Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: 9ANOgbwcA8d6HHhJJNPLbnhg8y+nH382em4Mrl8SrJc=
Subject key identifier: 05:F1:61:2E:35:48:5B:6A:E7:26:50:88:A0:AF:4F:F2:07:C9:FF:9F
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0199FDDA3E6BEB02C7E62CF33BFFE0DD603E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 111F
Signing time: Sun 19 Oct 2025 19:02:42 +0000
Manifest this update: Sun 19 Oct 2025 19:02:42 +0000
Manifest next update: Mon 20 Oct 2025 19:02:42 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: af2oFBCQ/DTyGLpIOL0UCYcDapnlgDi73919VPoQnq0=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:3e:6b:eb:02:c7:e6:2c:f3:3b:ff:e0:dd:60:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Oct 19 19:02:42 2025 GMT
Not After : Oct 20 19:02:42 2025 GMT
Subject: CN=05f1612e35485b6ae7265088a0af4ff207c9ff9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:67:20:1b:6c:d2:98:6b:0e:da:ba:97:aa:
56:42:08:1f:f6:2c:42:21:81:31:20:87:27:ea:0b:
96:93:9a:22:be:b7:3e:8e:aa:3d:4e:3e:e3:df:7b:
87:94:7a:fe:1a:f4:f6:a9:22:5e:3f:1c:dc:39:a7:
1a:ef:4b:a5:7b:83:d0:ec:67:67:dd:76:0c:f2:d6:
2c:d4:e9:ff:6d:62:12:4f:f4:82:1d:31:a3:5e:dc:
79:83:31:a9:65:31:51:6b:e4:ed:a0:98:9c:ab:a6:
2f:b6:a7:85:ad:2b:39:5e:83:17:16:44:e3:ab:0f:
65:84:06:2c:0a:5f:1a:80:79:35:2e:01:c4:95:2e:
b4:d9:d1:0d:4c:e5:a9:23:b3:13:ed:6e:b1:90:34:
e7:b2:6b:f6:4c:92:6c:97:c7:6f:f9:80:27:cd:ec:
da:e7:df:f1:07:c3:b7:51:db:b0:04:78:af:aa:c6:
c4:02:f6:07:97:6a:93:ab:b0:5d:39:ca:2b:17:2a:
5e:38:84:5f:97:ae:97:bd:9e:87:c6:02:4e:eb:0e:
a4:d3:ba:50:0b:93:8c:b4:08:ce:79:6d:78:e0:03:
ad:fc:91:cb:09:f3:21:42:2b:97:97:de:c7:d1:06:
c5:0c:a8:0d:c8:e2:87:a9:e2:a4:20:ec:7f:de:44:
3f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F1:61:2E:35:48:5B:6A:E7:26:50:88:A0:AF:4F:F2:07:C9:FF:9F
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:3b:8b:9e:3a:f5:81:4b:8a:5c:97:6f:74:f9:00:17:a1:1c:
90:bf:37:d8:d7:f6:ae:a3:df:4b:62:bf:3e:7d:68:e6:42:1b:
a2:0a:70:37:13:44:56:7f:da:59:7a:1b:db:f1:61:d3:1a:3b:
c4:bc:0e:be:0f:32:f1:ea:0b:ec:d6:a2:0a:09:7d:b5:1e:c0:
69:90:93:1f:ed:ae:08:80:b5:ec:c0:9f:b6:3a:9d:c2:d4:a6:
e2:5d:d3:1e:f6:ed:11:43:c4:97:18:ae:85:4a:aa:64:6f:8d:
e7:97:06:44:af:23:c6:ed:a7:85:c7:0c:37:9d:dd:f9:5b:e3:
44:71:3b:0e:18:ac:29:2f:6a:5c:49:f3:94:ea:d7:5e:85:86:
c1:5e:56:a9:8e:c6:dd:64:cf:33:f8:03:51:fd:1d:55:22:59:
54:d1:f5:b4:be:07:6e:2b:77:75:73:6e:9d:56:f2:dd:42:c5:
70:db:81:bf:4a:54:02:63:9d:06:5f:75:10:e4:88:89:8b:a3:
3c:5d:6c:f4:69:46:a4:37:29:3e:92:46:52:c2:57:cd:2a:89:
ef:c2:4e:d0:2d:53:3e:e3:61:c4:65:27:d3:44:a2:6e:4a:36:
13:1a:4a:09:a1:d0:2b:c9:7d:cf:14:ad:54:d3:2b:87:cb:2a:
e3:fd:17:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:16 2025 by rpki-client