Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
File: hVLmDnmh3nUzQ9eBW4cMloDArn8.mft (raw, json)
Hash identifier: pfZUJ5uYkZKgW1/yNWjVJEti9HACp7D4NyxXUR4ZHc4=
Subject key identifier: 07:84:44:AE:95:60:E5:83:D3:99:85:51:F0:F1:CF:10:44:32:56:D5
Authority key identifier: 85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F
Certificate issuer: /CN=8552e60e79a1de753343d7815b870c9680c0ae7f
Certificate serial: 0198A04CB4CB049469CA8D2C12A8585646CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
Manifest number: 0BFF
Signing time: Tue 12 Aug 2025 22:00:38 +0000
Manifest this update: Tue 12 Aug 2025 22:00:38 +0000
Manifest next update: Wed 13 Aug 2025 22:00:38 +0000
Files and hashes: 1: hVLmDnmh3nUzQ9eBW4cMloDArn8.crl (hash: gfKIuS/RrE3Edqw5Ngh1eud65aIrY+n6RztlXxsUIG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4c:b4:cb:04:94:69:ca:8d:2c:12:a8:58:56:46:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8552e60e79a1de753343d7815b870c9680c0ae7f
Validity
Not Before: Aug 12 22:00:38 2025 GMT
Not After : Aug 13 22:00:38 2025 GMT
Subject: CN=078444ae9560e583d3998551f0f1cf10443256d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a1:71:e2:7b:66:5b:9e:e2:01:99:52:a0:f7:
1c:51:42:76:64:3e:69:8f:bf:1c:86:b4:0c:bd:2b:
9e:db:d0:61:a7:a2:4f:75:9c:96:16:62:eb:1b:7d:
c4:fd:c5:9c:7b:6a:f5:75:c7:f1:78:e3:8e:5e:e4:
92:2a:29:ee:55:a5:62:f7:fa:50:20:06:3d:8f:0a:
9b:cc:a0:46:d7:fd:6a:b7:de:d6:9b:90:16:fa:8c:
35:42:70:76:1e:63:e3:ef:31:34:b5:2a:ea:a1:5a:
5e:de:18:63:a7:bc:b5:af:28:8f:5d:13:21:40:55:
06:b5:ac:2f:01:a5:10:22:6e:f7:f3:be:0b:6f:6a:
c2:9b:bf:18:8c:df:9b:73:0e:c2:44:c3:0f:76:4d:
09:65:75:b7:38:39:66:fc:44:dc:b1:d8:eb:14:ff:
fb:e0:50:07:72:53:14:ee:b7:ea:a3:1b:af:31:8e:
a2:2c:2e:4e:23:d4:d7:9c:d5:51:44:27:fd:de:11:
2e:37:25:8e:d4:c7:57:8c:45:32:8c:9a:87:78:de:
2c:a3:6e:c5:b4:2a:a1:f7:45:b1:3c:5e:d0:2b:eb:
ae:d0:45:49:e5:a3:38:93:f5:d0:b6:68:ca:de:fd:
e8:ee:4c:e9:e1:ad:b2:ae:d6:bc:4f:79:f5:bc:5b:
d9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:84:44:AE:95:60:E5:83:D3:99:85:51:F0:F1:CF:10:44:32:56:D5
X509v3 Authority Key Identifier:
keyid:85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:62:3e:97:07:38:4e:1a:a6:0e:f1:ef:7c:9a:b0:b4:06:bb:
54:15:d8:89:19:79:ce:6e:db:1b:e1:8b:ef:e5:5a:a7:55:bb:
6a:b3:cb:d5:a1:f3:e0:d7:ed:70:47:7c:1f:41:30:64:30:88:
28:80:6a:e1:1a:dc:68:51:b6:42:3a:42:9c:36:f3:9b:d8:c8:
b2:82:30:fa:fe:b0:d0:6f:ba:a8:08:cb:2c:10:c3:b6:89:57:
bb:fc:3d:4d:04:d5:11:3a:35:1e:42:6a:15:37:d1:7f:0a:74:
df:89:17:92:f1:2e:32:f8:ee:c0:ed:b6:75:b8:58:0e:8d:85:
50:2b:c3:87:ad:93:01:23:cc:5e:61:8b:90:34:c8:87:29:bc:
ce:c9:cd:05:a2:a3:bb:fe:b7:f1:ae:3e:d2:e5:a0:eb:f1:77:
cf:16:bd:0c:b4:38:ff:74:a3:c8:3e:8b:21:94:97:6a:cf:89:
7c:fc:d2:d9:ff:cd:89:3d:05:0d:8a:76:93:07:02:14:d2:4d:
88:d2:63:a6:a4:97:48:39:81:05:95:a2:a8:da:56:e9:d3:4c:
6d:33:ac:c4:0d:14:e7:49:18:ec:d9:d4:6c:5f:6b:fa:1b:d4:
58:53:1c:69:22:ab:bf:11:e4:b3:8f:63:1e:3b:88:ff:79:53:
64:58:ce:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:38:09 2025 by rpki-client