Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
File: Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft (raw, json)
Hash identifier: J8SKJ5XAI0kz30ECMuaf9caTfbbfFZZ1RIEjD5ikg24=
Subject key identifier: F8:40:41:E9:D6:19:0F:75:34:50:1C:34:8A:BB:04:90:0A:82:26:0A
Authority key identifier: 1F:3D:9D:D4:AA:1F:F2:EB:50:DA:0D:40:CA:EC:5B:FD:A6:8E:73:37
Certificate issuer: /CN=1f3d9dd4aa1ff2eb50da0d40caec5bfda68e7337
Certificate serial: 0199FAA14C31FEFB8D657A7D6E76DB694E60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
Manifest number: 39
Signing time: Sun 19 Oct 2025 04:01:38 +0000
Manifest this update: Sun 19 Oct 2025 04:01:38 +0000
Manifest next update: Mon 20 Oct 2025 04:01:38 +0000
Files and hashes: 1: Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl (hash: xdYuW+14l+wEu6Xi/v4xzaIRR4uz57YYekYFj1zK0WI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:4c:31:fe:fb:8d:65:7a:7d:6e:76:db:69:4e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f3d9dd4aa1ff2eb50da0d40caec5bfda68e7337
Validity
Not Before: Oct 19 04:01:38 2025 GMT
Not After : Oct 20 04:01:38 2025 GMT
Subject: CN=f84041e9d6190f7534501c348abb04900a82260a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2e:fb:5c:4f:eb:52:64:55:70:2c:25:4e:b1:
e8:14:f4:5f:bf:4b:7e:88:8a:3a:60:6f:18:89:60:
c9:43:93:47:24:54:96:a8:fa:06:68:23:ed:89:f9:
c0:55:af:21:1c:ba:7d:f6:29:16:27:5d:9f:1d:f0:
ce:96:77:87:eb:7c:55:2f:61:61:b9:ac:fc:e4:00:
c0:9b:ab:c1:05:99:1f:74:14:c9:79:e3:95:e1:3a:
49:99:d6:25:ae:9f:37:4b:f3:c3:56:ee:ca:23:96:
c8:d1:17:65:db:8b:e4:9c:1c:c9:43:34:f1:d8:ed:
6a:08:09:69:c2:b0:36:27:2d:77:1b:01:5c:98:3e:
2e:10:61:dd:e3:9a:af:49:4f:ab:a1:a9:b3:31:1e:
81:15:0c:8a:47:9d:6e:f0:e2:c2:6e:e2:7f:8d:92:
d9:f0:4f:e6:57:e2:21:17:02:3a:74:e1:d8:66:e0:
9d:ff:21:89:da:ed:2e:40:c9:02:61:3a:59:07:1c:
e0:e7:4b:7f:22:f1:97:d1:f8:7f:1c:10:9b:85:4a:
ce:61:77:c6:7c:b3:d7:b6:13:02:77:ca:e7:0d:31:
f4:f2:bd:bb:12:5d:aa:ac:64:dd:db:a7:33:de:1a:
f7:fe:84:35:3c:2f:37:ab:e4:9d:c8:c0:74:c2:1f:
56:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:40:41:E9:D6:19:0F:75:34:50:1C:34:8A:BB:04:90:0A:82:26:0A
X509v3 Authority Key Identifier:
keyid:1F:3D:9D:D4:AA:1F:F2:EB:50:DA:0D:40:CA:EC:5B:FD:A6:8E:73:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:65:e6:2c:e5:4f:f6:22:a2:59:58:22:cc:6c:aa:fe:45:b5:
f4:d1:97:05:75:64:ed:b4:6c:ec:62:51:17:e8:8e:ec:80:92:
8d:84:8b:bd:8b:5f:c5:b3:a6:eb:c3:05:4c:0e:dd:22:7c:ca:
ff:fc:a7:6e:1e:b1:1b:4d:d9:f2:75:28:55:ea:e8:2d:75:2b:
6a:f4:f2:8f:35:54:d5:4f:1d:ef:09:56:f7:9a:2b:38:2c:28:
f6:5b:94:14:76:3a:6b:6f:ba:4b:48:ce:5f:22:f6:47:23:5e:
83:24:04:94:2a:9a:59:7a:89:16:d3:0b:ee:91:a0:50:c0:a8:
1e:a2:3c:d3:a2:1d:a3:28:1b:a8:73:a1:22:54:35:db:bc:b3:
98:34:0b:01:4e:38:1b:8a:47:1d:78:25:42:b7:30:e2:c8:12:
f9:55:1d:78:49:76:de:55:ec:58:96:be:7e:1c:17:f3:ba:88:
45:80:60:c9:fc:cb:22:fd:3c:09:04:a5:3c:bb:04:a4:f5:7a:
1e:33:1f:e6:18:67:0d:24:1f:b9:69:f2:a8:a4:ed:e2:c0:b9:
0a:ba:9d:ec:a0:bd:12:b5:f3:4a:c7:94:7f:88:8e:04:e5:7f:
79:13:07:23:41:df:ab:0d:58:11:07:fb:eb:31:ef:1c:0e:79:
54:e8:e1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:55 2025 by rpki-client