Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: YuUYbTmdTeEX45FUsn14xI8cWbc5t55ll7uF8Xjq8Gk=
Subject key identifier: 67:15:59:C0:44:51:C0:EF:ED:32:BA:0D:B7:93:47:B9:1B:5E:08:34
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 0198D4731CB275336FDB3A325FDC62BF4956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 0961
Signing time: Sat 23 Aug 2025 01:02:50 +0000
Manifest this update: Sat 23 Aug 2025 01:02:50 +0000
Manifest next update: Sun 24 Aug 2025 01:02:50 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: LJDJuu1pR3pE9qtfbSW3bCOz/WVIoUq4AC26JwgIoNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:1c:b2:75:33:6f:db:3a:32:5f:dc:62:bf:49:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Aug 23 01:02:50 2025 GMT
Not After : Aug 24 01:02:50 2025 GMT
Subject: CN=671559c04451c0efed32ba0db79347b91b5e0834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3e:ca:91:ab:c6:54:67:b4:b5:65:c9:bc:2b:
cf:5c:f3:72:4a:84:55:cf:1d:0a:1e:20:ea:67:87:
eb:07:54:32:b3:ac:5e:78:c1:36:23:fd:29:0e:df:
06:a8:66:e1:bb:0a:96:63:df:23:3d:15:f8:49:69:
3c:51:06:59:a5:a7:a6:e9:94:e0:80:fe:35:ff:17:
4b:a7:41:6d:f5:d8:f3:17:6f:53:11:e4:ed:6d:ef:
77:ba:de:ec:38:b6:94:ab:22:db:97:44:a1:62:18:
a4:4c:b7:65:2d:20:5d:a4:7d:4b:06:d9:13:4f:89:
f4:dc:a8:cf:08:65:46:f4:89:b9:29:03:f4:e6:49:
cb:0b:5e:00:75:d8:1d:c5:b2:be:72:db:05:93:9f:
e3:06:e3:9d:1f:41:0f:18:d7:61:6b:84:02:ba:eb:
10:7c:4e:e8:53:b6:14:09:22:50:3b:ad:93:cf:f4:
bd:f2:2e:51:46:29:eb:f6:e1:9a:9a:02:98:b4:cb:
eb:6f:17:2f:88:ea:cc:0a:31:09:88:b5:e3:de:3d:
06:c7:7d:53:48:48:ef:50:1c:96:f0:be:44:b6:e0:
45:17:11:21:7d:d7:9f:42:b4:1c:90:ed:5b:8d:64:
b6:7c:db:fd:a9:c6:ff:44:36:36:81:c2:43:0a:e6:
2a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:15:59:C0:44:51:C0:EF:ED:32:BA:0D:B7:93:47:B9:1B:5E:08:34
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e5:7d:b5:a2:6d:11:d0:38:ac:11:53:64:d3:01:c1:28:bd:
34:a0:40:1c:c0:3b:39:61:c6:51:7e:6b:9f:b2:1c:1f:52:7c:
be:f2:0c:82:d1:6e:20:92:25:01:e1:ee:f6:4f:69:4e:a3:45:
45:15:56:b1:6e:1a:d2:f7:cc:77:e3:d9:a6:12:4a:ad:f0:4c:
d1:6a:c6:86:18:4d:94:71:94:b3:dc:10:f2:6e:32:80:63:00:
dd:de:e0:f7:b1:cc:75:a2:dc:c3:32:e3:20:ca:73:3d:a6:84:
43:32:05:fd:d8:73:f8:9f:be:6d:71:62:3e:8e:49:56:9e:bb:
ec:7e:1d:8c:75:fd:41:b4:4b:7c:41:e0:ba:14:1e:e8:32:38:
d8:f9:7f:d5:f3:ef:05:f1:09:81:18:b7:5e:09:d6:72:c6:4c:
f8:62:f5:3d:0d:7b:2b:04:f9:d1:16:b8:f7:08:c0:90:2c:49:
61:06:10:f2:6d:8c:4e:5d:2f:cc:84:89:fa:d6:52:9d:f9:f3:
a8:80:be:d6:eb:8c:b7:ac:0e:6c:c2:dc:b2:a9:f5:f5:0a:53:
f4:75:66:28:12:42:fa:35:a6:7b:48:d9:ed:8d:3f:ae:8a:49:
59:05:5d:09:c1:90:75:9b:68:29:45:47:68:06:44:b7:0a:29:
83:2a:de:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:50 2025 by rpki-client