Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
File: Hekyc87VkolMnTVRSLsfrMEPcqI.mft (raw, json)
Hash identifier: CcwN34EfY8F9WRpJWeAI2tdNu3JRTQeEvnIjugXfxvA=
Subject key identifier: 72:CF:FF:6F:21:43:09:B4:16:6E:2F:AD:09:40:10:C7:26:22:8B:FC
Authority key identifier: 1D:E9:32:73:CE:D5:92:89:4C:9D:35:51:48:BB:1F:AC:C1:0F:72:A2
Certificate issuer: /CN=1de93273ced592894c9d355148bb1facc10f72a2
Certificate serial: 0199FDD9BACB93D6F9270028E69401C843BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
Manifest number: 12C5
Signing time: Sun 19 Oct 2025 19:02:08 +0000
Manifest this update: Sun 19 Oct 2025 19:02:08 +0000
Manifest next update: Mon 20 Oct 2025 19:02:08 +0000
Files and hashes: 1: Hekyc87VkolMnTVRSLsfrMEPcqI.crl (hash: RTJ9qsCLJPNuQ5dcPmJ1XcizkfQVG35sr0VrdyrcEww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:ba:cb:93:d6:f9:27:00:28:e6:94:01:c8:43:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de93273ced592894c9d355148bb1facc10f72a2
Validity
Not Before: Oct 19 19:02:08 2025 GMT
Not After : Oct 20 19:02:08 2025 GMT
Subject: CN=72cfff6f214309b4166e2fad094010c726228bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ab:82:56:02:dc:19:18:36:30:2b:d7:30:42:
9b:50:f2:9c:97:b1:bb:63:e5:cb:32:fa:3c:e3:66:
76:7f:cc:8a:ab:41:74:e7:9f:ba:82:7c:7c:c8:bd:
03:79:8c:3d:af:02:65:2d:37:db:0c:52:90:6c:5b:
be:1d:de:0a:b0:66:d0:e0:47:41:7a:b6:bb:3c:4e:
e1:75:14:c2:07:40:69:b0:a7:39:12:8f:dd:9b:c3:
ef:b2:2b:5e:81:39:33:b9:d0:1a:a0:1a:5a:e8:cb:
41:b0:4d:cd:23:01:17:97:9a:ea:85:3c:4b:82:2c:
61:c0:fb:5d:24:03:05:52:11:47:40:c0:11:a9:4f:
02:db:0e:19:87:af:87:f2:45:6c:b9:ca:7a:87:f2:
a2:d6:3a:28:fd:fa:4a:34:c2:03:3a:05:4f:ab:25:
7c:32:55:18:1d:35:3f:03:4d:95:f3:67:85:00:7b:
87:f6:78:52:af:e3:0c:d3:76:18:81:dc:e2:fc:5e:
9e:cc:a9:67:6a:73:96:bc:10:bc:f0:4a:e2:fd:4f:
d3:c1:e8:4d:da:d6:47:7e:e5:97:5c:4b:61:c7:82:
db:dc:42:6d:f9:98:06:5c:65:11:10:c1:ce:53:dc:
83:ca:4d:f1:16:2c:d0:74:2a:d2:d8:16:d5:ae:53:
ee:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CF:FF:6F:21:43:09:B4:16:6E:2F:AD:09:40:10:C7:26:22:8B:FC
X509v3 Authority Key Identifier:
keyid:1D:E9:32:73:CE:D5:92:89:4C:9D:35:51:48:BB:1F:AC:C1:0F:72:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e5:22:d0:2c:bd:57:7e:24:b5:98:89:4f:01:f2:b2:e1:83:
f6:5c:ab:a7:e8:39:34:7b:09:21:45:76:96:7f:f3:ef:fa:72:
85:02:c4:e6:22:39:ee:e6:7c:60:8e:31:06:c1:80:47:7e:8a:
38:18:74:76:91:c2:9e:70:e5:d4:78:1f:ec:71:7f:fe:65:80:
df:27:44:b3:04:21:67:ba:ae:d5:37:c9:4c:66:5e:70:77:8b:
fe:e5:af:4a:d6:9f:3a:d2:41:99:f2:78:8d:b3:d1:b9:1d:89:
1e:a8:84:f9:91:39:31:f9:8f:22:4a:f7:13:a0:da:2b:0f:20:
8c:da:06:2c:25:a6:14:b7:bb:24:29:67:c3:f6:71:65:1d:6b:
08:05:74:fd:17:6f:d3:b2:e9:87:39:83:59:d1:af:56:14:32:
31:10:5d:36:38:bb:2a:65:d4:f6:b9:b9:37:2d:b2:81:c3:67:
bd:03:19:65:99:02:6f:1d:5d:dd:7e:f2:1f:ee:3c:7c:61:fd:
95:da:c5:b6:28:34:25:31:4e:a7:fc:c9:9a:aa:4f:d6:2f:94:
27:37:91:1b:27:eb:78:9c:01:06:2e:08:7e:3f:b3:0f:b7:84:
52:b1:2e:67:fe:f7:b3:38:ef:97:9c:ee:fc:69:92:89:8c:1e:
c2:b9:37:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:53:32 2025 by rpki-client