Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.mft
File: hgLiX_EiDtSqju94wzpyKrWIP40.mft (raw, json)
Hash identifier: TwkslhZBd/Rku+3T2uzjeRbf4oVJDcXDeYPo7yaiv3w=
Subject key identifier: 8B:D8:58:7C:D5:65:96:C3:FF:F1:EF:69:F8:02:7D:38:72:54:CA:5D
Authority key identifier: 86:02:E2:5F:F1:22:0E:D4:AA:8E:EF:78:C3:3A:72:2A:B5:88:3F:8D
Certificate issuer: /CN=8602e25ff1220ed4aa8eef78c33a722ab5883f8d
Certificate serial: 019A01B5C8C4163E5B34870B5C7F53211305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgLiX_EiDtSqju94wzpyKrWIP40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.mft
Manifest number: 0199
Signing time: Mon 20 Oct 2025 13:01:21 +0000
Manifest this update: Mon 20 Oct 2025 13:01:21 +0000
Manifest next update: Tue 21 Oct 2025 13:01:21 +0000
Files and hashes: 1: hgLiX_EiDtSqju94wzpyKrWIP40.crl (hash: qH0Kk9k3a6q8c3O/db7XtnMrsMqSl4p/pySq1WqjljE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgLiX_EiDtSqju94wzpyKrWIP40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:c8:c4:16:3e:5b:34:87:0b:5c:7f:53:21:13:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8602e25ff1220ed4aa8eef78c33a722ab5883f8d
Validity
Not Before: Oct 20 13:01:21 2025 GMT
Not After : Oct 21 13:01:21 2025 GMT
Subject: CN=8bd8587cd56596c3fff1ef69f8027d387254ca5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7c:3e:bb:b5:ab:11:09:c6:91:b3:f2:8e:da:
dc:97:f1:0c:16:d2:6b:4c:e3:e3:28:2f:0e:50:d0:
45:d3:5f:cd:12:38:a9:71:04:a7:25:b4:21:14:30:
3d:68:f6:e9:b2:2c:7a:2a:a7:c7:0b:3e:f1:70:a0:
72:0a:e9:55:4c:5e:16:de:cf:68:e1:dc:63:5c:bb:
c4:ec:2c:85:79:01:f9:93:b0:ea:9d:be:b3:95:80:
43:91:0b:f6:b4:71:00:90:66:ac:05:bb:92:e5:81:
79:53:4d:74:5f:5e:64:4f:ce:20:57:8c:0d:b3:00:
1b:00:11:b0:ec:2a:3a:87:d2:92:4b:0b:d7:0e:77:
ab:02:5b:67:b1:c2:16:89:b9:c0:75:01:10:2c:e0:
7d:ef:11:71:db:f5:02:dc:6b:df:13:d4:b1:f3:dc:
7b:7d:05:fa:5f:6d:3a:e7:3d:a9:13:90:82:e9:30:
1f:af:5d:1b:68:4b:11:f1:e4:1f:e5:40:73:ca:3f:
7b:4e:57:bf:cf:65:f3:61:ab:92:cc:72:95:64:a8:
84:4a:31:cf:ec:41:71:d7:3f:f6:2b:8f:81:e4:05:
8f:f0:5c:81:ea:86:3e:be:4e:b6:e1:ed:23:40:51:
c1:2a:8e:c3:c6:fa:e6:3c:9d:54:05:00:8e:e1:dc:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D8:58:7C:D5:65:96:C3:FF:F1:EF:69:F8:02:7D:38:72:54:CA:5D
X509v3 Authority Key Identifier:
keyid:86:02:E2:5F:F1:22:0E:D4:AA:8E:EF:78:C3:3A:72:2A:B5:88:3F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgLiX_EiDtSqju94wzpyKrWIP40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c2e380-f955-4feb-9ef8-481f457e1b89/1/hgLiX_EiDtSqju94wzpyKrWIP40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9e:d5:6d:6b:91:17:91:23:08:1e:dd:63:37:0c:4d:7b:f9:
c9:3d:78:16:dd:7f:5b:b4:0f:50:8d:20:29:15:f8:ee:5e:43:
7c:3e:d0:d8:3b:0b:8c:e5:ed:ac:f8:95:29:4c:d2:5a:93:d9:
ca:cf:70:7d:0d:24:d0:1d:7d:26:d7:2c:ad:c5:5f:c4:cf:d4:
f8:2b:5c:65:29:b5:69:3a:6a:9c:bb:95:c9:3f:22:45:35:6e:
32:38:9d:fe:75:d2:db:bd:7e:63:42:fb:02:3c:e2:0e:52:b3:
98:6e:0f:6b:ca:65:a3:6c:6d:2d:f6:d7:63:18:f8:63:f3:34:
94:22:f6:ab:d0:81:da:2b:3e:fc:97:fb:8a:01:4f:f4:db:5f:
46:ad:33:d5:05:b3:87:20:9e:21:5f:c9:95:12:2b:6c:74:6e:
c6:4d:98:ea:42:99:b9:04:2a:92:d6:2a:20:d3:5e:9d:46:94:
c6:08:e4:27:55:45:17:a4:bd:3e:ed:99:c1:b6:ea:3a:ed:12:
29:5a:c0:f8:b3:04:02:27:ff:79:39:89:a6:86:e4:ba:d0:1a:
ee:19:cf:b1:d8:29:66:a6:6b:9f:d3:96:61:07:3f:14:91:09:
96:9f:f0:3b:5e:b0:5d:0b:98:63:86:e3:af:08:5a:f6:36:e2:
69:67:23:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:50:40 2025 by rpki-client