Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: lzXSwmS1+Z4MKUnmsWseyLGhqRn8QiDJNtLjZAzSYbc=
Subject key identifier: FB:6C:DA:AF:87:33:A7:CD:43:D9:11:5E:E4:0F:5B:EB:CD:94:33:E4
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 0197B88F36FEB7572A500F4938556F1BA5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 08CE
Signing time: Sat 28 Jun 2025 22:01:22 +0000
Manifest this update: Sat 28 Jun 2025 22:01:22 +0000
Manifest next update: Sun 29 Jun 2025 22:01:22 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: opFZMsvYKhiRzpKUQOnIf43hs9SNBSy3jgyAtVz150w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:36:fe:b7:57:2a:50:0f:49:38:55:6f:1b:a5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Jun 28 22:01:22 2025 GMT
Not After : Jun 29 22:01:22 2025 GMT
Subject: CN=fb6cdaaf8733a7cd43d9115ee40f5bebcd9433e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4c:08:af:cd:46:46:20:58:d4:cc:2e:40:24:
7e:7d:01:19:3e:e4:ed:08:ec:6d:53:f3:66:f3:8f:
37:69:39:e6:16:5b:d7:80:2a:d5:13:70:d0:04:40:
e9:6a:6e:7f:ef:6f:51:09:1e:f4:25:ae:6e:75:32:
d8:33:2a:5e:d3:bf:66:5b:0d:8f:84:1d:71:32:e5:
ef:cf:a5:e8:b8:d4:ca:e9:4c:1b:9e:94:17:ef:57:
2f:56:ad:bc:0b:c2:c3:a0:6b:3f:59:de:65:45:dc:
07:ad:55:c9:94:92:13:77:96:1a:3a:3f:cd:5b:a1:
dd:85:f1:b6:eb:ce:3e:9a:b2:a4:35:d0:93:a9:ea:
35:59:45:12:24:b9:4b:fd:99:61:be:b0:f9:f6:62:
7a:62:21:a1:d0:5d:ae:96:59:03:0d:a7:ee:55:91:
c9:55:8e:de:0a:93:7d:6d:ab:89:64:5a:ce:e6:f1:
d5:14:b0:5e:f1:f3:11:cf:af:16:72:ed:41:fc:5e:
18:06:fa:53:3c:c5:c2:bf:49:fe:ef:c3:3a:81:d2:
1b:06:cd:88:a6:e0:ca:18:d1:1f:e6:76:68:76:b9:
7b:40:21:28:8b:68:d6:9f:4f:96:8f:bc:c2:b7:c1:
a8:6f:f3:10:e1:9e:10:9b:58:4d:6d:f9:cd:1a:f4:
22:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6C:DA:AF:87:33:A7:CD:43:D9:11:5E:E4:0F:5B:EB:CD:94:33:E4
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9e:e9:01:4e:a8:88:5b:e6:f4:06:09:79:b5:11:09:72:e1:
bd:38:98:3c:e5:87:3b:49:24:60:a1:4a:08:70:b7:ce:05:6a:
e2:0b:0a:4f:4a:14:ae:12:e5:9e:ad:92:01:9d:55:3b:cb:b8:
de:4b:e2:94:a5:20:19:55:53:d9:2a:3b:e3:43:cb:a0:2a:fa:
1b:63:4b:7e:de:e8:5e:33:b2:3e:9a:70:3e:1c:51:7a:bc:db:
b0:79:7a:af:8d:ef:b1:6d:c3:18:af:6b:60:10:9a:74:df:3f:
36:98:5e:c4:57:08:33:54:09:56:25:90:13:0e:c5:3d:91:53:
e4:93:1c:43:1e:68:e0:b9:94:a7:14:ae:c5:2f:fd:10:64:b4:
15:1b:c2:76:92:49:a4:3c:c4:56:e0:0d:73:7c:8a:c4:28:da:
ef:80:c5:2e:05:84:76:64:4f:1e:db:dc:64:cc:d9:f7:7c:50:
4a:7b:c7:b7:63:40:90:51:75:23:ab:9c:0a:24:fa:55:3a:64:
4f:5a:8b:bd:13:7f:cc:20:4f:3a:b5:0d:eb:21:25:8f:28:fb:
56:09:3e:1e:bb:06:cf:a5:bc:d6:5c:a9:a3:2a:55:6d:93:0e:
7c:81:e5:2a:f5:ee:42:07:61:3c:bb:59:bd:53:3c:fa:fc:2b:
f8:a4:8f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:40 2025 by rpki-client