Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: FtAwUEdv7zzuHfnzCoHlxfrjm/8x23+EDNGAHyq+GFk=
Subject key identifier: 6B:54:6A:95:D4:6E:CB:B9:85:C8:1F:42:90:7E:44:20:DD:E4:6A:76
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 0198A04E6EAD681C0C3C86BC77261CF0B578
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 020F
Signing time: Tue 12 Aug 2025 22:02:31 +0000
Manifest this update: Tue 12 Aug 2025 22:02:31 +0000
Manifest next update: Wed 13 Aug 2025 22:02:31 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: 5mZx3y6N/QV/8GHl3YePl+PBFoeUUNcRLgEVCOoHJJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:6e:ad:68:1c:0c:3c:86:bc:77:26:1c:f0:b5:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Aug 12 22:02:31 2025 GMT
Not After : Aug 13 22:02:31 2025 GMT
Subject: CN=6b546a95d46ecbb985c81f42907e4420dde46a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:68:b3:0d:90:58:b9:e1:37:71:78:1e:22:4f:
9a:f5:49:fb:b6:df:03:cb:75:83:1d:1f:15:cf:e2:
49:18:b7:71:f1:d3:5e:1a:f6:ef:00:20:f9:35:f1:
92:09:f9:66:ed:d4:bb:5a:18:fd:26:48:7b:2a:c2:
06:d9:c1:1e:94:7e:c6:51:7e:cd:80:33:98:2a:8e:
39:98:43:77:6a:45:a9:66:77:39:12:1c:c0:b3:16:
b2:05:6b:fb:28:be:8e:2b:50:c5:45:0d:03:fb:40:
a2:41:a0:48:ca:f8:4b:78:57:ab:b8:98:3b:57:2f:
78:a4:53:ea:12:10:ee:f8:7e:57:c6:03:d3:06:68:
42:3d:3e:dc:c0:fb:47:1b:94:1c:08:3d:62:d8:83:
66:4e:ad:cf:42:3b:8e:0e:3d:2b:9a:97:86:01:8a:
2e:37:c8:50:b1:22:3e:96:73:41:9e:cf:11:c3:15:
27:7f:35:58:66:c0:8a:c2:89:a2:f8:88:bb:93:13:
c5:ed:02:cd:7b:bd:4a:51:1c:dd:2b:04:cf:82:6e:
2f:81:bb:fd:ee:30:92:75:59:e8:26:cd:34:1e:34:
bd:c1:9f:47:79:28:d1:29:c3:1e:8d:65:e6:b1:21:
4c:d7:6d:44:27:80:7b:0f:95:c4:00:9d:3a:86:d1:
56:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:54:6A:95:D4:6E:CB:B9:85:C8:1F:42:90:7E:44:20:DD:E4:6A:76
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:2c:25:6c:19:a5:78:e1:7f:77:a7:84:0a:b2:5a:8a:b4:f9:
ee:bc:5a:1f:68:d0:ad:4e:f7:62:e7:5a:ee:5a:43:c9:e4:26:
d6:13:9c:71:8d:13:f9:73:56:95:d8:13:ac:ae:ae:6c:4c:bc:
29:ff:5e:59:01:57:f3:d0:08:0b:45:05:2e:c2:36:e2:61:3f:
b9:01:76:c8:00:90:16:bb:fc:75:1d:81:a0:18:b2:bc:69:47:
3f:e6:1f:08:41:8a:aa:80:e5:ac:75:96:c8:81:47:51:0b:a0:
3c:8a:59:69:2e:0c:c4:d6:ed:27:36:68:09:ac:72:35:82:24:
ec:38:09:d6:f9:17:55:97:0a:3b:81:f1:55:3d:3f:54:ed:84:
e8:14:04:c3:3f:d8:29:ec:06:d9:59:bc:fc:0e:da:14:e3:7a:
34:87:fa:57:0c:21:03:d0:0a:fe:50:f3:a2:d6:b8:79:72:12:
1a:0f:61:bf:bf:32:b2:46:fc:50:8c:89:74:f6:cb:e6:7e:9f:
56:e9:02:b6:07:c0:96:e0:13:91:b7:54:2c:14:d5:55:cb:be:
6a:cc:e1:5d:5e:4f:13:ed:70:c5:66:e6:7f:04:30:a9:71:d3:
56:70:a6:89:b0:fd:0f:14:71:cf:7c:39:56:5d:ff:9f:48:8e:
e5:d9:50:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 07:57:46 2025 by rpki-client