Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: 0EpFX+dIDvXVVcyrXgy7Vct6JMpZxB8C6Ng78jEmCvE=
Subject key identifier: F7:45:F3:AF:D0:CE:C3:5C:BA:F5:0F:B9:5E:F1:2E:85:CD:CF:A5:8E
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 019875D278D28DA70AB4256440A7ABEA8991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 094A
Signing time: Mon 04 Aug 2025 16:03:04 +0000
Manifest this update: Mon 04 Aug 2025 16:03:04 +0000
Manifest next update: Tue 05 Aug 2025 16:03:04 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: FcweEapRGgHBShpZqa3xCODKaelp6NCrlkW5HMqz8Zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d2:78:d2:8d:a7:0a:b4:25:64:40:a7:ab:ea:89:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Aug 4 16:03:04 2025 GMT
Not After : Aug 5 16:03:04 2025 GMT
Subject: CN=f745f3afd0cec35cbaf50fb95ef12e85cdcfa58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1e:4d:36:cd:fb:b6:41:74:68:08:19:ad:e7:
74:e9:f9:11:e7:f1:7f:8b:ca:05:d5:60:c8:fe:6b:
53:f1:1d:5f:6f:d8:75:5f:5f:ce:ed:1d:be:69:3a:
9d:96:a4:35:58:6e:b3:4b:f1:6c:c3:1d:09:35:a0:
16:37:bc:60:6f:72:c8:b2:91:7a:cf:ae:6b:1e:0a:
14:49:eb:dd:0f:ca:58:1a:a2:b2:bf:dc:ef:e6:76:
f3:55:96:90:60:b3:03:95:36:3e:6e:28:cd:ee:28:
19:84:86:49:3d:b3:6d:05:ed:46:50:bd:01:72:b5:
0e:96:63:66:b8:29:31:fe:55:71:29:63:23:81:78:
c3:23:85:48:5f:2e:6d:6a:b4:85:9b:ce:1c:4f:06:
f8:8f:b2:ef:eb:b3:63:5b:2e:db:2d:a2:78:a5:d4:
c2:c3:b1:78:df:2e:1f:24:e2:f6:5c:27:3c:9d:9e:
c5:79:22:f8:ff:f3:10:1c:5a:09:26:21:c7:ec:22:
b5:49:a3:1f:47:13:04:34:8e:58:b4:c3:62:44:fd:
f1:13:c1:37:71:fa:61:db:81:d6:9d:bf:c7:e0:94:
02:c4:0a:6d:0e:2e:e6:87:b6:82:b4:f6:5e:1f:09:
61:e4:90:dc:93:b3:28:04:27:e6:93:4a:be:41:47:
f4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:45:F3:AF:D0:CE:C3:5C:BA:F5:0F:B9:5E:F1:2E:85:CD:CF:A5:8E
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:69:46:11:ce:06:ae:be:56:52:17:44:9d:b1:de:77:60:7d:
5c:cd:61:60:87:7a:74:05:bb:ad:23:93:f2:30:71:c6:d0:e1:
5e:0f:fd:99:5d:d7:30:bb:3f:d2:4c:c2:96:88:da:a7:d3:94:
12:d8:86:31:86:69:ba:e8:18:9b:57:4f:f5:56:b1:87:03:1c:
4c:f4:01:c7:a5:51:25:fb:48:65:61:99:98:8c:c3:53:ab:5d:
68:60:25:75:2f:d4:0b:e8:11:8d:0f:14:77:9c:e1:c0:ac:bf:
dc:ca:12:09:03:fc:07:0f:58:f8:4e:2c:58:97:44:7b:f4:a5:
4a:33:61:a9:4f:fa:a6:b0:3c:51:ef:52:a1:3a:41:96:23:93:
d6:e6:3b:54:4d:da:39:9a:ba:82:6e:91:2f:84:2c:b2:ac:96:
74:2a:1d:4c:1e:5d:28:8a:c8:b3:2e:89:c1:e5:1a:d0:26:b6:
5d:aa:ab:63:24:88:4e:59:3e:00:0d:cf:60:b6:e6:e6:d8:b2:
4d:b7:62:2b:35:61:8c:30:2c:86:f6:05:b7:76:2c:cf:60:84:
95:00:52:ba:84:e8:ca:6a:91:26:3c:97:ed:1b:b2:b8:ae:9e:
b7:5b:47:4f:74:14:06:fd:5f:97:86:fd:48:eb:4d:a7:ab:11:
02:33:6d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:55:15 2025 by rpki-client