Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
File: rHI58-_bN5H1vlVSmbXYFpfz0BI.mft (raw, json)
Hash identifier: NK0cMo23PR0HHrzvGwWxmm6AhXbfpcNaj/vGa01XtpM=
Subject key identifier: 3B:1A:79:B3:E3:ED:65:C9:44:C8:01:E5:14:89:1C:71:2E:1A:1B:AA
Authority key identifier: AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
Certificate issuer: /CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Certificate serial: 0199FC58336E01957EE0AD399690946C9936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
Manifest number: 129E
Signing time: Sun 19 Oct 2025 12:01:02 +0000
Manifest this update: Sun 19 Oct 2025 12:01:02 +0000
Manifest next update: Mon 20 Oct 2025 12:01:02 +0000
Files and hashes: 1: rHI58-_bN5H1vlVSmbXYFpfz0BI.crl (hash: Z7pNNS4bpgf6iKf5mAMyRop/EtQOiCBCjG35DjS3JS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:33:6e:01:95:7e:e0:ad:39:96:90:94:6c:99:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Validity
Not Before: Oct 19 12:01:02 2025 GMT
Not After : Oct 20 12:01:02 2025 GMT
Subject: CN=3b1a79b3e3ed65c944c801e514891c712e1a1baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:67:a6:9d:eb:25:a9:f6:ab:71:02:54:fd:90:
25:78:53:1d:ca:67:e6:fc:77:fe:c3:f1:d3:a5:40:
f6:35:5c:7c:8e:6c:99:a8:2b:e9:25:e8:2a:41:2b:
6d:5a:1f:26:bd:b8:c6:73:9c:d3:14:80:4b:f3:87:
85:cd:42:a0:39:32:17:76:e8:fa:99:a9:06:43:6d:
0f:81:82:e1:2b:6e:95:f2:8d:4a:94:a2:39:7c:63:
bf:fd:3b:29:e8:66:21:54:84:15:cc:53:4c:5d:5d:
d5:83:b9:2f:74:b3:01:d0:9e:78:c9:99:b7:29:0b:
be:b5:cd:99:f1:1a:e8:eb:81:ed:e7:a5:1c:f6:5e:
66:e4:d2:87:a1:57:e3:c4:b1:91:12:28:9c:e1:1d:
08:0a:e5:bc:69:54:81:55:f8:01:c4:59:82:9b:d1:
ae:5e:a4:8b:55:25:05:73:eb:a4:e8:39:03:38:ed:
b8:01:b0:70:82:83:af:52:ff:1d:52:a8:dd:65:12:
63:06:c4:64:b7:5a:9d:a8:e4:a7:6f:f4:fd:1d:94:
fb:ce:96:99:94:4e:28:3f:d8:ee:13:2d:4a:00:3c:
34:4e:60:e2:41:b3:da:99:b4:96:92:4a:68:47:8a:
2c:c1:9b:e3:63:5a:e6:7c:b4:5e:ae:a0:c2:66:45:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1A:79:B3:E3:ED:65:C9:44:C8:01:E5:14:89:1C:71:2E:1A:1B:AA
X509v3 Authority Key Identifier:
keyid:AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:77:79:1e:47:63:15:1b:dd:9a:81:2f:4a:d2:29:c0:57:31:
02:26:48:6d:c6:9b:dc:79:57:31:0a:16:ee:38:3c:61:11:b8:
74:cc:00:98:4b:ef:c4:90:23:ec:c4:9a:e4:03:8f:ff:03:cf:
51:12:8b:f6:a0:1e:56:af:c5:0b:60:a3:bd:59:a3:d2:7a:f5:
8e:6e:03:8e:5a:8b:d7:12:75:ad:32:cf:84:0d:97:37:9b:ad:
89:45:3d:7f:ef:72:90:6a:ef:06:43:a0:e4:1e:18:5e:0a:52:
c1:9a:bd:a1:0f:97:73:8a:75:c6:b6:2d:d8:82:b0:0a:bd:09:
e5:67:cc:ad:07:bf:24:81:db:b4:29:06:02:e7:53:09:69:55:
b0:c1:e5:a9:5c:d8:1e:88:86:17:a1:cb:ee:15:03:80:b9:97:
d8:03:19:48:6e:fe:f0:b2:57:28:07:07:c2:40:b1:cf:8f:6b:
3a:e2:90:b5:8e:5b:ac:47:6b:bb:9c:4b:e0:eb:7b:25:6c:8e:
e3:f7:31:d7:2a:1a:8b:3e:8c:93:57:9d:6e:6a:2c:15:9a:ca:
fe:c0:c4:86:ad:09:57:7c:53:37:d0:61:b5:2c:a1:14:be:57:
9e:b4:8b:5f:93:1d:a1:17:89:7b:ff:cb:bf:c3:78:b7:6b:6e:
0e:0c:a8:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:09 2025 by rpki-client