Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: +3JV9rgBNXMWBkblScoXpAT1EqNgNS640vMqmyam/XY=
Subject key identifier: A1:77:34:02:A2:4D:4D:67:B4:8E:72:E1:AF:37:0C:DB:A4:82:CA:DD
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 0198D583B6B66A95CF668B58FA6830BCE686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0BDD
Signing time: Sat 23 Aug 2025 06:00:35 +0000
Manifest this update: Sat 23 Aug 2025 06:00:35 +0000
Manifest next update: Sun 24 Aug 2025 06:00:35 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: yH2k7QozgUOGHUt2KKglLUop9Nb3ityPp3IaCYlJWG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b6:b6:6a:95:cf:66:8b:58:fa:68:30:bc:e6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: Aug 23 06:00:35 2025 GMT
Not After : Aug 24 06:00:35 2025 GMT
Subject: CN=a1773402a24d4d67b48e72e1af370cdba482cadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:21:ae:22:77:76:3e:55:c2:8c:b5:01:f1:be:
3a:67:25:e3:7f:d1:d4:c6:28:80:85:61:cb:19:68:
31:76:72:79:bf:a4:96:3d:d2:98:5b:a2:bd:ab:40:
cb:99:8e:c7:a9:0b:dd:6b:c0:79:aa:f8:66:eb:c6:
d6:61:01:9d:36:fa:9d:95:89:24:23:d3:94:43:f1:
85:1a:66:5f:1f:29:26:b2:e7:3b:a2:c6:dc:44:fc:
cf:35:fe:ff:d2:3d:1b:65:96:38:37:30:44:1a:3f:
ce:9e:7f:68:11:16:f6:a5:1c:51:45:2b:3a:f4:00:
90:21:1d:59:ab:6d:d2:3f:89:a9:6b:9e:71:8c:3d:
02:a9:b6:65:2d:cc:63:1d:31:07:b8:98:cd:69:29:
07:8b:ec:85:5b:27:e1:65:55:62:fa:11:9c:e8:10:
b8:4c:b7:69:88:74:21:c7:d6:03:9a:11:c7:d5:54:
b1:6c:a4:26:d4:9b:64:79:cc:1e:76:56:2e:f2:37:
4d:a8:09:79:a3:75:3c:a4:d2:87:c4:3a:ef:97:36:
d6:43:3c:7a:56:99:46:b7:00:02:e7:87:22:74:fc:
9a:c3:eb:73:83:50:3d:12:1c:bf:ce:41:e4:f0:4c:
d8:c1:2c:e2:3a:15:36:39:65:72:32:15:26:6f:69:
2b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:77:34:02:A2:4D:4D:67:B4:8E:72:E1:AF:37:0C:DB:A4:82:CA:DD
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:56:8b:6d:ee:b0:95:21:73:05:71:49:c1:30:bc:2d:80:a0:
c2:40:fe:44:17:27:5e:8f:06:be:e2:60:0f:d3:42:3e:eb:e8:
14:d6:60:44:02:d0:6b:67:c2:11:96:50:3e:0a:ce:d0:ae:4d:
2a:8a:8b:17:5e:e4:08:d6:d2:08:7e:29:2c:ad:ff:17:eb:ec:
59:72:98:2c:14:4f:7e:3e:93:e9:7f:77:54:b3:2d:76:a1:4b:
43:f3:03:e9:8c:94:37:db:f5:2d:3a:51:49:aa:81:c2:2f:38:
5c:73:89:f8:6e:ec:d9:e9:3a:31:97:bd:b5:c3:59:60:d8:52:
9e:c2:23:3d:8c:ba:62:e7:84:4f:a5:01:16:6f:d2:d5:67:c3:
fa:4f:c3:af:a2:82:da:c2:9c:38:ab:b9:51:55:9f:b3:ef:56:
ed:86:a1:42:ea:d0:2e:30:6c:13:66:fa:a7:b5:80:02:eb:7b:
b5:92:70:53:fd:51:34:0d:a1:eb:83:20:78:d4:86:bf:be:2b:
fd:fb:29:c7:8e:32:8a:e9:7b:40:92:c3:25:a5:8f:37:5f:1c:
71:8c:ba:3f:d5:36:6d:36:c8:0a:65:40:27:02:fc:7c:e6:3a:
52:21:4d:3b:48:10:99:61:91:6c:cb:b4:02:86:2a:de:d6:9e:
30:f5:bc:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:41 2025 by rpki-client