Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
File: hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft (raw, json)
Hash identifier: o479+lbelEtZyNmNZnw5hH+YEjZkzMmCVV0qHtz2rOM=
Subject key identifier: E3:F5:20:40:4C:36:A1:D8:04:2E:34:48:1F:BF:0D:7F:1D:90:84:86
Authority key identifier: 85:02:8F:90:14:28:3B:34:9D:16:CA:FD:C9:4B:7F:5E:F1:53:0E:4D
Certificate issuer: /CN=85028f9014283b349d16cafdc94b7f5ef1530e4d
Certificate serial: 0198D7A96D5339CE76295A9BF11685168A74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
Manifest number: 03E1
Signing time: Sat 23 Aug 2025 16:01:01 +0000
Manifest this update: Sat 23 Aug 2025 16:01:01 +0000
Manifest next update: Sun 24 Aug 2025 16:01:01 +0000
Files and hashes: 1: hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl (hash: CZTfFqjZGP53g1+2c2i6XOZzjrs458pWcZtstL6SR2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:6d:53:39:ce:76:29:5a:9b:f1:16:85:16:8a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85028f9014283b349d16cafdc94b7f5ef1530e4d
Validity
Not Before: Aug 23 16:01:01 2025 GMT
Not After : Aug 24 16:01:01 2025 GMT
Subject: CN=e3f520404c36a1d8042e34481fbf0d7f1d908486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4a:7d:a3:75:9b:e5:9d:25:5a:a1:28:6e:26:
fa:07:b9:8c:bd:c9:b7:59:b7:50:ee:24:66:e7:53:
a2:bf:6f:64:cd:6f:a7:8f:87:b4:69:9e:31:31:19:
9f:52:33:3c:32:c8:fb:1b:ce:ed:c7:7b:98:d4:a3:
fc:bb:9c:f2:5e:70:77:21:a0:19:0e:26:7f:5c:1f:
61:13:4e:d8:1d:f6:20:03:a6:70:4a:de:df:19:7c:
1d:fe:4e:f8:31:ac:1d:16:fc:c1:01:08:4c:70:da:
03:41:18:ff:b7:2e:63:8c:f8:56:cd:66:6e:e9:e4:
ef:98:6c:ff:54:eb:45:bd:f5:96:a5:f0:81:2e:f0:
4a:29:23:93:c2:cc:ad:7e:70:bc:e0:f3:61:af:ae:
4a:d5:d3:83:a0:ea:9c:5a:d4:6e:81:63:f2:1c:54:
f8:15:2a:9c:64:39:44:f0:b4:8a:84:ce:c4:6a:c8:
89:63:56:86:9e:b4:76:99:ad:e3:cb:2f:cb:ad:19:
b0:c0:77:b5:2a:f7:96:f2:5f:6a:af:10:62:a4:28:
9e:86:74:42:67:ce:50:2b:c1:f8:dd:83:4c:83:25:
99:91:89:51:b3:82:c4:b9:03:a8:92:2e:45:7d:f6:
ba:7f:94:c5:e0:e0:c3:3c:fd:63:43:17:28:97:78:
f2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F5:20:40:4C:36:A1:D8:04:2E:34:48:1F:BF:0D:7F:1D:90:84:86
X509v3 Authority Key Identifier:
keyid:85:02:8F:90:14:28:3B:34:9D:16:CA:FD:C9:4B:7F:5E:F1:53:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:19:6f:66:8d:01:b4:db:0a:e0:77:a1:25:1c:74:16:c2:20:
7a:97:a5:37:f6:6b:9a:dc:5b:b1:e2:63:d5:5c:bf:f8:a0:bc:
26:96:a2:e2:fc:01:41:02:28:65:5b:38:2e:d4:22:66:80:bf:
ed:a8:bc:17:18:0d:34:00:52:01:5c:8f:8c:0e:26:9a:d8:00:
30:13:b7:06:5c:92:c8:bb:f6:1e:9b:60:ec:6d:b9:92:e8:6c:
ae:16:0b:3a:92:85:4d:f8:45:24:bf:3e:59:63:18:75:5b:a3:
34:88:d4:7c:a3:a8:95:26:72:be:44:27:91:ea:20:6c:67:10:
36:9c:f2:c7:a7:74:d4:75:c1:1d:3c:7d:43:fe:eb:69:50:56:
a0:10:d4:df:75:00:d1:15:fd:3d:e7:f5:ce:ae:cb:2d:38:bc:
1c:c4:13:93:12:73:91:9e:c9:dd:26:0f:16:4d:93:d1:c3:ea:
37:92:2c:31:c1:c9:66:ec:22:8a:02:49:76:fe:34:c3:b3:c4:
e9:fc:7a:ee:ac:2e:0f:1b:5f:2a:4f:70:3c:61:ee:50:6f:75:
c5:49:23:95:50:25:94:b3:2a:35:54:8c:4e:78:b7:ee:a0:bb:
af:df:0b:1d:96:9a:4b:24:0e:89:e4:0a:25:7f:87:96:c8:0a:
74:c8:4a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:42:40 2025 by rpki-client