Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
File: hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft (raw, json)
Hash identifier: in5vdO9VtBr0yi2D1XvVitDgB5tmnWdDdeB3WHz87Ao=
Subject key identifier: BC:7A:52:70:60:D7:3F:47:6D:35:B5:8F:56:7E:C0:D4:EE:0B:50:0D
Authority key identifier: 86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
Certificate issuer: /CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Certificate serial: 0198D660868F1E752CD3CC6386BDDE53CED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
Manifest number: 0A3A
Signing time: Sat 23 Aug 2025 10:01:46 +0000
Manifest this update: Sat 23 Aug 2025 10:01:46 +0000
Manifest next update: Sun 24 Aug 2025 10:01:46 +0000
Files and hashes: 1: hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl (hash: FeycWvgGbJdQmnKi14EM3o0LRMNYNflz1bB/eK1YDuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:86:8f:1e:75:2c:d3:cc:63:86:bd:de:53:ce:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Validity
Not Before: Aug 23 10:01:46 2025 GMT
Not After : Aug 24 10:01:46 2025 GMT
Subject: CN=bc7a527060d73f476d35b58f567ec0d4ee0b500d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:b0:62:75:6a:8a:39:e3:c8:5d:46:0f:53:
95:cd:8c:22:e2:40:1d:55:5b:22:dc:69:a8:10:9a:
11:84:ed:59:a9:8a:46:9b:cd:e6:1f:b8:61:09:4e:
6d:33:3c:ad:3a:02:ab:03:95:6f:db:f7:0b:b6:aa:
48:24:aa:c1:40:02:98:1b:41:e2:63:3f:51:a4:ae:
aa:f9:94:63:90:4c:2b:8f:19:86:d3:f5:a7:aa:c0:
47:f2:b7:9c:3f:26:56:44:dc:b5:b1:48:6f:e0:75:
ee:1d:56:e4:f1:e6:50:84:12:76:dd:18:db:4c:75:
30:c6:17:0a:9d:51:53:73:d6:0d:ad:05:16:0d:06:
51:1f:06:72:11:55:d4:55:ed:bd:7d:f5:27:c4:09:
84:e8:3d:89:da:27:86:08:35:ec:da:e5:9e:15:09:
57:5b:36:a1:c0:1c:cc:85:1e:71:95:78:95:b1:7e:
ec:06:a2:9a:0e:21:84:f9:bc:4f:11:48:f9:cf:27:
6c:47:08:b8:22:48:72:07:84:3a:46:23:36:f7:5f:
38:94:67:78:9a:49:5e:51:59:ee:eb:41:54:98:a5:
b3:c8:f6:d0:16:ee:4f:24:51:01:47:8f:b5:08:af:
e2:06:91:e4:08:09:5a:f0:20:d5:a2:95:e6:af:a8:
66:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7A:52:70:60:D7:3F:47:6D:35:B5:8F:56:7E:C0:D4:EE:0B:50:0D
X509v3 Authority Key Identifier:
keyid:86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3e:5d:41:40:0f:c5:c7:8c:a9:b7:41:81:1c:7d:a2:19:01:
08:c8:05:14:23:bb:f7:fa:0d:8d:15:41:be:7f:4a:cc:e1:58:
76:67:a8:bb:81:98:69:0d:5d:72:e9:77:62:2f:b6:43:dd:2f:
db:1c:af:b1:b2:0b:91:22:59:da:3b:12:e0:b8:fb:02:b7:53:
d4:16:4d:b4:6e:db:37:51:a8:59:a0:77:a8:85:39:a2:50:70:
d1:8b:32:d9:35:2f:b4:15:35:70:12:68:20:56:0c:86:d4:47:
23:d3:fe:85:8e:2e:a5:48:f5:6a:ad:7f:e3:f7:39:1a:9d:5a:
5d:84:db:50:09:fb:12:be:1b:40:2f:70:b0:83:63:55:da:ad:
df:24:35:d8:a8:99:59:15:66:6d:34:c0:1b:65:e0:9f:f6:16:
fd:77:85:57:34:85:be:37:0c:61:1b:90:0b:22:d5:0c:3d:1a:
f2:59:e8:7e:69:eb:b5:48:24:ac:53:e0:de:d6:0d:b5:42:dd:
b2:30:d8:8f:b7:6d:91:5b:54:18:f1:a7:62:c9:28:98:c9:33:
c9:08:71:40:f0:fd:d0:8a:15:a0:4b:6e:99:a8:c4:8c:73:a9:
78:c9:2c:ba:5f:a4:ec:af:53:45:bc:d8:02:fa:3e:b8:5e:57:
91:dc:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:03:46 2025 by rpki-client