Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json)
Hash identifier: bjNRJRK4Nop1f4wsOweebpmk/CUakFfT25i9C/aBI+A=
Subject key identifier: 46:EE:FD:D1:A5:0E:36:77:0D:BB:D3:51:68:EE:6E:61:D7:5B:8C:8C
Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Certificate serial: 0198D473FB63EA91D60AC57C3AFDCF6F3319
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
Manifest number: 036F
Signing time: Sat 23 Aug 2025 01:03:47 +0000
Manifest this update: Sat 23 Aug 2025 01:03:47 +0000
Manifest next update: Sun 24 Aug 2025 01:03:47 +0000
Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: A2ZJmmv2ZslhP+IZ4GZkxRjYJC4x3xrdfEMQgW1wzxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:fb:63:ea:91:d6:0a:c5:7c:3a:fd:cf:6f:33:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Validity
Not Before: Aug 23 01:03:47 2025 GMT
Not After : Aug 24 01:03:47 2025 GMT
Subject: CN=46eefdd1a50e36770dbbd35168ee6e61d75b8c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:88:60:1f:ce:5c:de:79:2f:37:71:76:d8:71:
56:22:5e:67:71:b8:f9:e4:a5:76:61:b9:86:09:0f:
a1:5f:2f:a6:3c:e4:36:c5:88:ac:0a:0c:9a:2c:6b:
07:b4:54:52:37:42:8b:e3:08:53:fe:5a:a7:da:11:
b7:12:20:57:2e:f0:3a:06:ad:9c:dc:39:74:73:9f:
c7:6c:1e:25:26:cc:c5:60:68:8a:95:28:38:cb:aa:
9e:9b:e6:e3:3e:e3:60:11:4a:7c:d4:ab:01:17:52:
2f:77:aa:0f:36:5d:ae:51:76:b2:8a:be:e8:4f:a4:
50:af:21:68:25:b6:e0:3a:d2:33:4f:06:2c:8e:ad:
4a:31:eb:1c:1e:c3:d5:9a:94:b2:51:0b:43:e0:fb:
05:d9:46:a9:ae:e4:21:ec:1e:4e:58:56:71:51:05:
e1:37:71:69:e2:25:1e:90:bf:d3:25:79:54:4d:5b:
b8:5d:bf:3c:a9:e1:ab:2d:02:fa:42:35:aa:18:be:
a8:80:66:16:7c:b2:88:cb:41:64:97:58:e9:f1:22:
fc:f4:cd:2e:3b:e1:3a:8e:e9:a6:4f:75:fc:9a:f8:
81:1f:0e:50:47:b2:ee:3d:a6:f1:87:46:82:59:c3:
41:a6:e5:36:59:09:76:ee:7f:f9:08:fb:64:ad:af:
2a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EE:FD:D1:A5:0E:36:77:0D:BB:D3:51:68:EE:6E:61:D7:5B:8C:8C
X509v3 Authority Key Identifier:
keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:fd:70:16:c2:cf:bf:cd:a8:b2:57:45:92:e0:eb:69:a5:d7:
99:f0:e1:ab:e3:19:c5:5d:ce:f4:95:d1:65:05:ec:02:ba:a3:
94:cc:84:7b:ad:37:cf:47:52:cd:37:9f:7c:07:67:98:36:14:
6b:04:bd:0e:18:a4:6f:c5:6f:fa:b5:3e:7c:4f:d6:86:d1:87:
32:ac:1b:4a:60:91:47:a4:ff:bf:49:d4:f6:57:61:0c:c5:47:
36:e6:c7:47:0e:92:a2:85:15:5f:02:1f:95:e3:f2:62:84:c1:
3b:2d:01:b0:43:36:59:e5:a6:9f:e9:8b:d0:3b:ab:18:38:81:
5e:7e:f3:65:b4:6e:8e:2b:cd:cd:18:1f:e4:a5:61:93:8b:45:
b9:6f:84:23:c0:b2:ce:51:98:fa:85:c2:c2:40:8d:e5:7a:83:
c0:e5:75:27:74:df:d2:0a:d1:2a:0e:49:41:70:69:7e:9e:fa:
8c:87:57:0e:ef:dc:c1:8d:2b:dd:e2:d1:3a:46:cc:e8:8a:2c:
da:1b:32:f2:24:6d:ea:5d:01:15:ed:13:91:34:56:61:53:63:
f1:51:ca:69:6e:56:4d:19:c8:c1:5f:36:f8:ce:16:27:9d:3f:
a6:cd:6c:ab:1a:bc:4b:ef:f4:31:28:1f:9d:b0:14:6f:79:80:
dd:c9:36:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:42 2025 by rpki-client