Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: PvNX2M540U0ab+69jAYc5PlO5a4r5TVTROkUpibLPw8=
Subject key identifier: 1E:BE:C2:CF:22:1B:E2:BD:C7:2F:12:C6:37:6D:D0:E7:50:0D:B0:46
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 019872CF49486062AE239E562DE656F36B9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 0733
Signing time: Mon 04 Aug 2025 02:00:43 +0000
Manifest this update: Mon 04 Aug 2025 02:00:43 +0000
Manifest next update: Tue 05 Aug 2025 02:00:43 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: JvFfz8/Rpq246C16UdnsmVJHR+yOpbwI+/ysx0Tsbi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:49:48:60:62:ae:23:9e:56:2d:e6:56:f3:6b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Aug 4 02:00:43 2025 GMT
Not After : Aug 5 02:00:43 2025 GMT
Subject: CN=1ebec2cf221be2bdc72f12c6376dd0e7500db046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:71:5e:89:ae:b8:58:ed:c3:b0:cf:29:2b:
95:c9:32:39:09:da:95:4d:9e:44:c8:3c:fe:62:28:
10:30:06:7b:4f:37:c1:91:08:4e:98:15:7f:31:d4:
9b:cc:f1:b7:b3:7d:d7:57:ec:0b:77:04:c5:da:7f:
9c:1f:65:8b:a6:e3:0f:4d:b2:18:6d:20:48:8c:61:
50:fe:ba:d9:ab:1b:7f:6f:f9:27:0e:02:97:81:89:
13:50:19:11:46:1f:92:b7:38:36:7e:08:66:f6:9b:
fa:c4:77:ba:da:aa:23:ac:03:56:5c:f3:7e:f4:ed:
02:68:de:d0:0f:4b:cb:de:01:e5:a6:9b:b6:6e:40:
10:4e:1b:7a:26:c3:2d:4c:2d:68:e9:00:4a:0e:60:
5b:03:2c:90:b1:2b:04:e2:4b:6e:ec:6e:b2:e4:db:
94:4d:ba:74:8f:1b:c7:ff:2f:09:d4:52:98:ca:f7:
13:a8:92:5d:96:f1:88:c8:6c:03:dc:7a:2e:e5:6c:
88:90:69:5d:9d:63:33:22:a0:65:a7:30:59:3b:71:
a2:d8:14:f3:01:99:2e:03:e9:0a:f0:a3:76:ee:93:
17:2e:62:2e:f4:1b:96:b9:71:56:0a:a2:26:e1:01:
d7:10:ad:a0:73:b1:6b:d3:f2:77:05:aa:f1:02:5b:
97:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BE:C2:CF:22:1B:E2:BD:C7:2F:12:C6:37:6D:D0:E7:50:0D:B0:46
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:49:4a:f2:3e:71:8c:62:c5:28:e0:c4:06:7c:e9:c6:2a:3c:
89:b2:81:a7:f1:8f:81:ce:81:7d:47:4d:3d:30:4e:ba:f4:9a:
bf:37:6f:9d:10:b5:4e:eb:79:92:1b:d9:80:d9:b9:e7:ac:a9:
ec:5d:e1:b1:85:46:41:8b:d4:b7:14:89:54:8b:4c:7b:5c:ee:
7c:fa:00:b1:56:b8:90:18:0c:f2:46:d8:dd:17:5f:e7:47:69:
9c:fd:0a:b9:9c:4f:2f:e7:b3:98:51:12:22:b8:27:cc:f9:ae:
4e:4e:34:ef:2a:c0:33:2f:21:27:74:47:31:d6:b3:c9:ff:f2:
f5:2a:bf:76:4d:61:ed:f6:e8:e2:12:58:aa:74:e8:46:c4:d1:
8a:1b:42:6b:f1:fe:12:92:1a:31:68:30:e3:94:2a:82:11:4b:
dd:57:14:79:a6:1b:5f:c9:31:13:62:a3:b5:0a:cb:b5:c3:4e:
e5:28:b7:10:84:78:f3:f8:c1:e1:23:1f:2e:05:f7:24:b3:45:
cb:8a:34:ab:95:0f:57:98:a9:d8:de:17:d3:d5:2d:67:16:4d:
97:7e:f0:41:c7:80:f4:41:64:20:03:77:e7:23:4f:c8:c9:56:
2c:8f:22:cb:1d:c2:83:6b:20:78:79:73:43:91:88:c3:79:0c:
86:17:4a:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhyz0lIYGKuI55WLeZW82ubMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlMTExN2U5NzZiM2UzMzk1M2I5MzYxYmI0YmIxZWJhMmY0
MDlkZWQwHhcNMjUwODA0MDIwMDQzWhcNMjUwODA1MDIwMDQzWjAzMTEwLwYDVQQD
EygxZWJlYzJjZjIyMWJlMmJkYzcyZjEyYzYzNzZkZDBlNzUwMGRiMDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUFxXomuuFjtw7DPKSuVyTI5CdqV
TZ5EyDz+YigQMAZ7TzfBkQhOmBV/MdSbzPG3s33XV+wLdwTF2n+cH2WLpuMPTbIY
bSBIjGFQ/rrZqxt/b/knDgKXgYkTUBkRRh+Stzg2fghm9pv6xHe62qojrANWXPN+
9O0CaN7QD0vL3gHlppu2bkAQTht6JsMtTC1o6QBKDmBbAyyQsSsE4ktu7G6y5NuU
Tbp0jxvH/y8J1FKYyvcTqJJdlvGIyGwD3Hou5WyIkGldnWMzIqBlpzBZO3Gi2BTz
AZkuA+kK8KN27pMXLmIu9BuWuXFWCqIm4QHXEK2gc7Fr0/J3BarxAluXTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB6+ws8iG+K9xy8Sxjdt0OdQDbBGMB8GA1UdIwQY
MBaAFP4RF+l2s+M5U7k2G7S7HrovQJ3tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9jY2ZiNjQtMmVjOS00ZDg2LWFhY2Ut
ODQ2ZTFmNDFmYzYyLzEvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9jY2ZiNjQtMmVjOS00ZDg2LWFhY2UtODQ2ZTFmNDFmYzYy
LzEvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoUlK8j5x
jGLFKODEBnzpxio8ibKBp/GPgc6BfUdNPTBOuvSavzdvnRC1Tut5khvZgNm556yp
7F3hsYVGQYvUtxSJVItMe1zufPoAsVa4kBgM8kbY3Rdf50dpnP0KuZxPL+ezmFES
IrgnzPmuTk407yrAMy8hJ3RHMdazyf/y9Sq/dk1h7fbo4hJYqnToRsTRihtCa/H+
EpIaMWgw45QqghFL3VcUeaYbX8kxE2KjtQrLtcNO5Si3EIR48/jB4SMfLgX3JLNF
y4o0q5UPV5ip2N4X09UtZxZNl37wQceA9EFkIAN35yNPyMlWLI8iyx3Cg2sgeHlz
Q5GIw3kMhhdKNg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:49 2025 by rpki-client