Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: bKB2JltP8qgF+NvJQejNQLvW1EMrQmWnUumGQruJTeQ=
Subject key identifier: 9E:E1:33:CD:25:23:BD:14:45:7B:AA:6D:29:D1:1F:21:5D:F1:AF:E5
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 0198D4723E741E8365861CF6DE03CEBA352F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 12D9
Signing time: Sat 23 Aug 2025 01:01:53 +0000
Manifest this update: Sat 23 Aug 2025 01:01:53 +0000
Manifest next update: Sun 24 Aug 2025 01:01:53 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: kmFAJfN7VLh+eVS6lUFDHhPrY3c+CN5AGrz3DRXQZQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:3e:74:1e:83:65:86:1c:f6:de:03:ce:ba:35:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Aug 23 01:01:53 2025 GMT
Not After : Aug 24 01:01:53 2025 GMT
Subject: CN=9ee133cd2523bd14457baa6d29d11f215df1afe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d0:7c:1e:19:f6:e9:50:e2:9d:c8:31:e6:2a:
fe:e0:9a:9a:f8:27:52:77:e5:30:15:54:4d:09:12:
ae:16:9b:3c:50:18:7e:f1:37:cc:f6:ff:ce:44:ad:
98:69:f9:2f:ec:31:c6:07:05:99:15:11:68:c3:46:
03:82:5b:21:f8:b6:eb:f8:68:5e:04:9d:71:7f:62:
fc:3d:10:07:48:3c:94:bd:ce:1f:1b:c2:2d:66:94:
3b:fa:79:3c:33:89:a2:4c:a5:42:8a:86:28:7f:ba:
f3:b7:e1:c0:b4:93:83:14:d1:8b:0a:16:72:6f:cf:
10:19:5f:f6:5e:ad:62:16:7b:b9:a1:51:c1:d7:5d:
f3:ba:4f:92:1e:c1:14:bd:f0:24:4a:98:5d:cd:60:
87:05:4a:bd:13:89:7f:79:56:6d:b5:91:7f:b4:2b:
e2:a1:e4:18:74:06:1a:49:d5:5b:a9:9b:8d:9f:49:
2f:02:c5:20:03:18:a1:6e:a8:c7:63:01:f0:60:0d:
ba:be:49:93:4b:fe:45:20:07:4b:28:29:4b:ef:94:
2f:fb:a2:0a:45:15:8a:97:a2:5b:55:76:3b:94:18:
c1:30:c0:68:a7:d2:e4:1d:ac:f2:7c:20:6d:1c:03:
1c:05:9a:11:69:29:67:47:64:b7:3d:e6:d9:a4:99:
e5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E1:33:CD:25:23:BD:14:45:7B:AA:6D:29:D1:1F:21:5D:F1:AF:E5
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ea:d4:ef:a4:f0:28:c3:a9:1d:90:d1:10:85:a5:3a:f3:03:
29:37:aa:6d:4b:1c:a6:32:59:a7:12:94:56:a5:3d:fa:e7:d6:
da:69:38:44:ef:02:19:7c:5a:11:bc:54:b7:a0:1e:fd:83:38:
7c:91:8d:d5:db:d9:62:64:3a:25:a9:26:bc:8c:40:b1:13:da:
46:1a:93:5c:03:e4:b6:b4:fb:a4:dd:f1:c5:ee:23:5f:6f:43:
b6:93:3a:3d:57:ce:2b:c6:1c:fb:4a:a7:67:54:ca:51:1c:2d:
72:c6:d7:5d:8c:aa:3b:9d:c7:c1:5c:88:65:53:f7:20:4c:9c:
07:53:f0:91:bc:e5:0d:0a:ab:a4:e6:49:f3:12:51:81:74:f1:
11:44:99:67:ba:7f:80:11:14:85:16:12:8f:c8:10:aa:78:27:
d1:07:f2:f9:ee:a5:97:60:0f:74:18:c4:1e:35:8b:cc:cf:f0:
04:26:53:11:d3:9b:90:1d:74:27:99:cf:64:b7:21:7a:c1:1d:
5b:d6:e8:02:7a:8c:20:6c:83:79:d5:b7:ce:0f:15:26:59:cf:
f7:1a:f9:a8:9b:ac:a4:bc:c4:b0:a8:c3:87:e0:49:93:2a:2a:
b5:bf:c1:0b:b3:f3:6f:21:c9:85:aa:a2:ea:62:41:a3:2a:1f:
79:eb:7c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:02 2025 by rpki-client