Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.mft
File: HxUjko2OjlS-Rnl2MxoBIdQqAGc.mft (raw, json)
Hash identifier: T+60MYSNatUNs/NaRcy6vzZB+1CbafrpA59nzoegqS8=
Subject key identifier: 18:4F:70:23:FB:B6:9C:89:15:80:C1:00:CF:B0:DA:81:CE:D9:9D:E7
Authority key identifier: 1F:15:23:92:8D:8E:8E:54:BE:46:79:76:33:1A:01:21:D4:2A:00:67
Certificate issuer: /CN=1f1523928d8e8e54be467976331a0121d42a0067
Certificate serial: 019892C95C4C123EF38D4DCEF309DF606656
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxUjko2OjlS-Rnl2MxoBIdQqAGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.mft
Manifest number: 1625
Signing time: Sun 10 Aug 2025 07:02:06 +0000
Manifest this update: Sun 10 Aug 2025 07:02:06 +0000
Manifest next update: Mon 11 Aug 2025 07:02:06 +0000
Files and hashes: 1: HxUjko2OjlS-Rnl2MxoBIdQqAGc.crl (hash: jT56ITPEbiZin4hi6rEjRckUbsk/5GHdEqiIRbyCd+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HxUjko2OjlS-Rnl2MxoBIdQqAGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c9:5c:4c:12:3e:f3:8d:4d:ce:f3:09:df:60:66:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1523928d8e8e54be467976331a0121d42a0067
Validity
Not Before: Aug 10 07:02:06 2025 GMT
Not After : Aug 11 07:02:06 2025 GMT
Subject: CN=184f7023fbb69c891580c100cfb0da81ced99de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:04:0d:85:f6:8e:67:09:cc:40:bb:4a:5c:1f:
23:82:fe:97:3b:0a:2a:38:17:80:06:5d:8a:22:2b:
cb:8f:75:8e:c6:9b:d4:fc:95:db:c7:52:c0:88:4e:
f4:ea:07:83:6e:e2:c0:a4:6c:b1:c6:e8:c6:63:9f:
93:60:bc:eb:f0:21:d8:2b:3d:1e:7e:2e:c2:a4:50:
09:4c:dd:6f:79:c3:e7:61:f2:81:51:51:36:2e:72:
09:03:5d:23:22:9e:2a:27:80:bb:47:32:65:52:b1:
d6:36:01:88:22:4b:98:ec:7e:6a:62:be:0d:03:44:
f0:80:1b:32:4c:6a:2f:98:4a:40:79:2f:b3:03:ea:
79:bb:f7:0a:4e:3e:59:42:5b:ad:ef:82:fc:93:d5:
dd:76:28:71:57:e1:9d:16:fd:7a:ba:68:7b:ea:37:
ab:9b:db:36:91:f4:03:d2:f9:24:8a:5d:4f:63:b9:
36:07:07:09:3b:1d:cd:55:0f:ea:18:2e:d5:36:e1:
68:4a:d2:ba:20:9d:4d:9b:54:33:92:96:f2:6f:0a:
45:62:4e:93:ef:8f:15:fb:ae:93:82:a4:8c:a6:94:
43:4c:51:84:df:cb:72:68:a2:a6:16:b0:a5:ad:8f:
0e:e9:ab:b8:ec:cd:ad:22:65:15:59:57:30:2f:27:
6d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4F:70:23:FB:B6:9C:89:15:80:C1:00:CF:B0:DA:81:CE:D9:9D:E7
X509v3 Authority Key Identifier:
keyid:1F:15:23:92:8D:8E:8E:54:BE:46:79:76:33:1A:01:21:D4:2A:00:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxUjko2OjlS-Rnl2MxoBIdQqAGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/18951b-a654-44b5-ba6b-899f9fbebb19/1/HxUjko2OjlS-Rnl2MxoBIdQqAGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:4a:04:b8:1e:c4:97:e7:91:96:b9:4f:72:f3:66:81:df:dc:
f0:b1:18:6d:11:3c:4d:46:1a:dc:ee:12:21:f0:88:8e:17:db:
0f:a7:50:68:e7:81:ad:5b:19:1f:62:31:5d:8f:10:68:c8:fe:
80:a6:e5:b0:84:63:d3:e6:bd:46:5a:db:e5:78:dc:c2:b8:58:
d0:bd:62:79:c6:54:b2:97:5a:24:48:20:92:64:c6:52:20:b5:
93:98:b0:fa:c2:85:5f:f1:25:cc:c8:29:6c:b4:71:27:87:d5:
08:48:2a:fe:b6:dc:28:bf:bb:4b:86:04:ae:93:cc:5c:3b:3e:
f3:21:0b:29:a7:20:98:ce:0a:78:9f:99:32:aa:e8:4c:15:d6:
f8:f2:09:f4:89:7f:58:47:ba:2e:be:e4:20:74:5d:98:9b:8b:
cd:41:9a:3e:d8:6c:b1:6a:f2:df:70:7d:24:01:5c:d1:bd:5d:
ee:63:35:44:2f:81:ee:44:ed:36:ee:be:bd:1e:05:c1:3f:ed:
77:82:42:95:55:bb:ec:43:b4:36:e1:03:5a:bf:52:62:a8:23:
ad:ca:07:1d:e5:91:69:06:00:91:54:32:51:09:64:b9:b0:dd:
9c:99:1c:1b:64:3a:9b:f1:4c:d0:dc:3e:38:bd:9b:fa:7b:0f:
f9:b6:63:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:38 2025 by rpki-client