Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
File: hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft (raw, json)
Hash identifier: WgLnqE7mPGRYfodkVpRRpSznwlycYfKS3vp4A8Bmofw=
Subject key identifier: C0:6B:94:48:78:A8:17:13:03:F2:AC:34:51:E7:86:AA:37:7B:4A:60
Authority key identifier: 86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
Certificate issuer: /CN=8618b054d20dfdc9c5493c52c86234774904be77
Certificate serial: 0198D47431605B9A760AEAFA19F74398DFDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl (hash: neTIqhykA41EvsjHqPa9AThOKc6vva370AatqvX8B58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:31:60:5b:9a:76:0a:ea:fa:19:f7:43:98:df:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8618b054d20dfdc9c5493c52c86234774904be77
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=c06b944878a8171303f2ac3451e786aa377b4a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:76:12:ff:10:97:35:fe:22:b7:47:75:e9:68:
5b:f2:37:ed:dd:9c:ee:1c:3a:82:e0:84:80:e6:21:
5b:54:cd:c8:2e:02:ab:51:ae:d2:ae:b9:21:12:5a:
f6:fe:7b:2f:dc:76:b8:7a:2b:11:91:7a:cd:dc:4e:
00:8e:6f:e5:77:86:ac:11:a6:fc:f5:24:3d:dd:9c:
01:5f:27:be:fc:9e:8a:92:ac:f9:91:75:ad:21:e4:
ab:3b:d4:a1:57:40:76:10:0b:5a:3f:07:bc:09:c1:
4b:93:dd:b5:0c:06:6f:4b:6d:cd:f5:2a:2b:ed:29:
02:b8:19:10:56:88:35:aa:a4:93:b2:e2:74:6e:70:
fe:e2:10:1c:4f:a6:aa:66:53:41:56:fb:09:78:cc:
9f:25:7b:5c:a0:fe:03:94:e5:2b:9c:35:c4:d5:d4:
ed:58:b8:33:67:4c:63:c2:f3:28:5a:51:ce:c9:db:
03:00:8f:10:97:9e:32:96:b1:1a:88:0c:0e:33:7e:
e1:52:43:4e:8c:cb:05:14:60:70:17:96:f5:7b:1f:
34:88:38:8d:9a:ae:d5:c1:09:76:0a:cf:d2:82:6e:
14:7d:83:56:3c:6b:d4:7b:b9:91:ae:9d:08:d7:5d:
76:bc:f5:8c:2d:32:b4:ab:f4:a1:29:71:4d:31:cf:
c0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6B:94:48:78:A8:17:13:03:F2:AC:34:51:E7:86:AA:37:7B:4A:60
X509v3 Authority Key Identifier:
keyid:86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:83:b0:8e:4b:5f:06:7d:b1:e3:64:cc:5e:97:39:d4:bb:82:
7f:07:ef:72:5e:40:37:3a:45:16:32:4e:15:bd:76:ee:05:df:
c9:a0:78:8d:0e:a1:1a:04:78:63:56:68:ee:83:ab:5b:e0:ef:
75:f8:03:e1:e1:5a:ed:cd:52:e6:e8:d4:b9:06:34:27:14:50:
ad:45:a7:8c:94:30:3f:18:53:95:72:52:ad:a7:f3:cc:bd:53:
dc:ac:3b:db:9d:15:f4:b5:59:59:ce:d4:ba:70:3f:df:ce:82:
d1:77:f9:6f:cd:99:97:f5:9d:61:d4:47:ca:09:e2:55:fb:ec:
b8:27:66:7d:04:c4:d4:4a:d2:d2:c2:a6:f0:80:70:6c:1a:6f:
34:61:74:82:29:a8:1a:89:bb:c8:4d:9e:d8:0d:4b:ec:5c:08:
98:2c:77:e7:cb:17:89:62:f3:e1:28:d8:da:d3:72:f3:d8:1f:
ca:a5:66:0c:00:0c:b4:59:ff:ca:43:14:58:a1:33:44:af:85:
2b:ef:75:16:18:b3:ff:18:80:61:ea:bd:a5:2e:86:80:7f:fa:
ad:09:85:5c:f2:6a:ba:24:5b:aa:bc:df:77:4c:2e:8f:39:93:
c0:6c:bf:fb:a6:12:ea:fa:5c:d4:2c:08:fe:c4:a3:7c:42:49:
21:c3:15:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:11:40 2025 by rpki-client