Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
File: ihz-evMMHHJdI25KL8Kv1wn65kQ.mft (raw, json)
Hash identifier: C7Rl/M8gZG0wy75kPK81HdEsvMM6brxFsF6hVzBKtvI=
Subject key identifier: 54:E2:44:81:E1:A9:01:CA:11:6C:3B:A8:C3:4F:9C:C4:60:EE:DB:CE
Authority key identifier: 8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44
Certificate issuer: /CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
Certificate serial: 0199FDD9F9DF61979B73133B8E6DCF0C5680
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
Manifest number: 0AA1
Signing time: Sun 19 Oct 2025 19:02:24 +0000
Manifest this update: Sun 19 Oct 2025 19:02:24 +0000
Manifest next update: Mon 20 Oct 2025 19:02:24 +0000
Files and hashes: 1: ihz-evMMHHJdI25KL8Kv1wn65kQ.crl (hash: AULoajHH/GpQMi4zY5ErCG05eZu9TKT4PWrsPO2Lc8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:f9:df:61:97:9b:73:13:3b:8e:6d:cf:0c:56:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
Validity
Not Before: Oct 19 19:02:24 2025 GMT
Not After : Oct 20 19:02:24 2025 GMT
Subject: CN=54e24481e1a901ca116c3ba8c34f9cc460eedbce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:85:c2:4e:dd:f5:77:09:80:cc:2f:62:03:
fe:74:4c:04:60:13:88:ea:91:27:b3:76:08:56:d1:
97:a6:dd:25:3d:31:de:56:87:b2:77:ec:0f:42:69:
bf:07:e5:37:fe:90:12:d3:6a:f7:24:ca:ec:e9:c4:
bb:8c:5d:9d:03:d9:7e:02:5d:4d:05:9d:9f:37:6f:
8f:87:01:78:81:20:2c:b5:b5:44:08:ff:4f:28:1a:
65:5d:12:92:43:e5:40:f1:ef:7d:cd:b1:46:4e:0e:
c5:ed:d2:be:8d:68:e7:c8:ed:7f:b9:f8:ac:81:63:
a8:02:9c:07:1c:5f:a8:d1:61:e1:c4:41:a8:2a:bd:
62:fc:4b:94:5b:6f:78:a1:5e:4a:bf:87:c6:da:78:
8d:9c:66:a6:6e:c2:16:de:34:4a:cc:85:b5:d8:3c:
98:80:ca:6b:ba:ec:2c:1d:12:d7:07:d3:0a:25:5f:
a3:b4:5e:98:41:ab:15:c1:be:77:bd:6d:2b:c6:36:
61:f6:03:f5:25:0c:2d:36:da:0c:be:2e:0e:f1:ea:
1d:56:ba:bc:95:3d:c6:e4:55:53:43:2a:46:80:e6:
30:1f:bc:ab:42:4c:cc:e1:1e:53:48:b5:28:be:75:
5e:c1:62:f2:3f:08:c6:76:ff:33:6a:9e:66:da:87:
28:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E2:44:81:E1:A9:01:CA:11:6C:3B:A8:C3:4F:9C:C4:60:EE:DB:CE
X509v3 Authority Key Identifier:
keyid:8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:df:3f:61:21:26:e7:a6:34:76:2a:f5:c3:bb:24:a8:9a:b6:
6c:57:5d:e1:61:fd:15:91:ff:e7:3a:fd:cc:eb:1c:96:26:c3:
29:75:02:db:ca:7d:04:23:31:a9:8f:b9:d6:de:87:9b:ab:86:
56:f7:a2:b8:7d:a0:b3:1d:50:b1:63:41:02:78:36:14:cf:16:
9b:14:e0:9d:82:a9:c3:43:5f:ca:2e:0e:72:0a:58:35:35:b0:
69:96:bd:6a:df:61:b6:66:4a:9d:22:15:10:c7:2a:96:86:13:
8c:4c:59:96:ef:89:2f:2d:a9:0e:20:67:d3:cf:61:3d:61:2e:
2c:35:67:e7:c0:fc:28:79:18:22:e7:15:3a:8c:f9:52:8a:03:
49:31:8a:72:fa:5d:1b:ad:ad:24:c1:90:62:91:24:96:a7:7a:
c7:c0:55:08:91:ed:a3:ad:ae:7b:5b:0b:24:20:c7:78:ea:92:
4f:0c:25:3d:b2:be:36:07:e0:12:05:7b:ce:d9:b6:0f:47:3a:
93:6f:d1:19:04:e5:11:2c:31:a4:20:f9:e1:1e:0d:46:a5:af:
f9:3d:c6:3e:05:3a:c1:77:fa:48:7c:a3:fd:f3:78:42:15:05:
23:a1:8b:f8:71:05:e7:1e:17:12:f4:e6:4a:50:cf:9f:94:f1:
e7:78:db:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:37:33 2025 by rpki-client