Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
File: hfR7ZaUlMyab0hmBOlIDr92eXb4.mft (raw, json)
Hash identifier: JM3SV5qMX9T6jZ9vxxTKDlCXBnYs7fMDtGFQwQTHUeg=
Subject key identifier: 2D:15:7C:AC:EA:AC:E3:72:AD:F5:4D:80:A5:59:6B:51:23:27:E6:91
Authority key identifier: 85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
Certificate issuer: /CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Certificate serial: 0197B70E860BF0C6A50BBE1B9E57253BD235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
Manifest number: 11A7
Signing time: Sat 28 Jun 2025 15:01:11 +0000
Manifest this update: Sat 28 Jun 2025 15:01:11 +0000
Manifest next update: Sun 29 Jun 2025 15:01:11 +0000
Files and hashes: 1: hfR7ZaUlMyab0hmBOlIDr92eXb4.crl (hash: g6GDqCoA2XzDmLPJ2wym71b/KBCoELNHm9V4IQlKYqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:86:0b:f0:c6:a5:0b:be:1b:9e:57:25:3b:d2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Validity
Not Before: Jun 28 15:01:11 2025 GMT
Not After : Jun 29 15:01:11 2025 GMT
Subject: CN=2d157caceaace372adf54d80a5596b512327e691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:4f:10:8d:65:e7:62:24:fa:19:d0:c5:b5:
49:34:5e:1f:1b:0e:19:55:37:80:05:22:05:e4:77:
94:6b:fd:e7:6a:d7:bf:77:18:df:76:31:56:04:9b:
0c:67:89:41:94:ed:31:78:b3:74:d0:e3:fd:37:b7:
64:6f:73:5c:94:46:b8:c3:ff:e0:62:9a:83:e3:c8:
f5:77:67:16:f0:b1:e9:f3:d7:9d:c9:a1:db:81:14:
8e:fa:2e:06:70:aa:3b:8b:52:cf:c2:28:e8:91:31:
e4:09:56:0a:69:c3:c2:67:6e:1b:15:3f:0a:49:a3:
fb:ab:68:42:bf:26:d7:c0:5e:ed:64:98:00:19:6b:
f2:95:01:17:36:42:18:e8:a4:4d:3a:cb:bf:e1:97:
3a:86:4e:d4:63:4a:b0:4e:1f:81:1e:44:ac:ca:1d:
48:5c:ca:9a:13:79:76:50:88:5a:b5:75:07:69:57:
9b:f0:c8:ef:4b:cd:0d:3e:06:56:03:cd:ee:a3:1e:
80:79:6a:a8:62:5e:cf:af:d5:a9:b7:9e:35:3e:a0:
5a:b1:87:9f:b3:76:15:7a:0c:22:db:2c:9e:a9:34:
ad:e5:bb:c4:6a:64:af:bb:e5:62:a8:db:99:98:e7:
03:42:27:db:0f:eb:b9:b8:00:37:2b:53:0f:53:5a:
b8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:15:7C:AC:EA:AC:E3:72:AD:F5:4D:80:A5:59:6B:51:23:27:E6:91
X509v3 Authority Key Identifier:
keyid:85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:e7:fe:a2:cf:56:10:d8:a8:0f:ca:1d:f1:03:36:6e:23:b9:
ed:cb:6f:a2:a9:e6:d8:5e:db:b9:a4:08:bf:88:86:1f:0f:6f:
73:3b:ef:1d:f3:e0:c5:b0:a1:76:fb:b5:7b:78:1d:87:b7:28:
e6:35:42:9f:c4:7c:c7:c3:4e:b9:51:0c:e5:fe:5b:94:43:30:
c6:16:3b:65:a8:69:34:32:98:fa:31:0c:d8:dc:4b:77:0d:bd:
29:c4:8e:62:5e:bb:11:73:aa:b6:80:dc:d2:3b:b9:f9:1d:48:
f6:40:5a:1f:44:e1:3c:76:49:45:38:7a:ea:c8:d0:b7:ad:0c:
7f:cb:99:6f:81:98:34:11:15:66:f3:b5:10:7e:05:2c:5d:01:
58:9e:27:ca:b4:6d:bb:39:9d:14:ae:04:c7:61:aa:f6:d2:4a:
8a:d6:6e:6a:a2:4f:31:48:9b:43:22:14:8d:8d:b5:10:7f:9d:
f1:24:42:c2:40:d2:c4:62:6e:f8:7f:82:42:4e:4a:2e:6d:e7:
85:2f:95:aa:a6:8b:32:d9:df:f4:c3:1f:af:e8:2f:9e:0c:74:
ef:e2:e2:47:aa:74:fe:56:2d:60:f3:ca:13:27:70:b6:92:49:
72:9a:8b:f8:4e:e5:bd:26:d8:d7:21:d7:80:70:d9:1b:ec:c4:
c6:ef:b4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:35 2025 by rpki-client