Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: IDmuUxqwvIGsKBKa7q5pC30/DXWBHQup/Lyd+zSjdz0=
Subject key identifier: 32:9F:8C:2D:D2:6F:FA:C3:54:22:3D:57:6C:78:74:97:95:BB:01:8C
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 0197B6A16D531C00949F13D8933B52650F16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0C0A
Signing time: Sat 28 Jun 2025 13:02:02 +0000
Manifest this update: Sat 28 Jun 2025 13:02:02 +0000
Manifest next update: Sun 29 Jun 2025 13:02:02 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: gHDNGlY9gWB+WM92ZyASUMBjF0Q49yjsKYD7hx8pHV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:6d:53:1c:00:94:9f:13:d8:93:3b:52:65:0f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Jun 28 13:02:02 2025 GMT
Not After : Jun 29 13:02:02 2025 GMT
Subject: CN=329f8c2dd26ffac354223d576c78749795bb018c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d9:01:e0:b6:9e:91:d8:1a:64:a0:e0:ae:ae:
8e:a7:b1:f3:e1:74:a4:ff:ea:e5:66:e1:fe:f8:1a:
c8:b9:c9:18:41:5d:8a:27:a0:26:dd:6c:a0:da:0f:
c3:f4:b5:56:0b:03:38:66:02:78:60:35:1f:de:f9:
f6:02:37:bc:7f:2c:e8:e7:7e:fc:a1:29:8a:10:54:
ba:72:2e:41:94:f2:2c:1c:34:88:66:d3:04:d6:1e:
ed:1c:7a:f6:d8:7a:1b:b4:02:5d:66:88:b0:1c:95:
8f:2f:de:74:3a:2c:13:00:53:89:43:a9:29:13:80:
4a:9f:96:4a:77:9e:6e:0b:c3:f2:f1:07:26:31:7a:
c1:ff:ec:51:e5:cd:b3:84:4d:ba:88:81:24:7a:b5:
b6:07:45:7a:93:9e:4e:f7:93:f5:30:25:35:e5:09:
54:ed:ba:21:4f:36:b3:9c:4f:e6:49:2c:75:1a:23:
5d:ca:23:7d:dc:d9:dd:14:8c:d8:c7:bc:81:cf:52:
09:bc:1c:c3:51:41:e0:60:c2:3b:5f:8f:6b:94:f6:
9c:87:e9:ec:67:fa:ae:60:c2:6d:24:d7:2f:11:f9:
d9:3b:f7:6c:51:93:a0:b0:f6:e0:27:e3:5b:21:97:
10:38:47:34:68:b5:eb:19:d5:c5:6a:94:b3:c2:1e:
07:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9F:8C:2D:D2:6F:FA:C3:54:22:3D:57:6C:78:74:97:95:BB:01:8C
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:49:5f:01:ad:8e:8a:80:f7:87:c2:99:0e:93:13:7f:d9:e9:
fb:3a:b1:8a:0f:fa:de:6d:1b:e7:00:ff:f2:69:0f:d4:ac:2d:
34:84:ab:cc:75:c6:12:19:97:02:2e:dd:1b:97:30:80:f6:56:
e3:28:5b:d2:7b:76:16:e1:c7:6c:65:81:44:dd:fa:2e:e1:80:
46:01:46:b7:9f:d5:35:bc:8b:95:5d:98:d9:c2:52:8b:f7:f1:
fa:11:41:b0:b7:c9:0f:1d:bb:08:fa:a4:13:d8:b5:01:c0:00:
26:11:6c:ac:83:81:51:69:c1:ec:a5:97:6c:72:4a:ef:1d:24:
57:b9:88:af:47:69:27:ce:4a:e5:47:06:29:79:22:ec:65:64:
b1:6e:48:71:3b:51:3a:16:a1:06:38:d2:3c:df:a7:5c:c6:51:
54:ff:3d:13:85:f7:17:38:ba:a9:5b:b5:72:c4:f1:26:f3:b8:
3c:ad:99:d1:b7:6e:bc:ed:4a:c3:19:8c:1a:ae:00:c7:fc:ee:
f9:93:91:21:6b:7f:a6:7e:71:1b:31:d8:62:59:9c:28:b0:0e:
c4:3f:15:ca:a3:f7:0c:b0:7f:31:23:f6:c5:cd:f6:c1:87:c1:
33:9e:bd:55:df:23:eb:fa:97:52:c3:ae:98:6d:73:fb:fe:0c:
64:bd:3b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:30 2025 by rpki-client