Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
File: HzjUsMuomcJPTjQHOE1tP6jVGl8.mft (raw, json)
Hash identifier: e+iQOzCKHjoAxAprtyN7DxkyZw4PolNrjKnSq98zSmw=
Subject key identifier: 77:B5:94:85:3F:69:3D:AD:8F:9B:9F:B7:E7:78:20:AB:32:C4:52:AC
Authority key identifier: 1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
Certificate issuer: /CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Certificate serial: 0198D4E0ABFCF55C3CFD59D05C43F1B2B830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
Manifest number: 0413
Signing time: Sat 23 Aug 2025 03:02:30 +0000
Manifest this update: Sat 23 Aug 2025 03:02:30 +0000
Manifest next update: Sun 24 Aug 2025 03:02:30 +0000
Files and hashes: 1: HzjUsMuomcJPTjQHOE1tP6jVGl8.crl (hash: mmYFGIcNaBIpf8AJ1B7ipx0SYcAwuZPghxxkFKJPZpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:ab:fc:f5:5c:3c:fd:59:d0:5c:43:f1:b2:b8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Validity
Not Before: Aug 23 03:02:30 2025 GMT
Not After : Aug 24 03:02:30 2025 GMT
Subject: CN=77b594853f693dad8f9b9fb7e77820ab32c452ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:ab:c7:a9:7a:11:f6:49:b3:f7:d7:24:78:
54:c7:aa:12:b7:44:85:3c:2d:36:b5:b2:32:4b:bd:
95:ca:cb:24:d1:9f:92:ec:c8:36:b6:a9:da:c5:e6:
53:5d:de:ac:d7:12:46:5b:ff:79:91:41:b3:e9:37:
6e:e3:18:16:08:e6:aa:4e:f2:1e:9b:29:30:37:dc:
d6:1f:a4:22:2c:0a:5a:62:1e:b1:d5:bc:2f:3a:c5:
d5:c7:bf:03:f3:54:f3:3b:15:ba:d2:40:80:08:59:
f4:f8:44:e9:58:de:09:56:ed:8a:e9:03:a4:5e:8d:
0d:d5:7d:43:4f:8f:ab:ec:81:cf:8c:97:ef:61:b6:
c1:92:31:4b:0c:22:67:7e:69:54:d3:dd:68:94:35:
f4:a0:c6:b4:1e:ef:7e:22:21:c7:90:89:e0:84:75:
f8:40:2b:47:bb:76:b9:6e:fb:4a:3b:0b:01:20:74:
ff:ff:7d:77:af:60:6e:65:02:0b:b9:25:b1:72:7a:
6b:f0:c7:d2:1c:51:b1:09:d3:f1:18:78:55:81:29:
4b:5a:c7:04:2a:d0:1e:c6:c7:73:b5:0d:92:33:09:
eb:be:d1:25:66:b4:ff:a0:fb:3b:50:a9:0d:0a:34:
7f:49:9c:3a:49:a9:86:37:96:80:89:3a:87:76:1d:
0c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B5:94:85:3F:69:3D:AD:8F:9B:9F:B7:E7:78:20:AB:32:C4:52:AC
X509v3 Authority Key Identifier:
keyid:1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:77:4d:97:5e:a9:1a:00:35:f7:1d:34:62:73:72:60:fa:e8:
0d:e5:4a:1b:72:ef:98:d0:0c:af:6a:a1:5f:7a:8e:88:5b:97:
4e:8d:58:e8:b0:d8:28:45:04:4b:38:61:91:49:15:8d:de:26:
ec:e5:af:ba:75:1c:3b:14:b5:2c:aa:53:d9:e0:fb:52:44:af:
e4:fb:29:f1:6f:7d:33:86:3d:55:0d:da:af:d8:b4:e7:29:d1:
98:2e:f3:03:14:46:a8:83:dc:6f:af:e2:c5:e2:be:0a:66:2a:
11:84:16:f7:d2:0e:9e:ab:cf:03:36:e7:4f:9c:8c:89:35:51:
77:49:a5:06:b5:4e:0e:cb:ca:90:41:ec:c9:bc:18:2b:bd:1d:
80:07:b5:34:4c:07:66:4f:7d:ff:a5:b4:bf:76:60:59:6d:e7:
81:71:fe:91:a6:44:ac:7f:8e:17:c3:45:12:f2:06:9c:a7:77:
b2:24:9b:24:d2:00:80:80:eb:88:d4:74:8a:b5:e8:86:40:2d:
d4:81:56:82:86:80:71:76:8d:8e:f8:9f:b5:e4:c8:44:e0:32:
e5:3d:a6:20:4a:83:32:88:b0:e8:2c:4f:5b:94:8f:f3:28:c4:
e3:82:ab:7a:f8:7b:6f:8f:26:08:5b:56:46:54:43:ea:e1:d4:
b5:53:22:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:33 2025 by rpki-client