Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: 1VRk/Wo8oR9j8xFa1UJyZpPP1AyJCkQ7Qw6mGbcm+Pk=
Subject key identifier: 2A:08:BC:B5:E4:AB:2C:6C:0C:9D:B4:79:4D:D5:7D:B0:45:8B:C1:A2
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 0198D4E078FFC9A0203CC5A14BEC14D26B82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 03:02:17 +0000
Manifest this update: Sat 23 Aug 2025 03:02:17 +0000
Manifest next update: Sun 24 Aug 2025 03:02:17 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: lTzjmzeyOExAKElTlpbUcBk3slVCBkUYdKx/Gq9C+Oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:78:ff:c9:a0:20:3c:c5:a1:4b:ec:14:d2:6b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Aug 23 03:02:17 2025 GMT
Not After : Aug 24 03:02:17 2025 GMT
Subject: CN=2a08bcb5e4ab2c6c0c9db4794dd57db0458bc1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:be:a0:05:b3:9c:4b:3d:7e:4e:22:f0:d8:
cb:9a:9a:eb:53:a7:69:b9:8b:ec:87:b1:c5:af:67:
89:87:d8:01:76:af:62:33:b4:60:ad:d1:8e:cb:f4:
04:27:e5:64:2a:8f:10:97:84:7a:aa:47:cc:e5:73:
e7:53:b1:44:cd:7f:a4:c0:e4:db:1d:a5:ec:c2:e5:
14:90:78:9c:79:16:85:1e:24:4d:3e:bf:83:56:3e:
00:1a:3c:2d:33:03:de:3d:47:46:60:d1:1c:63:a3:
03:03:a1:be:02:94:6c:0c:f5:8e:27:29:5f:69:8d:
30:1f:31:87:28:cd:72:79:3a:1a:89:ae:06:a9:2d:
b6:ac:be:2a:32:05:3e:3a:35:98:f7:d2:96:21:0e:
35:68:87:ca:ff:58:70:8a:43:5d:f8:78:ba:a6:b9:
fd:0a:85:3a:13:d0:7a:aa:b5:08:cb:1a:22:5e:77:
d3:3e:d6:b3:29:34:54:be:ff:a8:1f:35:24:ed:98:
8f:bf:24:61:ac:ae:20:2a:49:02:88:6a:ee:8d:10:
30:99:43:87:19:62:ad:71:6b:81:96:54:5b:55:4b:
9c:dc:42:5d:20:80:f1:0d:c2:ad:e6:40:d1:d5:56:
93:dc:2e:8e:d7:8e:a7:d5:9c:48:f9:47:15:32:96:
46:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:08:BC:B5:E4:AB:2C:6C:0C:9D:B4:79:4D:D5:7D:B0:45:8B:C1:A2
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:17:23:e8:7a:a8:59:e7:95:1f:f3:36:b5:c3:b3:9e:f8:a3:
cf:d0:fa:71:de:23:8c:2d:1c:64:fb:0b:39:86:7e:97:91:90:
c1:2c:89:d3:a3:e3:c3:f8:f4:5a:f3:8d:3f:fe:84:32:06:54:
fc:ff:39:79:a1:21:98:a4:fc:6b:5c:62:4c:5f:27:d2:ea:2c:
62:1d:91:87:6f:b6:a0:72:f9:88:b9:66:b3:34:e8:ab:89:8d:
95:7b:17:18:f7:da:a0:a4:05:91:b5:65:df:4f:68:2f:40:bd:
1c:1c:6f:ce:a3:c4:29:5e:92:42:32:8d:44:30:64:d1:5b:ff:
04:dc:44:ec:9c:08:7f:a7:83:69:cd:d7:f9:b0:d6:06:c0:76:
70:f9:60:f5:06:c7:9f:28:85:3d:8c:52:45:b9:53:a3:db:cf:
28:47:83:c7:eb:98:02:8d:e6:8d:f0:91:17:76:43:b4:48:5c:
9a:bf:c2:9f:f1:6c:47:6d:40:a2:ca:d6:8a:01:a8:2d:af:f6:
db:28:4b:2c:9d:0b:73:28:e7:f2:60:e9:9e:50:03:c8:7b:41:
0a:b0:4a:32:4d:7e:e4:8f:79:31:db:40:0a:38:02:f3:ac:24:
8f:1e:c3:d5:4f:b3:b0:43:7e:02:d5:ef:30:a1:e9:15:89:09:
7e:38:f8:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:36:21 2025 by rpki-client