Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
File: HzjUsMuomcJPTjQHOE1tP6jVGl8.mft (raw, json)
Hash identifier: mgYil6t0TaeI/6jPuR3Y85OD6R3XeU453XhYg7daV1w=
Subject key identifier: D5:0A:4E:D8:D1:B3:EC:1A:CE:DD:1C:D4:1F:07:B3:44:21:5C:5E:98
Authority key identifier: 1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
Certificate issuer: /CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Certificate serial: 0197B70E978E46E3BD5F9C613C99113FA170
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
Manifest number: 037F
Signing time: Sat 28 Jun 2025 15:01:16 +0000
Manifest this update: Sat 28 Jun 2025 15:01:16 +0000
Manifest next update: Sun 29 Jun 2025 15:01:16 +0000
Files and hashes: 1: HzjUsMuomcJPTjQHOE1tP6jVGl8.crl (hash: /vJpG72nSOpAbSfaXe2h9U41kepTBXI9CnC8UDnG43Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:97:8e:46:e3:bd:5f:9c:61:3c:99:11:3f:a1:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Validity
Not Before: Jun 28 15:01:16 2025 GMT
Not After : Jun 29 15:01:16 2025 GMT
Subject: CN=d50a4ed8d1b3ec1acedd1cd41f07b344215c5e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:59:4d:6e:91:69:ba:6e:83:f9:06:c7:24:1b:
e9:05:1c:ea:0f:f5:b4:30:ba:fa:68:16:62:04:5d:
fb:b2:8d:74:24:4a:0a:47:ce:0a:bb:90:20:c1:7c:
e6:bb:e6:2d:26:25:c1:a2:8d:c7:11:a9:3d:8b:8c:
50:b3:3f:55:f0:62:9a:fd:18:31:d5:63:2a:33:48:
c7:90:30:80:34:0a:5d:24:ea:ca:20:32:45:61:34:
b8:cb:c8:82:61:46:98:88:90:45:21:87:c9:e6:d2:
a1:c8:d3:dd:4e:2d:dc:31:c8:ba:5c:0c:d7:ed:3d:
cc:4e:ce:aa:7c:37:3a:fc:dc:de:4b:78:56:db:53:
65:b2:86:9e:49:02:bf:10:36:a1:82:38:50:0e:03:
f0:28:5a:a2:2e:95:15:c2:82:74:b3:aa:64:c7:79:
96:3e:0b:75:fd:94:c9:3a:5d:55:1d:8d:be:37:0c:
13:cd:69:68:1d:67:ef:29:50:71:a7:9d:e9:dc:22:
8c:0d:d4:a8:70:54:54:d3:e3:04:21:b2:fe:4b:89:
4b:a2:a6:22:4b:4e:ad:0f:63:22:78:50:83:f0:f7:
bd:6a:49:dd:7d:b1:c8:95:93:a7:67:a5:65:ac:1f:
f2:98:5e:2b:80:3d:2a:11:d7:d6:60:d5:7c:79:d3:
53:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0A:4E:D8:D1:B3:EC:1A:CE:DD:1C:D4:1F:07:B3:44:21:5C:5E:98
X509v3 Authority Key Identifier:
keyid:1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:1d:7e:2c:e4:a7:ed:13:0d:a0:cb:c3:87:f0:97:61:98:20:
ad:51:2e:25:fe:12:bd:3c:1a:a3:9c:fa:5d:24:3b:61:13:d1:
74:63:5f:07:94:dc:d2:01:fb:89:52:e5:42:1b:0f:6c:47:f2:
e7:e2:a3:c8:56:59:88:02:6e:20:c6:90:a0:c4:d2:bc:2c:2b:
84:f0:3b:65:81:a4:2e:b3:dd:d8:97:f3:a0:9c:41:79:58:75:
e3:0c:b7:a1:91:04:43:ad:7a:35:3b:05:9c:8e:cc:d0:8f:57:
86:7c:02:3a:9e:40:88:b1:2d:8c:d6:5d:c3:d8:11:8f:5b:87:
f8:86:e4:b9:97:92:3b:93:a6:06:f7:98:c4:92:f3:21:6b:b9:
a2:8c:1c:4f:68:c4:6b:5e:ad:7f:15:88:88:a1:7a:05:a1:a1:
b4:19:bf:81:dd:5b:06:d7:80:79:68:a0:f4:f7:51:d9:e1:a9:
bd:9e:48:e9:6a:66:09:3b:8c:43:31:74:9b:33:7b:24:96:28:
a0:12:b9:72:6c:59:59:5a:e3:0a:87:9e:45:47:f2:1e:9c:22:
ba:70:61:6b:e0:c1:be:63:41:d5:29:85:68:40:c3:6a:45:17:
d1:b1:c8:54:6f:c7:3f:fd:5f:59:3a:8c:4d:62:34:2d:1f:84:
2a:1a:e4:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:25 2025 by rpki-client