Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
File: hGy8NY5qqP7tbgMmoECJt-XyqYk.mft (raw, json)
Hash identifier: ESjlRVk6gUdJJQUM8aqdkl12TMISJ+ipzTmaMhZBHMU=
Subject key identifier: 13:3B:B7:91:51:CE:E6:18:F6:02:50:C0:73:C1:E9:35:8F:34:FD:0A
Authority key identifier: 84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
Certificate issuer: /CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Certificate serial: 0198D65FC91E521F8B1B4F122975F9661339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
Manifest number: 0AAB
Signing time: Sat 23 Aug 2025 10:00:58 +0000
Manifest this update: Sat 23 Aug 2025 10:00:58 +0000
Manifest next update: Sun 24 Aug 2025 10:00:58 +0000
Files and hashes: 1: hGy8NY5qqP7tbgMmoECJt-XyqYk.crl (hash: Q63M8B/k4ZhzUgRd6UB12y64uZuRYZvNRHJYQUYUNZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c9:1e:52:1f:8b:1b:4f:12:29:75:f9:66:13:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Validity
Not Before: Aug 23 10:00:58 2025 GMT
Not After : Aug 24 10:00:58 2025 GMT
Subject: CN=133bb79151cee618f60250c073c1e9358f34fd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ba:68:88:e1:1e:b4:cb:23:0d:54:22:62:fe:
14:f0:07:9c:c5:ca:69:c8:3f:2f:0b:74:f3:15:75:
10:27:80:5d:88:9c:4c:19:7d:58:d1:24:92:4f:4d:
e8:e6:c4:18:83:29:48:fa:56:e9:76:14:28:9b:6a:
ab:bb:af:57:4a:96:68:21:db:96:cc:23:7a:bf:9c:
ec:11:75:32:90:b4:cb:2b:b3:c4:34:6d:ba:84:85:
db:ce:a7:e4:f4:89:7d:30:a9:a6:b0:c9:b7:2d:27:
64:f5:51:ce:2e:14:c2:7f:47:05:d4:ea:d3:fd:3c:
df:79:72:7a:21:b3:9a:96:fc:59:28:13:7d:e5:02:
0d:c9:0f:0d:9d:fc:2c:50:82:d0:86:4c:83:82:83:
31:fc:ba:56:91:99:eb:18:0e:a1:90:73:da:8b:1b:
51:44:d2:4a:2f:80:16:99:cb:50:20:c3:9c:59:27:
4c:ca:0e:69:62:d7:90:e5:ce:44:31:fa:49:79:63:
fe:fc:bf:6c:0f:12:38:30:29:93:83:8f:c6:3c:c7:
a0:7b:78:d1:94:06:d4:c7:dd:2a:b4:ed:e6:3d:9c:
f1:6f:5e:fc:16:ac:b8:76:8b:42:98:82:2a:3e:7c:
4b:0c:9a:85:c4:1f:9c:ad:10:f2:92:03:1d:65:8b:
34:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3B:B7:91:51:CE:E6:18:F6:02:50:C0:73:C1:E9:35:8F:34:FD:0A
X509v3 Authority Key Identifier:
keyid:84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:15:7d:bc:a6:a4:a9:f4:3d:a7:1a:96:7e:d3:b1:e4:16:ad:
9c:dd:62:39:ab:ef:3b:f1:9f:a4:04:41:87:3b:ad:04:17:29:
8b:07:c2:6a:66:7d:fb:42:c0:7f:5e:6c:9c:f2:0c:d7:a8:83:
83:d7:fb:31:bc:bc:dc:50:e0:9b:e8:84:fb:e3:48:49:c9:65:
df:64:1e:1b:33:0d:78:b4:49:b3:36:30:a1:e8:66:9f:cc:85:
e6:92:b6:8c:9f:d0:b4:c4:47:0a:c5:a6:67:57:d8:8c:97:cb:
b3:7e:4e:87:03:34:3d:64:6f:c4:fb:db:2e:8d:92:f9:6e:b8:
c3:ef:e7:20:9b:a7:f3:bc:e6:e3:7e:04:84:da:24:ed:4b:01:
dc:82:63:11:c1:ca:ec:df:74:67:fd:1e:ee:ca:58:67:43:ff:
c3:79:ee:e1:11:78:b0:35:93:81:20:ea:40:0d:78:27:f4:7b:
17:6d:18:2f:83:63:71:23:ef:4c:2e:e5:13:14:4e:b2:9f:56:
0e:83:01:97:df:a3:a2:8b:32:bc:cd:48:18:5a:5a:d2:b1:4d:
8f:0f:87:99:a4:28:ba:9f:3f:78:4c:a2:9a:bd:5f:9a:7e:07:
12:ef:84:1b:b6:2e:2f:f6:c1:62:32:3e:ad:75:ee:f4:b0:e6:
ad:bc:2e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:57:25 2025 by rpki-client