
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: eGuWXJuDWx3P55WVd6ySeYKstkCIO107TBLGueZLXWs=
Subject key identifier: 4E:E1:3F:76:A5:A6:DA:56:12:43:50:17:CD:93:9D:31:B3:A9:78:94
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 019A01B54BF0398B2A1DA140E7BE8230783B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 0A17
Signing time: Mon 20 Oct 2025 13:00:49 +0000
Manifest this update: Mon 20 Oct 2025 13:00:49 +0000
Manifest next update: Tue 21 Oct 2025 13:00:49 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: yOr6tXJ5f5PuMQZILrONyliFO/US2N8/Sa9LM3QTQx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:4b:f0:39:8b:2a:1d:a1:40:e7:be:82:30:78:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Oct 20 13:00:49 2025 GMT
Not After : Oct 21 13:00:49 2025 GMT
Subject: CN=4ee13f76a5a6da5612435017cd939d31b3a97894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:92:34:10:b2:ef:86:b8:68:c2:0f:b5:87:6d:
33:84:76:d0:64:ea:0e:63:08:7b:57:8e:0e:36:35:
4f:a8:c7:44:c9:5d:cc:89:97:17:dc:86:e5:0d:24:
94:aa:ff:eb:11:31:05:d6:1f:b2:0d:c8:6f:c2:8b:
25:72:c5:da:47:e8:5e:6d:0e:95:28:d7:0a:27:41:
5f:91:83:93:cb:92:a9:12:62:ec:ba:39:d0:1c:fc:
c6:63:6d:31:03:c9:cc:cc:b6:23:4c:9f:1a:6a:51:
a5:46:d9:d0:81:f5:fa:6c:d0:bc:95:48:27:f5:99:
20:c1:b7:7b:a9:ce:af:2a:6e:9d:84:f0:3b:ee:1a:
53:eb:54:fc:fd:f3:aa:5c:9f:92:19:6c:fc:96:db:
65:a4:d4:04:be:fb:f2:df:8e:d7:54:6e:cb:35:8f:
88:b1:a6:9a:5d:ab:c4:b2:91:e4:be:c8:f6:3a:e3:
48:e6:09:fc:64:f5:1d:4d:1f:c1:d9:21:a6:35:d4:
de:92:46:45:2e:47:ee:7f:c3:00:7f:3b:bc:1a:4f:
b1:75:4f:33:7a:85:6a:e4:59:e6:aa:94:5e:90:77:
9b:c5:4c:46:1b:dc:d6:17:cf:81:52:4d:70:2b:f9:
cf:5b:27:d4:df:c7:11:2d:98:01:2e:4d:0d:7c:b3:
d2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E1:3F:76:A5:A6:DA:56:12:43:50:17:CD:93:9D:31:B3:A9:78:94
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:8a:12:16:f0:a2:ce:26:3d:2a:30:77:b1:cd:3b:f0:0d:b0:
35:94:4c:0f:6a:10:74:03:a3:0c:5a:d8:c3:41:6b:14:bb:96:
1d:a1:13:a0:25:a4:e2:b8:d4:a6:b0:c8:fa:91:06:b2:75:d6:
1c:d8:5f:fe:92:de:96:81:34:37:f1:03:87:a3:91:39:66:66:
0c:f5:f5:24:57:89:11:15:d8:85:ad:57:28:76:7f:05:f2:42:
85:b2:e4:92:2b:10:96:16:5f:94:7e:50:98:d9:bc:01:45:79:
0a:35:e8:dd:39:c1:b6:f1:91:de:ff:23:9f:68:64:d3:12:97:
14:9a:88:9d:5d:21:80:83:94:9d:64:61:d6:bf:c7:1f:e0:3a:
85:e7:7e:92:4c:7b:6c:e7:4b:5a:06:59:bb:2d:12:87:18:90:
e4:56:dd:71:65:d6:84:8d:cf:c8:75:76:f9:96:cd:4d:d6:6e:
d1:fa:8d:12:8f:02:e8:c7:96:6c:79:ff:b2:be:91:a5:e0:e8:
b3:0f:4f:a2:cc:33:d6:7e:d6:f3:c4:76:41:6a:c9:ca:19:f8:
ae:21:d9:29:e3:20:37:51:e6:38:05:ac:67:96:ce:b2:b1:5e:
e1:dd:9c:ec:9f:6c:e1:5d:a6:7a:31:62:9a:b1:bb:8c:8d:88:
81:21:fe:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:31:45 2025 by rpki-client