Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
File: hfR7ZaUlMyab0hmBOlIDr92eXb4.mft (raw, json)
Hash identifier: TriD61fjWu31Ml5aTmglgc0/5sTVARlUxXJzaJUqD0Q=
Subject key identifier: AD:50:DF:1B:76:28:6B:DE:E6:44:84:3F:90:BF:A2:6C:D0:4C:36:47
Authority key identifier: 85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
Certificate issuer: /CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Certificate serial: 0199FC583DAC5CF1164C75798C15C661E7F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
Manifest number: 12D4
Signing time: Sun 19 Oct 2025 12:01:05 +0000
Manifest this update: Sun 19 Oct 2025 12:01:05 +0000
Manifest next update: Mon 20 Oct 2025 12:01:05 +0000
Files and hashes: 1: hfR7ZaUlMyab0hmBOlIDr92eXb4.crl (hash: tDWVFI3T3RuB28n0/SV/WxrNya5T26r8ySDMMGg7rjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:3d:ac:5c:f1:16:4c:75:79:8c:15:c6:61:e7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Validity
Not Before: Oct 19 12:01:05 2025 GMT
Not After : Oct 20 12:01:05 2025 GMT
Subject: CN=ad50df1b76286bdee644843f90bfa26cd04c3647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fb:f9:dc:7f:87:18:d9:00:37:50:6d:1c:d5:
3e:dd:b0:35:0a:89:cf:e2:23:ad:8b:ba:7e:e1:c7:
7f:fb:ad:d6:82:3e:fa:9a:a7:0c:a0:e7:d4:1a:c3:
90:af:68:df:5a:fd:5f:28:21:51:e1:32:2a:c4:f5:
59:7f:e2:2d:af:17:9d:b6:75:36:68:5e:98:a5:33:
11:82:67:40:dc:91:78:6c:2a:c8:57:49:72:94:95:
35:6c:03:20:ed:79:86:14:d8:85:f4:e5:51:b7:31:
7e:71:b0:be:f2:f5:1d:cb:31:fc:27:52:a2:5c:a1:
04:b3:c0:23:89:85:ad:f0:15:f9:87:d2:fd:81:0d:
10:ab:63:b5:c4:0a:94:5d:2e:ed:c5:5a:c2:0c:b5:
90:aa:30:50:02:57:c2:d1:dc:ae:21:40:4f:a8:f1:
d9:a4:c2:72:db:b8:b9:a9:05:27:04:cb:49:13:79:
d5:29:77:13:91:42:d6:29:cd:76:ad:af:5c:90:9a:
ed:6c:69:c2:62:ee:e6:ab:40:a7:ed:f5:37:1e:dd:
5c:87:a2:92:69:44:a9:50:d6:cd:c6:a6:b0:22:85:
88:a1:ed:b6:4b:a9:03:82:c9:77:1b:84:60:c7:03:
bc:4b:43:a9:61:a4:cd:4e:58:c3:3e:d8:fa:67:15:
61:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:50:DF:1B:76:28:6B:DE:E6:44:84:3F:90:BF:A2:6C:D0:4C:36:47
X509v3 Authority Key Identifier:
keyid:85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:16:8a:b6:fd:a3:72:dc:02:32:e5:00:ac:8c:64:80:be:23:
55:f5:b0:a5:82:42:97:c6:03:2e:4a:21:1a:b3:df:23:f2:e3:
c0:0e:89:d7:53:e4:f8:c4:43:e9:81:d6:e9:5d:47:c3:11:9e:
b0:f6:04:a6:ce:cf:cf:c8:db:d1:d6:25:a2:05:44:12:c6:70:
cc:97:af:f7:87:22:5b:3a:0c:2e:a6:e6:8c:0b:1f:89:12:c6:
d8:3d:fe:aa:02:0f:be:33:8e:03:ad:5c:13:a5:92:2a:7c:4b:
d8:b6:94:63:c7:6f:d0:3e:24:bf:43:0d:3f:a3:ec:df:cb:f5:
e7:bc:e6:7d:57:cf:ba:08:6d:cf:0a:80:6b:21:41:0c:2f:9d:
a2:96:db:2f:86:46:94:bb:58:aa:64:89:a7:f1:c3:2c:e1:c8:
4c:8a:d1:89:4b:d8:fc:81:0e:e1:5b:64:e6:8b:1a:78:a4:c0:
73:e1:92:12:8e:e8:c9:bb:9d:36:a0:a3:9b:55:fc:bb:ae:fc:
87:ba:0d:ca:cf:c6:94:a4:80:58:9e:9f:bc:18:4f:26:5b:71:
9a:45:e0:c2:65:73:17:40:f9:d1:17:71:2e:ac:83:34:c2:fd:
a1:85:e3:b0:49:ff:1f:7b:3b:26:cb:58:a4:63:1f:0f:92:ec:
71:6b:c3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:38 2025 by rpki-client