Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
File: hGy8NY5qqP7tbgMmoECJt-XyqYk.mft (raw, json)
Hash identifier: SzT8EWSOYXXa7PgaFINHl58K+28Q1T9/3mKl5mpdWl0=
Subject key identifier: 93:EC:B6:DF:03:D4:F2:B8:27:4A:2D:51:93:3D:93:6A:3E:61:D6:FE
Authority key identifier: 84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
Certificate issuer: /CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Certificate serial: 0197B88F87AF9EBEB8249D1697B5425078C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
Manifest number: 0A17
Signing time: Sat 28 Jun 2025 22:01:43 +0000
Manifest this update: Sat 28 Jun 2025 22:01:43 +0000
Manifest next update: Sun 29 Jun 2025 22:01:43 +0000
Files and hashes: 1: hGy8NY5qqP7tbgMmoECJt-XyqYk.crl (hash: cRUOOj5Z01tMmECC596BKMZ5M1G1ImQuv+ScjXAJC6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:87:af:9e:be:b8:24:9d:16:97:b5:42:50:78:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Validity
Not Before: Jun 28 22:01:43 2025 GMT
Not After : Jun 29 22:01:43 2025 GMT
Subject: CN=93ecb6df03d4f2b8274a2d51933d936a3e61d6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:01:7d:bd:a8:b2:b8:10:c0:f0:c6:f0:15:
79:e6:fb:b2:2d:32:7a:96:df:6d:b9:23:87:18:92:
e5:e3:ac:1c:8c:8f:6e:e0:a2:a6:ea:73:e9:cb:ba:
93:0c:b4:80:9d:ca:47:ed:10:22:02:aa:fc:91:28:
ab:75:d8:d6:d0:64:b8:a3:67:96:e6:f4:51:61:55:
41:c8:cc:66:c2:85:99:6f:71:1b:00:85:6f:91:72:
50:c6:9c:f2:c8:8a:94:78:7c:9e:04:94:75:2d:4c:
db:aa:67:8f:89:fd:37:e8:c4:88:9d:e4:25:9c:02:
cf:59:5b:cf:73:cf:a0:b5:2b:c2:fb:5a:f0:cd:69:
b4:e2:17:b6:ad:c4:3d:53:93:fe:2a:d8:56:3a:5a:
37:de:55:5b:c3:6f:dd:e4:51:82:21:f7:04:02:2e:
7e:29:8e:76:17:3a:bf:3b:33:36:95:52:de:ba:99:
63:d4:7c:27:5f:63:2f:c6:15:f3:87:ae:23:49:36:
7b:9a:7d:a1:d2:8c:c9:ec:c1:de:68:40:f2:a9:35:
4a:3f:cb:39:c3:6e:9a:0a:77:ba:bb:6e:29:d7:d2:
1e:f7:c8:bf:fc:40:f3:38:4c:7c:c8:82:5f:e1:6e:
d4:c9:db:7b:95:64:95:31:13:2c:8b:93:18:4f:7a:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EC:B6:DF:03:D4:F2:B8:27:4A:2D:51:93:3D:93:6A:3E:61:D6:FE
X509v3 Authority Key Identifier:
keyid:84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:44:d7:df:70:93:9b:7a:22:93:73:5a:ef:18:3e:ce:c8:ff:
88:45:a0:b8:a5:e5:00:a8:b2:4f:f6:c2:89:a9:04:a4:5d:0e:
38:61:b3:bc:39:a3:7a:17:9d:93:2f:33:d2:8b:c0:6a:af:40:
7a:7b:d2:0b:84:14:2c:05:f9:e8:48:16:93:db:db:0a:10:a2:
1d:e8:e1:0d:78:1e:f1:ba:86:14:1a:08:dd:c7:09:67:9e:9a:
d2:ab:7c:fb:e5:27:a9:6e:8b:89:f4:2a:e9:cb:6a:b3:c9:82:
e9:fd:4d:be:51:58:19:6e:1f:2f:89:12:63:01:9b:56:ea:c7:
af:7f:a3:38:2c:41:33:e3:8a:51:43:3b:58:8b:19:aa:b9:51:
6f:00:1b:57:a0:ce:43:03:95:9b:8f:2b:67:e3:75:31:2b:34:
ae:55:95:4c:d4:4d:c4:41:15:31:b9:c7:37:03:ea:01:51:ca:
45:12:16:62:a1:c2:78:ec:19:f8:9b:4d:10:1f:1e:01:fe:59:
5d:58:9c:82:65:dc:54:3a:25:f6:75:de:51:b8:9d:a5:09:83:
e2:2b:7d:48:7d:af:12:97:64:e1:28:99:e8:18:61:e5:7f:d7:
45:be:d6:14:c1:c8:25:17:87:cf:7b:a8:4b:66:69:6e:a4:01:
a0:1f:c9:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:20:31 2025 by rpki-client