Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: TdbPGpVVL+mpn+dMFUFEyNSn16/Xd6dpx0RwDvpLFZQ=
Subject key identifier: 1F:19:0F:C7:B6:D1:34:98:FB:DA:F0:B7:5E:F6:D7:A7:6B:1B:8F:CE
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 0198D660D545E3BAAE680603AD9B66C0B95C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 097C
Signing time: Sat 23 Aug 2025 10:02:06 +0000
Manifest this update: Sat 23 Aug 2025 10:02:06 +0000
Manifest next update: Sun 24 Aug 2025 10:02:06 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: QpWPNS1oNqxF/GetkWUoOCw0QNuTV3HrKFR3JG8EibU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:d5:45:e3:ba:ae:68:06:03:ad:9b:66:c0:b9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Aug 23 10:02:06 2025 GMT
Not After : Aug 24 10:02:06 2025 GMT
Subject: CN=1f190fc7b6d13498fbdaf0b75ef6d7a76b1b8fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:34:a6:d9:6b:ac:9a:93:a4:75:63:34:2d:62:
86:48:15:4c:02:8b:63:1e:92:34:63:11:bb:d1:ec:
a3:aa:8c:88:ac:3c:d0:08:9a:da:9b:c1:9f:98:f3:
1e:ae:50:fc:2f:ee:f7:38:ce:aa:72:83:cf:10:7c:
ea:7d:54:1f:a4:34:f0:d5:ca:d0:ff:08:8f:09:64:
44:df:d6:9b:ac:66:e1:1d:b5:3b:06:08:f1:f9:65:
4a:b6:d5:d3:35:7d:63:16:36:d9:c6:1a:8a:df:44:
58:f8:44:41:11:42:25:98:00:d2:82:c8:3a:6c:2f:
e6:a1:03:8c:eb:79:de:b1:a0:e5:29:f0:dd:14:47:
64:30:2e:3b:c5:58:c6:66:9c:27:bd:9f:8e:a3:e8:
3b:62:f9:2e:18:87:42:d8:ce:5b:e9:03:f1:7a:39:
30:66:85:29:13:e7:8e:0c:69:53:f7:de:52:c2:3c:
f9:41:57:c4:b1:e1:cc:9a:23:cb:d0:82:69:6c:be:
8b:7b:b9:65:ff:0b:33:b7:63:05:e0:5e:c2:08:e9:
a3:4d:22:88:a5:69:a7:de:98:80:de:6c:96:13:5f:
be:36:c5:35:f5:2f:41:2f:c0:aa:f0:98:cd:25:73:
40:83:46:98:b1:17:a1:5e:01:1c:a0:4b:f0:c4:cc:
e9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:19:0F:C7:B6:D1:34:98:FB:DA:F0:B7:5E:F6:D7:A7:6B:1B:8F:CE
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ac:6b:88:01:ae:1b:82:b7:50:3c:9a:ad:4a:70:a1:c7:3c:
ab:a8:90:07:4e:2a:96:bc:aa:a9:eb:49:6a:47:a9:f1:af:ab:
0e:ed:f7:cb:df:6e:d6:b1:61:4b:0c:87:90:bb:28:a4:77:f8:
c3:8f:22:10:54:1b:1c:cc:ff:de:d8:29:5b:45:94:d5:6c:e6:
45:e6:45:67:89:0c:73:d0:46:ec:c5:d5:5b:08:bf:8f:02:b9:
c2:ef:09:76:9f:79:95:ed:f5:91:e1:2d:0e:6c:13:16:8b:f3:
5c:02:b9:54:ad:bd:db:dc:b6:92:5e:ca:8d:8d:29:9d:d4:9f:
00:a4:23:c3:7b:99:ea:69:b6:02:5a:ec:5d:c8:7e:6b:39:64:
97:dc:46:77:d0:e1:f0:b5:9f:33:77:08:d0:d1:a3:79:83:42:
6e:f7:26:9f:e0:e8:ca:ea:ea:4f:fd:f1:12:bb:76:9f:b4:35:
b1:f8:20:da:bc:ed:43:2f:79:aa:49:07:da:05:9f:6c:2d:7c:
65:02:b2:b7:05:7a:40:68:0c:78:5b:9b:62:6e:10:c9:5a:f7:
b2:25:dd:97:02:44:7e:0c:39:6e:b1:a6:00:2c:39:54:3c:7a:
8d:12:ef:61:9e:cf:c9:f5:25:fd:41:80:9d:ae:f5:63:25:35:
f0:67:06:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:07:06 2025 by rpki-client