Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: UrjQlf+FpJBjCiYVQHNh1Kd31Y7Z4HGro2Lw1PgBCRw=
Subject key identifier: 19:97:71:32:E1:8E:0C:1F:11:DF:FA:20:6E:ED:81:88:6E:1C:62:1F
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 0198D5BC4A487BAF441DC21A7ECB11CC9DC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 140E
Signing time: Sat 23 Aug 2025 07:02:23 +0000
Manifest this update: Sat 23 Aug 2025 07:02:23 +0000
Manifest next update: Sun 24 Aug 2025 07:02:23 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: pAK59KfetAVSs8dWA6ZXbPalFnQj1nt8mjn3ZIBPH8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:4a:48:7b:af:44:1d:c2:1a:7e:cb:11:cc:9d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Aug 23 07:02:23 2025 GMT
Not After : Aug 24 07:02:23 2025 GMT
Subject: CN=19977132e18e0c1f11dffa206eed81886e1c621f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:03:56:e6:73:cb:e2:7a:a5:8f:4d:5b:a8:71:
e4:cc:0a:f9:c7:33:2c:58:78:1a:b3:fa:f0:31:3e:
2b:29:d2:b7:94:35:73:2d:87:d1:b2:eb:24:ce:ef:
0b:cb:6e:14:eb:20:f3:17:8d:ca:f1:db:88:7b:89:
27:c2:e0:81:2d:a3:18:05:95:ba:4c:85:31:82:2f:
8b:4b:b7:38:35:41:04:63:3e:e3:49:67:89:52:d3:
d2:79:40:61:a7:30:ee:26:ed:4d:7f:ac:32:9e:c3:
9d:06:5b:95:fb:48:17:89:c6:11:69:cf:f7:cf:8b:
68:64:53:38:bf:ee:cf:58:e5:ce:8d:37:a2:fa:1e:
87:21:ed:03:3f:95:ac:a6:5c:6e:9a:e1:ef:56:a2:
e0:c0:8e:ea:64:ff:e7:ed:bc:2a:a1:41:4c:2d:7a:
68:88:a9:57:57:94:bb:b2:a7:79:0e:95:a4:88:6e:
e6:68:24:0f:b2:28:75:6d:8f:5d:60:ef:d1:88:17:
3d:36:1e:f5:23:9d:20:b6:cd:82:94:a2:0a:9e:43:
4d:5a:72:6f:e9:f6:87:10:ce:2c:8a:67:58:3b:c0:
b0:a2:83:fd:5e:8e:6c:8b:4b:10:29:3a:fa:fb:97:
34:f7:a9:19:1f:7a:c5:e0:f1:54:e9:7a:a7:e2:ea:
8d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:97:71:32:E1:8E:0C:1F:11:DF:FA:20:6E:ED:81:88:6E:1C:62:1F
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:92:3f:9b:02:04:b4:33:f5:47:be:8c:04:d5:13:3c:08:2b:
33:ae:5d:91:b1:0d:44:d9:9f:14:46:77:ac:ab:c8:a4:4c:a9:
b9:57:a8:57:61:97:c3:bc:87:0c:d0:98:69:55:b7:fb:2d:ba:
af:8e:49:33:d7:90:73:88:45:45:b3:34:f4:96:b2:ca:85:5f:
dd:46:b7:a8:91:f5:7d:f5:7f:ac:01:f0:09:88:8d:f8:bf:f5:
35:3d:71:c8:d9:f4:80:0d:89:73:16:ef:2a:79:69:d9:89:a8:
3f:f8:96:ea:00:54:a4:2b:03:11:0b:97:0e:fe:1d:57:21:cd:
a3:48:0b:b2:eb:23:27:73:ec:f8:e5:05:0a:11:df:96:81:80:
9d:7a:b8:e7:bc:12:4e:c4:bf:3d:21:44:9e:46:4b:ae:38:76:
d9:bc:c9:1d:7a:01:5c:15:04:3d:e3:6b:93:ed:2b:51:48:49:
61:7c:61:5b:0b:4b:a0:ce:0c:0e:14:12:68:d3:d4:b1:36:84:
04:ab:76:b2:c7:0c:89:b5:01:2f:05:a6:31:df:bf:29:e4:d3:
10:28:ea:b1:a0:50:c1:f4:02:b9:46:51:cf:33:af:8e:be:06:
5f:da:71:dd:1c:bc:2c:92:05:f5:b2:5e:9f:6d:38:5e:18:f5:
13:17:3e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:45:23 2025 by rpki-client