Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
File: hbc7mIsBRCjrr2ehj30Zmbojxk0.mft (raw, json)
Hash identifier: 8MN1FnZ6s2dUbplEMpanHoBkSN7lc3SZk9YnKIdDLMw=
Subject key identifier: EA:D2:79:B5:52:D0:89:7B:AE:24:89:4C:CC:CE:1A:E7:3B:A6:66:59
Authority key identifier: 85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D
Certificate issuer: /CN=85b73b988b014428ebaf67a18f7d1999ba23c64d
Certificate serial: 0198D6601AEA9DC560E5EB9C18E90726B15D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
Manifest number: 1267
Signing time: Sat 23 Aug 2025 10:01:19 +0000
Manifest this update: Sat 23 Aug 2025 10:01:19 +0000
Manifest next update: Sun 24 Aug 2025 10:01:19 +0000
Files and hashes: 1: hbc7mIsBRCjrr2ehj30Zmbojxk0.crl (hash: RS8quCr0fsttS6ct0RsB4WsZRBrbX907/O9rHupdRdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:1a:ea:9d:c5:60:e5:eb:9c:18:e9:07:26:b1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b73b988b014428ebaf67a18f7d1999ba23c64d
Validity
Not Before: Aug 23 10:01:19 2025 GMT
Not After : Aug 24 10:01:19 2025 GMT
Subject: CN=ead279b552d0897bae24894cccce1ae73ba66659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5a:a5:42:46:ab:24:ef:d9:6f:d1:0f:da:77:
c9:0b:bd:51:35:35:e3:e8:0c:a7:9d:8e:e6:92:1a:
e8:3a:7e:07:be:26:9f:02:a5:e3:9a:f3:0b:40:3d:
d0:e3:2a:f0:a9:46:a8:15:4c:48:56:78:13:37:7a:
68:90:0c:36:e9:c5:53:0f:c4:2b:c6:1c:b4:42:0e:
25:85:6e:b1:fd:15:59:6f:8a:09:b9:d2:bf:ac:76:
52:89:ce:53:f9:57:39:2c:df:60:48:19:10:7b:b9:
33:4e:8f:76:81:1a:aa:79:bc:79:33:14:9d:3e:70:
59:91:59:f0:5c:e9:08:e2:b7:c1:f2:f5:fa:2b:b2:
68:35:c7:7b:2c:e2:6e:4b:fe:87:82:99:e0:92:77:
68:ac:95:f0:ca:38:d4:69:4b:ac:2a:68:b1:de:4b:
aa:6d:7f:86:ef:39:12:30:3a:3d:00:fe:87:64:98:
51:e8:5a:98:84:2f:9b:7f:08:5d:8e:4c:5d:91:c0:
5a:6e:4c:c4:2c:37:93:c1:d7:83:6a:52:32:f3:38:
25:41:80:2c:98:3f:7b:49:9b:9f:40:80:d1:d2:78:
3d:68:47:ec:8f:c2:4d:78:84:08:df:08:fc:21:f4:
0d:87:0e:5b:70:7d:f3:48:05:4f:f7:9f:31:c4:9b:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D2:79:B5:52:D0:89:7B:AE:24:89:4C:CC:CE:1A:E7:3B:A6:66:59
X509v3 Authority Key Identifier:
keyid:85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:a1:05:b0:b0:32:f2:76:6a:c4:07:a9:52:08:8a:4e:bb:44:
af:69:73:f7:68:59:17:97:e9:40:04:35:6f:8f:f5:20:60:36:
05:3c:7d:e9:dd:76:ec:16:55:71:d2:12:b4:aa:a3:24:d4:77:
19:43:d7:2b:78:2a:fa:bb:aa:ae:87:0e:91:40:f0:ea:24:db:
a4:75:b2:e1:6d:fa:45:e4:b8:20:e6:b7:36:01:6f:c9:8e:b9:
3d:fe:68:be:6d:01:f7:87:01:bb:0e:64:26:a2:ff:29:05:e7:
2a:93:78:a7:ff:6b:21:34:23:5b:81:d5:47:f9:ce:ed:9a:e0:
9d:6f:f4:c5:c8:64:88:10:59:ba:3c:8c:64:ae:af:d2:b3:08:
84:e9:9a:9f:d0:7a:0e:f3:ac:b4:03:aa:56:89:39:1b:e8:e7:
d0:88:d6:ca:39:c5:11:03:ec:8a:24:58:a9:d9:12:b8:92:fe:
8f:0d:d5:8c:7d:50:cb:3e:33:ad:d8:10:d0:49:20:bf:62:e9:
06:8a:08:2d:5d:94:f2:1f:5a:a4:a0:74:87:b2:aa:cd:ba:d6:
8a:49:2b:ee:b8:3a:89:e7:fc:da:ad:98:65:92:b2:02:88:c2:
ab:81:18:fa:80:7b:3d:2a:7b:bf:9b:a7:1b:ee:ca:60:68:e0:
e7:f6:14:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:27 2025 by rpki-client