Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json)
Hash identifier: Gx6YAuaPbP0OJZO/5ywEY4Ztzv+tBLFnkpDA88BFjFw=
Subject key identifier: 1A:ED:65:8F:A6:E6:FA:68:E4:43:5B:88:29:5E:8E:4D:5C:AC:9C:37
Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Certificate serial: 0198D54EBE185D4C68DE2CDFADE7FEE4B4F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
Manifest number: 08
Signing time: Sat 23 Aug 2025 05:02:44 +0000
Manifest this update: Sat 23 Aug 2025 05:02:44 +0000
Manifest next update: Sun 24 Aug 2025 05:02:44 +0000
Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: c4lgVYIBh/czxqusglNlLPCcuk/3TJMNOkR2Ls0QVhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:be:18:5d:4c:68:de:2c:df:ad:e7:fe:e4:b4:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Validity
Not Before: Aug 23 05:02:44 2025 GMT
Not After : Aug 24 05:02:44 2025 GMT
Subject: CN=1aed658fa6e6fa68e4435b88295e8e4d5cac9c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8b:d5:47:f0:0f:63:e5:b5:0e:85:4d:d9:d7:
fd:0e:d3:8f:30:b3:00:81:86:2c:b8:64:e5:9f:fe:
17:72:ce:63:14:e6:aa:30:76:f2:9b:2d:f4:33:ee:
16:13:1e:37:7a:f8:ea:40:63:ba:eb:76:08:ef:cc:
c5:5d:a6:0f:fb:f5:16:10:41:1f:57:a8:f1:16:7a:
66:19:5c:e7:5c:41:1e:00:8f:95:d4:e9:c8:99:77:
29:7b:07:ba:d7:ed:fe:b0:3d:8c:e5:dd:ec:ab:9c:
45:eb:64:ef:cc:81:bb:50:e1:f1:94:93:51:ea:1e:
9b:db:3c:08:1c:7b:66:87:97:9c:4e:bf:9d:ca:a8:
c9:99:2a:f5:c8:da:6f:47:cd:9b:af:4b:76:86:27:
13:39:88:c9:43:56:10:90:f2:d8:4f:9d:85:d7:9e:
88:6e:11:be:ff:a8:65:95:83:51:d7:f7:95:a9:8b:
3f:8d:cf:66:c8:dc:55:ea:4a:4a:70:6e:b0:c0:ac:
95:63:ad:33:40:aa:dc:53:22:18:53:ac:89:12:4e:
5c:68:20:85:4b:3e:1b:16:53:21:ae:34:ce:c2:53:
5a:98:69:6a:12:c7:99:27:74:1f:db:d5:91:33:b9:
ee:41:1b:4a:32:2d:97:dd:ae:dd:95:89:b4:a2:12:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:ED:65:8F:A6:E6:FA:68:E4:43:5B:88:29:5E:8E:4D:5C:AC:9C:37
X509v3 Authority Key Identifier:
keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:45:43:51:cd:ea:d3:ea:1d:d1:f0:d9:2c:59:a1:f3:1b:f9:
40:4e:d3:c3:4b:5e:41:46:bd:0c:61:81:1a:17:50:e0:37:61:
72:a8:85:74:6f:ae:bb:27:4c:5b:9c:b6:23:ec:cf:63:d8:fa:
11:67:63:40:d7:f6:c9:8e:46:41:99:28:b7:ce:f9:d4:72:f7:
15:c9:13:5e:f7:c3:aa:42:26:62:ec:46:d6:a3:b9:49:4a:8d:
bd:5e:c6:ae:d6:81:e6:40:e0:ef:45:98:cf:82:c4:c2:bf:1c:
7e:90:e7:d2:ca:1c:eb:90:5d:2d:62:d1:a0:13:a7:85:87:f1:
5c:ca:3d:30:7f:97:f8:e3:69:44:93:ca:6f:8c:69:27:59:9e:
26:a9:69:be:2b:9d:04:ed:33:91:a1:a9:54:00:2e:d6:1b:58:
00:78:e7:b0:52:77:df:17:13:88:47:1a:24:97:14:36:b3:32:
b1:d4:18:59:f8:61:f7:5e:cf:ed:d8:f0:6d:f9:05:2f:46:29:
55:d3:47:38:09:0c:c1:1b:cc:b4:3d:d9:7a:5b:7d:ab:c6:d0:
81:92:64:17:78:a1:1c:85:0a:4c:d1:25:e3:2d:32:56:fe:0a:
2f:64:d5:a7:9f:66:5f:9a:e9:87:64:0e:17:8a:60:d5:02:6c:
1a:00:0f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:35 2025 by rpki-client