Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: iM+6l7uf0gITtYIQlo87Dg6SScgowiUcR75PJEhq36g=
Subject key identifier: 50:33:62:F2:37:DD:4D:E2:E5:8D:86:2B:BB:1D:6D:3E:66:93:68:D0
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 01989F02F1FDA3DC854C9DB2A2695E42E764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 137A
Signing time: Tue 12 Aug 2025 16:00:26 +0000
Manifest this update: Tue 12 Aug 2025 16:00:26 +0000
Manifest next update: Wed 13 Aug 2025 16:00:26 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: YJeIRY79WVyTuIgAMBwfA6hfZh2ZMWrXwQlKiaLscEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:02:f1:fd:a3:dc:85:4c:9d:b2:a2:69:5e:42:e7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Aug 12 16:00:26 2025 GMT
Not After : Aug 13 16:00:26 2025 GMT
Subject: CN=503362f237dd4de2e58d862bbb1d6d3e669368d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:89:ff:84:7c:d7:39:04:af:22:f9:02:86:
8d:3e:e0:8b:bf:41:e5:c0:e0:ba:89:dc:90:9e:b0:
5c:9a:0c:12:c9:30:60:0e:e6:17:70:f8:4a:8f:27:
bd:14:50:f3:d7:cb:6d:57:5f:e5:6c:1c:8b:42:10:
a2:56:d1:fe:e4:3c:ff:de:e3:88:9e:f6:7b:b1:30:
1e:d5:c1:e0:7e:43:ef:2f:23:1c:40:a8:31:5a:b1:
1c:f4:d2:46:34:23:40:17:b3:f0:31:22:30:3c:10:
24:87:12:98:1d:c1:4c:a9:9f:9c:f7:48:ba:a8:6b:
05:44:d5:b0:56:6b:a5:43:24:64:ce:8d:97:63:2b:
3a:21:16:36:8b:94:8a:cc:ef:9c:3d:fe:9b:ce:6f:
2e:15:f4:2a:02:0d:39:ef:32:5f:0d:40:a4:2f:78:
74:33:b1:38:cd:3e:53:66:cf:1c:05:85:78:97:8f:
be:83:6c:58:1b:60:11:f2:1f:d6:24:fe:b2:e8:d1:
50:cc:7c:e8:13:9b:ae:48:b9:fb:cf:9a:e2:f8:c9:
0c:61:bf:eb:2a:6e:38:93:e1:81:20:4a:c7:a2:0a:
0c:c0:95:c5:83:b8:40:6c:af:49:ce:77:cc:4e:18:
06:76:7d:f2:6b:c5:c8:9d:64:47:87:10:3c:00:68:
94:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:33:62:F2:37:DD:4D:E2:E5:8D:86:2B:BB:1D:6D:3E:66:93:68:D0
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:3b:66:14:57:47:47:08:8c:95:c8:b8:5b:01:2c:ae:39:16:
ec:ae:56:ba:29:a7:20:77:9c:0c:3e:a2:26:7c:30:83:ce:70:
b7:15:e3:7d:94:d8:84:1e:e6:02:50:8d:3b:f9:f4:1b:7e:63:
82:ac:a4:b6:d4:a2:43:af:cf:79:de:e6:48:e7:0a:80:5e:be:
66:81:e6:e1:47:36:90:2c:2a:1e:ec:65:bc:9c:cd:52:76:e3:
bf:0c:6b:59:16:27:95:6d:57:9d:d8:21:b4:1c:22:b6:82:eb:
1a:39:69:17:bc:f3:f9:2a:42:be:0a:3f:ac:5b:44:8c:ee:f8:
32:ac:6c:a4:f7:7e:ea:9a:90:f7:39:d1:4a:7d:27:61:33:65:
f7:97:85:f7:36:e0:7c:f4:2d:4b:f4:53:d2:ab:3c:1c:94:de:
38:41:af:bd:6c:2f:25:a4:63:34:d4:5f:5e:63:97:55:f0:78:
08:b8:e9:3b:73:3a:09:f3:eb:19:9f:67:5f:9c:15:5c:cc:83:
ef:5a:a0:a0:b1:d5:a4:1c:25:97:e7:7f:b5:7e:6e:29:48:1d:
e6:55:f0:dc:2a:ec:04:d6:24:fa:0a:7c:ef:87:e8:96:54:6f:
ce:ad:b7:7d:3c:26:24:d2:dd:55:43:af:a4:77:74:aa:a6:41:
e6:de:c4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:41:00 2025 by rpki-client