Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: +UlcDxO5bBTTJZL87stPoQ6SQ8VUWMT1xZ8O5hBVsKw=
Subject key identifier: 49:37:8B:99:23:B4:B3:D8:CD:8D:61:55:29:6B:91:E1:C8:3D:BE:AE
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 01989600C404641A11586DB4392637F21A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 13ED
Signing time: Sun 10 Aug 2025 22:01:29 +0000
Manifest this update: Sun 10 Aug 2025 22:01:29 +0000
Manifest next update: Mon 11 Aug 2025 22:01:29 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: 2VyjqcWUZXO5hzc0DdVAgQpyJQlgZx7Q3QwkEYFGpIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:00:c4:04:64:1a:11:58:6d:b4:39:26:37:f2:1a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Aug 10 22:01:29 2025 GMT
Not After : Aug 11 22:01:29 2025 GMT
Subject: CN=49378b9923b4b3d8cd8d6155296b91e1c83dbeae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:d2:12:83:10:fc:1e:1f:fe:e1:c2:7a:9c:
89:d4:17:13:18:d7:27:22:ef:00:13:40:ac:69:5a:
b7:3e:1d:22:ae:60:9d:29:33:18:53:1a:25:2d:8d:
72:d5:28:e0:bf:7c:4e:64:71:c2:fc:cb:c9:96:14:
37:9a:f2:70:cb:02:40:d3:f3:6c:07:b0:35:1c:84:
fe:78:4c:b5:64:60:8b:27:02:0e:8e:10:50:31:2b:
75:db:b7:60:42:a9:37:df:b5:bb:26:c6:bb:77:b7:
71:45:5d:f5:70:84:22:66:f1:6e:c0:a4:62:c1:a1:
5e:6c:d0:b4:41:29:d0:99:88:a1:8a:ce:f0:61:45:
6e:9c:fb:58:a3:1e:bb:4d:d2:7c:76:e2:1a:2f:e8:
6a:cf:8a:e4:fc:59:af:8f:17:94:0c:9e:63:83:62:
b1:c7:59:02:94:72:dd:fe:eb:ec:78:91:6a:1b:a9:
2a:bf:e1:06:ec:6e:ae:f8:54:ea:e4:4b:1f:bb:6f:
82:7c:ef:e8:56:aa:63:79:ed:d4:3b:1a:26:2a:57:
4b:2f:bd:f6:76:4f:d1:2f:91:c9:62:e9:da:d2:47:
6d:ea:49:83:fa:02:e2:38:c8:fa:04:a0:51:bd:a2:
62:fe:48:25:ae:73:0e:69:d8:81:b2:e9:2b:98:67:
ca:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:37:8B:99:23:B4:B3:D8:CD:8D:61:55:29:6B:91:E1:C8:3D:BE:AE
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:59:d5:86:23:e5:e5:f7:2f:3d:1a:8d:ee:3b:16:1b:f4:d9:
b8:93:83:49:21:ef:1b:c4:35:f5:c8:a9:a6:85:a5:04:63:9e:
4c:70:a7:c7:a3:3e:ce:e4:15:96:dc:17:e5:29:f0:e0:77:fa:
1e:91:09:a6:4e:c5:78:25:b3:7a:41:63:82:e8:31:24:05:1a:
74:c4:77:ac:03:b8:14:5b:b2:08:2e:94:38:1d:c4:2b:4b:09:
6d:b0:71:80:6b:7f:7f:94:33:c5:4b:20:af:78:c2:1d:38:7b:
5b:d3:da:8f:71:57:ac:37:ae:71:ea:7f:32:0a:20:6e:75:40:
7a:41:48:dd:39:48:f3:6b:e9:fa:b4:b0:e0:86:04:17:d8:8b:
c5:13:20:a2:59:4e:f4:52:f0:1f:a5:36:c5:12:62:3e:49:50:
68:59:9c:e1:3f:8c:60:94:44:26:31:ed:7f:57:62:f1:24:d5:
9b:96:7c:48:7f:27:6f:41:ea:fd:8f:9b:58:90:f5:19:21:b9:
0f:bb:e4:21:c1:25:5d:7f:cb:e2:db:e5:ad:3e:a6:4f:69:f0:
18:7d:0a:6e:99:8b:b7:ed:ba:cb:86:21:8e:b5:2c:66:7d:ea:
46:23:81:e7:1e:74:34:b0:24:46:b7:b3:15:0b:05:b1:2e:ff:
01:8a:69:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:27:14 2025 by rpki-client