e:16:98:d3:9f:6e:13:10:a7:
e0:fb:1d:47:87:38:4c:a7:1f:a1:34:76:0e:8e:4a:cb:f8:a0:
0e:24:23:a9:10:a3:80:f2:9d:de:46:b1:e0:56:bf:93:69:78:
e6:09:2f:5e:1c:7e:62:b2:c6:2c:4e:1b:7b:77:42:b4:6a:52:
f3:f5:7e:07:d5:a3:b0:8c:60:d8:40:96:c5:50:a7:46:55:ad:
f1:37:ee:58:de:07:11:65:f7:b6:fb:fb:f0:e3:a5:bd:fc:db:
2e:d0:24:70:a7:67:5a:28:74:db:49:62:17:2d:3f:89:4a:c4:
cf:ed:08:ba:e5:00:8f:28:2a:94:16:49:33:9e:74:d9:07:03:
3f:ed:93:b4:99:17:ad:2d:72:e6:be:55:f4:55:9e:b2:67:eb:
8b:52:14:2a:48:63:59:da:d8:2c:64:dd:19:72:2f:36:2e:3b:
f3:51:f8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:19:21 2025 by rpki-client