Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.mft
File: Hzspn37Z9UTXv5ALWcz4iadk30g.mft (raw, json)
Hash identifier: MoMAb4LP4bjfklhdUb68ffM7tziX8zm3K31bgQSHcMM=
Subject key identifier: 46:62:35:FF:FA:1E:A0:0C:BD:55:30:D3:06:ED:D6:80:56:BB:A4:92
Authority key identifier: 1F:3B:29:9F:7E:D9:F5:44:D7:BF:90:0B:59:CC:F8:89:A7:64:DF:48
Certificate issuer: /CN=1f3b299f7ed9f544d7bf900b59ccf889a764df48
Certificate serial: 01989035986665847B631313BA40D75000F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hzspn37Z9UTXv5ALWcz4iadk30g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.mft
Manifest number: 1623
Signing time: Sat 09 Aug 2025 19:01:27 +0000
Manifest this update: Sat 09 Aug 2025 19:01:27 +0000
Manifest next update: Sun 10 Aug 2025 19:01:27 +0000
Files and hashes: 1: Hzspn37Z9UTXv5ALWcz4iadk30g.crl (hash: djBBJYB7dO31mI3xwPMiE/dIQZr/hYSqi4FTppEXGI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hzspn37Z9UTXv5ALWcz4iadk30g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:98:66:65:84:7b:63:13:13:ba:40:d7:50:00:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f3b299f7ed9f544d7bf900b59ccf889a764df48
Validity
Not Before: Aug 9 19:01:27 2025 GMT
Not After : Aug 10 19:01:27 2025 GMT
Subject: CN=466235fffa1ea00cbd5530d306edd68056bba492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:86:d3:02:1a:84:5c:2e:ea:03:f5:08:d9:
61:31:fa:52:de:ff:0b:61:e7:06:f2:7e:0a:69:90:
19:51:11:a3:3a:a7:d0:eb:78:3b:34:d6:d5:ff:37:
dd:d0:8d:83:1d:a0:92:ae:d2:74:0e:8e:39:3f:69:
a7:8c:73:d9:93:d5:b2:97:8d:a4:b3:db:13:31:7b:
49:5c:91:28:22:41:ce:8d:3a:56:b0:3f:7b:3f:ba:
ab:83:a1:47:8f:c8:96:1c:20:63:90:4b:ae:fc:1c:
0c:c5:7f:81:9f:74:bb:3a:55:18:1d:a1:94:a1:3a:
1b:3e:a7:32:9f:3a:97:e7:c0:ad:54:c6:a9:e1:a3:
e8:27:4e:a7:ea:7d:78:9a:dd:d7:dc:30:be:cd:7f:
bf:d1:ee:18:bb:0b:c4:95:d8:89:64:54:b6:a9:59:
52:3c:d5:0b:07:4c:ac:ed:87:be:92:22:00:02:2c:
e5:eb:08:24:f8:a9:e3:63:37:7e:d1:e9:a8:72:35:
d6:8d:e3:7f:8d:8e:21:4a:f9:80:90:94:68:97:54:
93:80:b2:9a:dc:12:68:a0:56:9b:ab:80:3c:a9:09:
3f:b5:e4:df:cf:b8:e4:d4:2a:d8:ba:09:b7:fc:38:
35:a7:f2:ac:10:39:18:28:b1:d4:ce:a5:86:ce:00:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:62:35:FF:FA:1E:A0:0C:BD:55:30:D3:06:ED:D6:80:56:BB:A4:92
X509v3 Authority Key Identifier:
keyid:1F:3B:29:9F:7E:D9:F5:44:D7:BF:90:0B:59:CC:F8:89:A7:64:DF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hzspn37Z9UTXv5ALWcz4iadk30g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/614631-6314-4933-a76d-75cdc2d57262/1/Hzspn37Z9UTXv5ALWcz4iadk30g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:1b:85:ce:17:d7:27:b6:61:ff:25:55:56:c2:de:0c:9e:67:
16:8e:5c:b4:f2:fd:7a:a9:8c:c4:4d:8c:8b:24:27:c7:e6:a0:
56:08:cf:83:7d:b9:25:04:ab:cf:70:2d:70:5a:0f:5c:31:5f:
64:70:fb:e4:5e:0e:82:ec:23:9d:c5:3b:c0:52:c5:87:6b:4e:
62:69:6f:d6:07:4a:36:82:58:7c:fa:12:29:1a:76:7f:ff:42:
17:f7:b1:80:58:8f:08:df:8c:59:9c:c7:40:92:c4:b7:98:72:
74:d7:76:53:0c:d8:02:06:2d:5b:bc:20:0a:f1:03:a9:1c:b2:
f4:b7:10:a2:01:55:fd:d1:3f:f7:03:b6:78:2a:03:80:bc:9f:
de:8a:67:43:f1:f2:04:27:e2:f3:f1:7a:26:c3:a2:2c:b9:1c:
51:8b:ae:11:b7:a7:08:95:8a:ae:71:45:61:a1:77:db:d2:14:
49:4e:c9:50:48:b9:a8:a6:22:be:ea:fc:86:25:f1:62:da:72:
27:fe:28:b9:35:0b:65:9d:7f:56:2e:ec:8e:55:cb:4f:96:ba:
7d:63:9e:35:77:a7:e9:fb:ac:16:c1:f3:31:95:bd:9a:68:dc:
ab:26:f5:17:69:d6:6a:7c:c9:df:ee:3b:27:c4:e4:8c:38:5e:
99:8a:0a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:17:12 2025 by rpki-client