Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
File: hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json)
Hash identifier: noOq1pAQ11KVooTGFgfo6Nyi1dBzBplDRN7Zszg5K3E=
Subject key identifier: BF:EB:42:73:0D:A5:B6:22:5F:36:76:BA:3F:D2:17:68:05:5C:7C:D6
Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
Certificate issuer: /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Certificate serial: 0199FC8F61EEEFCFC0C662CA2191723E79DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
Manifest number: 07C7
Signing time: Sun 19 Oct 2025 13:01:19 +0000
Manifest this update: Sun 19 Oct 2025 13:01:19 +0000
Manifest next update: Mon 20 Oct 2025 13:01:19 +0000
Files and hashes: 1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: rdX0/xTBYvHGc84ds2bNM1kFa49PmTq8Ljv5lHl1LIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:61:ee:ef:cf:c0:c6:62:ca:21:91:72:3e:79:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Validity
Not Before: Oct 19 13:01:19 2025 GMT
Not After : Oct 20 13:01:19 2025 GMT
Subject: CN=bfeb42730da5b6225f3676ba3fd21768055c7cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:32:d5:49:38:fd:b6:31:e8:9e:62:63:0e:35:
5b:4a:3c:5f:9f:dd:dc:39:ca:7e:c8:85:c8:0b:8f:
e3:f7:21:4b:2f:79:dd:02:d9:4a:03:24:c4:71:df:
40:48:f1:bb:21:96:b3:eb:11:5f:a3:6a:51:b6:19:
bc:27:be:00:e6:35:e7:c5:30:ad:a8:e1:c0:28:ea:
5f:6c:bd:10:5d:c8:ea:57:41:ef:de:62:5e:9a:de:
29:45:37:95:68:b9:1b:e0:e5:48:03:50:9e:c9:0a:
d3:66:2e:c2:91:7d:2f:a1:0b:d6:66:1f:de:f9:fb:
82:01:58:75:f9:e5:48:6f:29:56:11:a3:cf:ad:3f:
93:59:a1:02:41:aa:d2:dd:5c:ec:35:ad:ba:e7:84:
bc:6c:22:ab:99:c0:60:a7:49:de:bf:3d:20:dd:27:
39:a8:74:c4:1f:fe:0a:fc:48:21:ba:21:7d:3f:b9:
b1:3a:e2:88:a3:bc:02:bb:1f:a9:a8:fa:da:73:0f:
de:fe:3e:61:ac:cc:1c:43:d1:25:60:b8:92:a1:30:
5b:ce:4c:a5:d0:85:6a:35:fd:72:30:35:50:37:67:
2e:26:db:0d:55:38:04:68:4d:91:8a:3b:49:a8:7e:
ca:dc:7a:fc:f7:0b:84:f6:ac:7e:d3:c5:2a:b0:32:
b2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EB:42:73:0D:A5:B6:22:5F:36:76:BA:3F:D2:17:68:05:5C:7C:D6
X509v3 Authority Key Identifier:
keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:72:7c:86:4d:cf:cb:22:17:d7:9d:8c:2c:07:61:cc:db:d6:
bc:89:3e:90:87:75:e1:9f:1b:f8:05:e0:d8:0d:1f:a0:21:3a:
18:df:bd:15:74:94:92:6d:be:6f:ef:85:50:66:02:97:b9:d4:
7f:d5:90:86:1f:a6:3a:c4:e1:81:a1:97:6f:37:df:c9:cd:bf:
7c:ca:dd:91:cf:9f:20:13:db:b6:08:b4:54:63:2a:98:cb:50:
85:55:a7:37:82:6c:a8:c3:9e:e8:e9:19:c2:8a:72:51:07:d7:
1a:48:59:61:55:d7:a7:c4:5d:10:f6:b5:0f:cf:58:55:9b:1e:
20:e3:dc:b4:b9:43:66:6e:3a:11:ee:b0:f5:17:58:c2:6e:f7:
9d:d5:5a:c5:7b:da:6d:c7:b9:dd:b7:b4:39:a2:4e:08:7a:1f:
77:c2:0c:60:ed:3d:41:0b:50:04:d6:35:53:d6:6e:55:00:64:
3a:25:be:23:94:a1:e5:4a:d8:3a:a3:f5:16:f7:c7:34:0e:d4:
bd:44:ee:ab:b5:9a:73:12:5c:c3:73:b9:b4:5b:a9:68:0f:40:
ec:f6:c1:f4:47:c9:d2:75:0f:c1:8a:48:7e:f5:5f:75:46:36:
d4:94:97:2c:8a:cb:a9:35:d4:a6:2c:f9:04:14:86:24:c1:f0:
4c:e5:78:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:49 2025 by rpki-client